Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 7, 2024, 10:02 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203311 6.9 警告 マイクロソフト - Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-2508 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
203312 6.8 警告 マイクロソフト - Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3675 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
203313 9.3 危険 マイクロソフト - Microsoft Project における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0102 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
203314 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
203315 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
203316 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
203317 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
203318 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
203319 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
203320 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 7, 2024, 5:21 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1251 6.1 MEDIUM
Network 		phpgurukul online_dj_booking_management_system A Reflected Cross Site Scripting (XSS) vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitr… CWE-79
Cross-site Scripting 		CVE-2024-51076 2024-11-4 22:41 2024-10-29 Show GitHub Exploit DB Packet Storm
1252 6.1 MEDIUM
Network 		phpgurukul online_dj_booking_management_system A Reflected Cross Site Scripting (XSS) vulnerability was found in /odms/admin/user-search.php in PHPGurukul Online DJ Booking Management System v1.0, which allows remote attackers to execute arbitrar… CWE-79
Cross-site Scripting 		CVE-2024-51075 2024-11-4 22:41 2024-10-29 Show GitHub Exploit DB Packet Storm
1253 6.1 MEDIUM
Network 		phpgurukul ifsc_code_finder A Reflected Cross Site Scripting (XSS) vulnerability was found in /ifscfinder/admin/profile.php in PHPGurukul IFSC Code Finder Project v1.0, which allows remote attackers to execute arbitrary code vi… CWE-79
Cross-site Scripting 		CVE-2024-51181 2024-11-4 22:39 2024-10-29 Show GitHub Exploit DB Packet Storm
1254 6.1 MEDIUM
Network 		phpgurukul ifsc_code_finder A Reflected Cross Site Scripting (XSS) vulnerability was found in /ifscfinder/index.php in PHPGurukul IFSC Code Finder Project v1.0, which allows remote attackers to execute arbitrary code via the "s… CWE-79
Cross-site Scripting 		CVE-2024-51180 2024-11-4 22:37 2024-10-29 Show GitHub Exploit DB Packet Storm
1255 6.5 MEDIUM
Network 		mozilla firefox_focus Focus was incorrectly allowing internal links to utilize the app scheme used for deeplinking, which could result in links potentially circumventing some URL safety checks This vulnerability affects F… NVD-CWE-noinfo
CVE-2024-10474 2024-11-4 22:34 2024-10-29 Show GitHub Exploit DB Packet Storm
1256 6.5 MEDIUM
Network 		mozilla thunderbird
firefox 		Truncation of a long URL could have allowed origin spoofing in a permission prompt. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132. CWE-290
 Authentication Bypass by Spoofing 		CVE-2024-10462 2024-11-4 22:32 2024-10-29 Show GitHub Exploit DB Packet Storm
1257 6.5 MEDIUM
Network 		mozilla thunderbird
firefox 		Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Firefox ESR < 115.17, Thunderbird < 128.4, and Thunderbird < 132. CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-10463 2024-11-4 22:31 2024-10-29 Show GitHub Exploit DB Packet Storm
1258 6.5 MEDIUM
Network 		mozilla thunderbird
firefox 		A clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132. CWE-290
 Authentication Bypass by Spoofing 		CVE-2024-10465 2024-11-4 22:30 2024-10-29 Show GitHub Exploit DB Packet Storm
1259 6.5 MEDIUM
Network 		mozilla thunderbird
firefox 		Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerabi… CWE-125
Out-of-bounds Read 		CVE-2024-10464 2024-11-4 22:30 2024-10-29 Show GitHub Exploit DB Packet Storm
1260 5.3 MEDIUM
Network 		mozilla firefox
thunderbird 		Potential race conditions in IndexedDB could have caused memory corruption, leading to a potentially exploitable crash. This vulnerability affects Firefox < 132 and Thunderbird < 132. CWE-362
Race Condition 		CVE-2024-10468 2024-11-4 22:29 2024-10-29 Show GitHub Exploit DB Packet Storm