Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 2:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206761 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
206762 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
206763 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
206764 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
206765 6.9 警告 マイクロソフト - Microsoft Windows における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3966 2011-01-14 15:42 2010-12-14 Show GitHub Exploit DB Packet Storm
206766 6.9 警告 マイクロソフト - Windows Media Encoder における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3965 2011-01-14 15:39 2010-12-14 Show GitHub Exploit DB Packet Storm
206767 6.9 警告 マイクロソフト - Microsoft Windows Movie Maker における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3967 2011-01-14 15:36 2010-12-14 Show GitHub Exploit DB Packet Storm
206768 7.2 危険 マイクロソフト - Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3338 2011-01-14 15:31 2010-12-14 Show GitHub Exploit DB Packet Storm
206769 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3959 2011-01-14 15:27 2010-12-14 Show GitHub Exploit DB Packet Storm
206770 5 警告 アップル
サイバートラスト株式会社
OpenLDAP Foundation
ターボリナックス
VMware
レッドハット		 - OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0212 2011-01-14 14:45 2010-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2491 - - - A race condition vulnerability in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f allows attackers to bypass inventory restrictions by simultaneously submitting purchase requests fro… - CVE-2024-53476 2024-12-29 04:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2492 - - - An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the prod… - CVE-2024-50945 2024-12-29 04:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2493 - - - Integer overflow vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f in the shopping cart functionality. The issue lies in the quantity parameter in the CartContr… - CVE-2024-50944 2024-12-29 04:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2494 - - - An issue was discovered in TCPDF before 6.8.0. The Error function lacks an htmlspecialchars call for the error message. - CVE-2024-56527 2024-12-29 04:15 2024-12-27 Show GitHub Exploit DB Packet Storm
2495 - - - Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS) vulnerability in /admin/articles/create. - CVE-2024-54774 2024-12-29 03:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2496 - - - A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via a crafted script to the /FB/getFbVideoSource.php component. - CVE-2024-50714 2024-12-29 03:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2497 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the client parameter in the /recuperaLog.php component. - CVE-2024-50717 2024-12-29 03:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2498 - - - SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the id parameter in the /sendPushManually.php component. - CVE-2024-50716 2024-12-29 03:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2499 - - - An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive information via command injection through a vulnerable unsanitized parameter defined in the /youtubeInfo.ph… - CVE-2024-50715 2024-12-29 03:15 2024-12-28 Show GitHub Exploit DB Packet Storm
2500 - - - Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions. - CVE-2024-54775 2024-12-29 02:15 2024-12-28 Show GitHub Exploit DB Packet Storm