Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202701 7.2 危険 マイクロソフト - 複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2740 2010-10-26 15:29 2010-10-12 Show GitHub Exploit DB Packet Storm
202702 7.2 危険 マイクロソフト - 複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2744 2010-10-26 15:28 2010-10-12 Show GitHub Exploit DB Packet Storm
202703 4.9 警告 マイクロソフト - 複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2549 2010-10-26 15:28 2010-10-12 Show GitHub Exploit DB Packet Storm
202704 6.5 警告 IBM - Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0462 2010-10-26 15:24 2010-01-28 Show GitHub Exploit DB Packet Storm
202705 9.3 危険 マイクロソフト - 64-bit プラットフォーム上で稼働している Microsoft .NET Framework の JIT コンパイラにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3228 2010-10-25 16:37 2010-10-12 Show GitHub Exploit DB Packet Storm
202706 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Embedded OpenType Font Engine における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1883 2010-10-25 16:37 2010-10-12 Show GitHub Exploit DB Packet Storm
202707 7.6 危険 マイクロソフト - 複数の Microsoft 製品の Media Player Network Sharing Service における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3225 2010-10-25 16:36 2010-10-12 Show GitHub Exploit DB Packet Storm
202708 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3331 2010-10-25 16:35 2010-10-12 Show GitHub Exploit DB Packet Storm
202709 4.3 警告 マイクロソフト - Microsoft Internet Explorer における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3330 2010-10-25 16:35 2010-10-12 Show GitHub Exploit DB Packet Storm
202710 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3329 2010-10-25 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1961 - - - Password Pusher is an open source application to communicate sensitive information over the web. A cross-site scripting (XSS) vulnerability was identified in the PasswordPusher application, affecting… CWE-79
Cross-site Scripting 		CVE-2024-51989 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1962 - - - Filament is a collection of full-stack components for accelerated Laravel development. All Filament features that interact with storage use the `default_filesystem_disk` config option. This allows th… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2024-51758 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1963 - - - An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted ll_terminate_ind packet. - CVE-2024-48290 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1964 - - - devtron is an open source tool integration platform for Kubernetes. In affected versions an authenticated user (with minimum permission) could utilize and exploit SQL Injection to allow the execution… CWE-89
SQL Injection 		CVE-2024-45794 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1965 - - - A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected is an unknown function of the file /Doctor/delete_user_appointment_request.php. The m… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-10967 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1966 - - - A vulnerability, which was classified as critical, has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected by this issue is some unknown functionality of the file /cgi-bin/cstecgi.cgi. The ma… CWE-78
CWE-77
OS Command 
Command Injection 		CVE-2024-10966 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1967 - - - An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection. - CVE-2020-11919 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1968 - - - An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web interface, information on all users, including passwords, can be found in cleartext in… - CVE-2020-11918 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1969 - - - An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. It uses a default SSID value, which makes it easier for remote attackers to discover the physical locations of many Siime Eye device… - CVE-2020-11917 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm
1970 - - - An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. The password for the root user is hashed using an old and deprecated hashing technique. Because of this deprecated hashing, the succ… - CVE-2020-11916 2024-11-9 04:01 2024-11-8 Show GitHub Exploit DB Packet Storm