Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226131	7.2	危険	サン・マイクロシステムズ	-	Solaris x86 上などで稼動している Sun VirtualBox の VBoxNetAdpCtl 設定ツールにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-3692	2012-12-20 19:28	2009-10-6	Show	GitHub Exploit DB Packet Storm

226132	4.3	警告	promosi-web	-	Ardguest の ardguest.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3668	2012-12-20 19:28	2009-10-11	Show	GitHub Exploit DB Packet Storm

226133	7.5	危険	stanback	-	BS Counter の file/stats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3659	2012-12-20 19:28	2009-10-11	Show	GitHub Exploit DB Packet Storm

226134	5.8	警告	tim nelson	-	Drupal 用の Shared Sign-On におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2009-3657	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226135	6.8	警告	tim nelson	-	Drupal 用の Shared Sign-On モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-3656	2012-12-20 19:28	2009-09-30	Show	GitHub Exploit DB Packet Storm

226136	5	警告	Rhino Software	-	Rhino Software Serv-U におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3655	2012-12-20 19:28	2009-10-9	Show	GitHub Exploit DB Packet Storm

226137	4.3	警告	YABSoft	-	YABSoft Mega File Hosting Script の emaullinks.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3647	2012-12-20 19:28	2009-10-9	Show	GitHub Exploit DB Packet Storm

226138	7.5	危険	soundset	-	Joomla! 用の Soundse コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3644	2012-12-20 19:28	2009-10-9	Show	GitHub Exploit DB Packet Storm

226139	4.3	警告	TYPO3 Association	-	TYPO3 の Install Tool サブコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3636	2012-12-20 19:28	2009-11-2	Show	GitHub Exploit DB Packet Storm

226140	6.8	警告	TYPO3 Association	-	TYPO3 の Install Tool サブコンポーネントにおけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-3635	2012-12-20 19:28	2009-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211301	9.8	CRITICAL Network	qualcomm	aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware ipq6005_firmware	Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly vali…	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2020-11134	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

211302	9.1	CRITICAL Network	qualcomm	apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq4018_firmware ipq4028_firmware	Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co…	CWE-125 Out-of-bounds Read	CVE-2020-11126	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

211303	7.1	HIGH Network	infinispan redhat netapp	infinispan-server-rest data_grid oncommand_insight	A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. This flaw allows an attacker to perform a cross-site reques…	-	CVE-2020-10771	2024-11-21 13:56	2021-06-2	Show	GitHub Exploit DB Packet Storm

211304	5.5	MEDIUM Local	linux	linux_kernel	A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to re…	-	CVE-2020-10774	2024-11-21 13:56	2021-05-28	Show	GitHub Exploit DB Packet Storm

211305	9.8	CRITICAL Network	qualcomm	apq8017_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm439_firmware pm45…	Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdrag…	CWE-129 Improper Validation of Array Index	CVE-2020-11163	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

211306	6.7	MEDIUM Local	qualcomm	aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_…	Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile	CWE-416 Use After Free	CVE-2020-11147	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

211307	5.3	MEDIUM Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.	CWE-862 Missing Authorization	CVE-2020-10858	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

211308	9.8	CRITICAL Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution.	NVD-CWE-noinfo	CVE-2020-10857	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

211309	7.5	HIGH Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware ar9380_firmware c…	Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2020-11119	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

211310	6.4	MEDIUM Local	qualcomm	msm8909w sdm630 qca6174a qca6574au qca6584au qca9377 msm8976 msm8937 msm8952 apq8096au msm8996au msm8917 sd450 sd835 sdx24 qcs605 sd855 qcs405 ap…	Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer I…	CWE-362 Race Condition	CVE-2020-11152	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm