Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 16, 2026, 10:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228191 | 6.4 | 警告 | Ruby on Rails project | - | Ruby on Rails の Active Record コンポーネントにおけるデータ型インジェクション攻撃を実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-3221 | 2013-04-23 17:12 | 2013-04-22 | Show | GitHub Exploit DB Packet Storm |
| 228192 | 4.9 | 警告 | Linux | - | Linux Kernel の net/vmw_vsock/af_vsock.c における重要な情報を取得される脆弱性 |
CWE-200 CWE-DesignError |
CVE-2013-3237 | 2013-04-23 16:32 | 2013-04-7 | Show | GitHub Exploit DB Packet Storm |
| 228193 | 4.9 | 警告 | Linux | - | Linux Kernel の net/vmw_vsock/vmci_transport.c における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-3236 | 2013-04-23 16:32 | 2013-04-7 | Show | GitHub Exploit DB Packet Storm |
| 228194 | 10 | 危険 | 日立 | - | Hitachi IT Operations Director におけるバッファオーバーフローの脆弱性 |
CWE-noinfo
情報不足 |
- | 2013-04-23 15:12 | 2013-04-19 | Show | GitHub Exploit DB Packet Storm |
| 228195 | 10 | 危険 | Opera Software ASA | - | Opera における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-3211 | 2013-04-23 15:08 | 2013-04-4 | Show | GitHub Exploit DB Packet Storm |
| 228196 | 5 | 警告 | Opera Software ASA | - | Opera における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-3210 | 2013-04-23 15:07 | 2013-04-4 | Show | GitHub Exploit DB Packet Storm |
| 228197 | 4.9 | 警告 | Puppet Canonical |
- | Puppet における任意のカタログを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1652 | 2013-04-23 13:54 | 2013-03-12 | Show | GitHub Exploit DB Packet Storm |
| 228198 | 6.8 | 警告 | Lester Chan | - | WordPress 用 WP-DownloadManager プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-2697 | 2013-04-23 12:23 | 2013-04-5 | Show | GitHub Exploit DB Packet Storm |
| 228199 | 4.3 | 警告 | Novell | - | Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-1086 | 2013-04-23 12:14 | 2013-04-16 | Show | GitHub Exploit DB Packet Storm |
| 228200 | 9.3 | 危険 | Bitberry Software | - | BitZipper にメモリ破壊の脆弱性 |
CWE-Other
その他 |
CVE-2013-0138 | 2013-04-23 11:40 | 2013-04-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 16, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 319401 | 4.3 |
MEDIUM
Network |
chrome | Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) |
NVD-CWE-noinfo
|
CVE-2024-8909 | 2024-09-24 02:51 | 2024-09-18 | Show | GitHub Exploit DB Packet Storm | |
| 319402 | 4.3 |
MEDIUM
Network |
chrome | Incorrect security UI in Downloads in Google Chrome prior to 129.0.6668.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML p… |
NVD-CWE-noinfo
|
CVE-2024-8906 | 2024-09-24 02:38 | 2024-09-18 | Show | GitHub Exploit DB Packet Storm | |
| 319403 | 8.8 |
HIGH
Network |
microsoft |
sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 |
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-37339 | 2024-09-24 02:34 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 319404 | 8.8 |
HIGH
Network |
microsoft | edge_chromium | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43489 | 2024-09-24 02:33 | 2024-09-20 | Show | GitHub Exploit DB Packet Storm |
| 319405 | 4.3 |
MEDIUM
Network |
microsoft | edge_chromium | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-38221 | 2024-09-24 02:33 | 2024-09-20 | Show | GitHub Exploit DB Packet Storm |
| 319406 | 8.8 |
HIGH
Network |
microsoft | edge_chromium | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43496 | 2024-09-24 02:32 | 2024-09-20 | Show | GitHub Exploit DB Packet Storm |
| 319407 | 9.8 |
CRITICAL
Network |
dlink | dar-7000_firmware | A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected is an unknown function of the file /view/DBManage/Backup_Server_commit.php. The manipulation of the a… |
CWE-78
OS Command |
CVE-2024-9004 | 2024-09-24 02:29 | 2024-09-20 | Show | GitHub Exploit DB Packet Storm |
| 319408 | 8.8 |
HIGH
Network |
microsoft |
sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 |
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-37340 | 2024-09-24 02:08 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 319409 | 8.8 |
HIGH
Network |
microsoft |
sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 |
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-37338 | 2024-09-24 02:04 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 319410 | 4.3 |
MEDIUM
Network |
microsoft |
sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 |
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-37337 | 2024-09-24 02:00 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |