Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226461 | 10 | 危険 | RARLAB | - | RARLAB WinRAR における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-7144 | 2012-12-20 19:10 | 2009-09-1 | Show | GitHub Exploit DB Packet Storm |
| 226462 | 6.8 | 警告 | phpBB | - | phpBB におけるセッションをハイジャックされる脆弱性 |
CWE-200
情報漏えい |
CVE-2008-7143 | 2012-12-20 19:10 | 2009-09-1 | Show | GitHub Exploit DB Packet Storm |
| 226463 | 4.3 | 警告 | redgalaxy | - | Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-7134 | 2012-12-20 19:10 | 2009-09-1 | Show | GitHub Exploit DB Packet Storm |
| 226464 | 5 | 警告 | xyssl | - | XySSL におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-7129 | 2012-12-20 19:10 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 226465 | 7.5 | 危険 | xyssl | - | XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7128 | 2012-12-20 19:10 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 226466 | 7.5 | 危険 | zkup | - | zKup CMS における管理者権限を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-7124 | 2012-12-20 19:10 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 226467 | 6.8 | 警告 | zkup | - | zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-7123 | 2012-12-20 19:10 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 226468 | 7.5 | 危険 | WeBid Support | - | WeBid auction script の item.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-7119 | 2012-12-20 19:10 | 2009-08-28 | Show | GitHub Exploit DB Packet Storm |
| 226469 | 5 | 警告 | WeBid Support | - | WeBid auction script における SQL クエリログを取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7118 | 2012-12-20 19:10 | 2009-08-28 | Show | GitHub Exploit DB Packet Storm |
| 226470 | 5 | 警告 | WeBid Support | - | WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7117 | 2012-12-20 19:10 | 2009-08-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211121 | 8.1 |
HIGH
Adjacent |
qualcomm |
qca6390_firmware qcn7605_firmware qcs404_firmware sa415m_firmware sa515m_firmware sc8180x_firmware sdx55_firmware sm8250_firmware |
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-11156 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211122 | 8.8 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware qcn7606_firmware sa415m_firmware sa515m_firmware sa6155p_firmware sa8155p_firmware sc8180x_firmware s… |
u'Buffer overflow while processing PDU packet in bluetooth due to lack of check of buffer length before copying into it.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11155 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211123 | 8.8 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware qcn7606_firmware sa415m_firmware sa515m_firmware sa6155p_firmware sa8155p_firmware sc8180x_firmware s… |
u'Buffer overflow while processing a crafted PDU data packet in bluetooth due to lack of check of buffer size before copying' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11154 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211124 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8053_firmware qca6390_firmware qca9379_firmware qcn7605_firmware sc8180x_firmware sdx55_firmware |
u'Out of bound memory access while processing GATT data received due to lack of check of pdu data length and leads to remote code execution' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connect… |
CWE-787
Out-of-bounds Write |
CVE-2020-11153 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211125 | 8.1 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware sa415m_firmware sa515m_firmware sc8180x_firmware sdx55_firmware sm8250_firmware |
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap configuration request received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-11141 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211126 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware apq8009_firmware bitra_firmware ipq4019_firmware ipq5018_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware kamorta_firmware mdm9150_firmware md… |
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon… |
CWE-787
Out-of-bounds Write |
CVE-2020-11125 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211127 | 7.5 |
HIGH
Network |
zohocorp | manageengine_applications_manager | Zoho ManageEngine Applications Manager 14780 and before allows a remote unauthenticated attacker to register managed servers via AAMRequestProcessor servlet. |
CWE-287
Improper Authentication |
CVE-2020-10816 | 2024-11-21 13:56 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 211128 | 7.5 |
HIGH
Network |
glpi-project | glpi | In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could … | - | CVE-2020-11031 | 2024-11-21 13:56 | 2020-09-24 | Show | GitHub Exploit DB Packet Storm |
| 211129 | 7.5 |
HIGH
Network |
redhat |
single_sign-on openshift_application_runtimes keycloak |
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value tha… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2020-10758 | 2024-11-21 13:56 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |
| 211130 | 5.5 |
MEDIUM
Local |
linux debian |
linux_kernel debian_linux |
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM devic… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2020-10781 | 2024-11-21 13:56 | 2020-09-16 | Show | GitHub Exploit DB Packet Storm |