Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226331	8.8	危険	visagesoft	-	VISAGESOFT eXPert PDF Viewer X ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-4919	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

226332	4.3	警告	SonicWALL	-	SonicWALL Pro 2040 などで使用されている SonicWALL SonicOS Enhanced におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4918	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

226333	7.5	危険	rs maxsoft	-	RS MAXSOFT の fotogalerie モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4912	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226334	10	危険	サン・マイクロシステムズ	-	Sun Java Web Start の BasicService におけるクライアントマシン上で任意のプログラムを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4910	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226335	7.5	危険	w1n78	-	e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4906	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226336	5	警告	typosphere	-	Typo におけるパスワードを推測される脆弱性	CWE-310 暗号の問題	CVE-2008-4905	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226337	6	警告	typosphere	-	Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4904	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226338	4.3	警告	typosphere	-	Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4903	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226339	7.5	危険	scripts frenzy	-	Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4902	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226340	7.5	危険	scripts frenzy	-	Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4901	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197801	9.8	CRITICAL Network	qualcomm	agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware	u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapdragon Auto, Snapdragon Compute, Snapdrag…	CWE-129 Improper Validation of Array Index	CVE-2020-3673	2024-11-21 14:31	2020-11-2	Show	GitHub Exploit DB Packet Storm

197802	9.1	CRITICAL Network	qualcomm	agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9625_firmware mdm9635m_firmware<…	u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information Element(IEI) NAS message container' in Snapdragon Auto, Snapdragon Compute, …	CWE-125 Out-of-bounds Read	CVE-2020-3670	2024-11-21 14:31	2020-11-2	Show	GitHub Exploit DB Packet Storm

197803	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware<…	u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due to lack of array bound check.' in Snapd…	CWE-120 Classic Buffer Overflow	CVE-2020-3657	2024-11-21 14:31	2020-11-2	Show	GitHub Exploit DB Packet Storm

197804	9.8	CRITICAL Network	qualcomm	agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware	u'Buffer overflow occurs while processing SIP message packet due to lack of check of index validation before copying into it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag…	CWE-129 Improper Validation of Array Index	CVE-2020-3654	2024-11-21 14:31	2020-11-2	Show	GitHub Exploit DB Packet Storm

197805	7.8	HIGH Local	qualcomm	agatti_firmware bitra_firmware kamorta_firmware qca6390_firmware qcs404_firmware qcs610_firmware rennell_firmware sa515m_firmware sc7180_firmware sc8180x_firmware sdx55_…	u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,…	NVD-CWE-noinfo	CVE-2020-3638	2024-11-21 14:31	2020-11-2	Show	GitHub Exploit DB Packet Storm

197806	7.8	HIGH Local	apple	iphone_os ipados tvos watchos mac_os_x	An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 M…	CWE-125 Out-of-bounds Read	CVE-2020-3880	2024-11-21 14:31	2020-10-28	Show	GitHub Exploit DB Packet Storm

197807	7.8	HIGH Local	apple redhat	iphone_os ipados tvos safari icloud itunes enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server	A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and…	CWE-346 Origin Validation Error	CVE-2020-3864	2024-11-21 14:31	2020-10-28	Show	GitHub Exploit DB Packet Storm

197808	7.8	HIGH Local	apple	mac_os_x	A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. An applica…	CWE-787 Out-of-bounds Write	CVE-2020-3863	2024-11-21 14:31	2020-10-28	Show	GitHub Exploit DB Packet Storm

197809	7.1	HIGH Local	apple	mac_os_x	An access issue was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. A malicious appl…	NVD-CWE-noinfo	CVE-2020-3855	2024-11-21 14:31	2020-10-28	Show	GitHub Exploit DB Packet Storm

197810	5.3	MEDIUM Network	apple	safari	A logic issue was addressed with improved validation. This issue is fixed in Safari 13.0.5. A URL scheme may be incorrectly ignored when determining multimedia permission for a website.	CWE-863 Incorrect Authorization	CVE-2020-3852	2024-11-21 14:31	2020-10-28	Show	GitHub Exploit DB Packet Storm