Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204291 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
204292 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
204293 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
204294 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
204295 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
204296 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Muhammad Junaid Provide Forex Signals allows Stored XSS.This issue affects Provide Forex S… New CWE-79
Cross-site Scripting 		CVE-2024-52344 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
92 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Softwares Pvt. Ltd. | Jinesh.P.V OS Pricing Tables allows Stored XSS.This issue… New - CVE-2024-52343 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
93 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Solutions Pvt Ltd. | Jinesh.P.V OS BXSlider allows Stored XSS.This issue affect… New CWE-79
Cross-site Scripting 		CVE-2024-52342 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
94 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Offshorent Solutions Pvt Ltd. | Jinesh.P.V OS Our Team allows Stored XSS.This issue affect… New CWE-79
Cross-site Scripting 		CVE-2024-52341 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
95 - - - AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account. New - CVE-2024-51051 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
96 7.5 HIGH
Network 		- - Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension). The supported version that is affected is 9.3.6. Easily expl… New - CVE-2024-21287 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
97 5.3 MEDIUM
Network 		- - The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.8.6. This is due to publicly accessible print_php_information.php file.… New CWE-862
 Missing Authorization 		CVE-2024-10486 2024-11-19 07:15 2024-11-19 Show GitHub Exploit DB Packet Storm
98 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_server_2025
windows_10_1809
windows_server_2019
windows_server_2022
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_… 		Windows Client-Side Caching Elevation of Privilege Vulnerability Update NVD-CWE-noinfo
CVE-2024-43644 2024-11-19 07:15 2024-11-13 Show GitHub Exploit DB Packet Storm
99 - - - In Gliffy Online an insecure configuration was discovered in versions before 4.14.0-6. Reported by Alpha Inferno PVT LTD. Update - CVE-2024-10315 2024-11-19 07:15 2024-11-12 Show GitHub Exploit DB Packet Storm
100 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_server_2025
windows_10_1809
windows_server_2019
windows_server_2022
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_… 		Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability Update NVD-CWE-noinfo
CVE-2024-49046 2024-11-19 07:10 2024-11-13 Show GitHub Exploit DB Packet Storm