Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226651	7.5	危険	polypager	-	PolyPager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3506	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226652	4.3	警告	polypager	-	PolyPager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3505	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226653	5	警告	webgui	-	Plain Black WebGUI の RSSFromParent における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-3503	2012-12-20 18:52	2008-06-20	Show	GitHub Exploit DB Packet Storm

226654	5	警告	RealVNC	-	RealVNC Windows Client の vncviewer.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3493	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226655	7.5	危険	scripts24	-	Scripts24 iPost および iTGP の go.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3491	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226656	7.5	危険	phpx	-	PHPX の includes/functions.inc.php の checkCookie 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3489	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226657	7.5	危険	phpauctions	-	PHPAuction GPL の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3487	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

226658	4.3	警告	screwturn	-	ScrewTurn Wiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3483	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

226659	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3457	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

226660	6.4	警告	The phpMyAdmin Project	-	phpMyAdmin におけるなりすましされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-3456	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197581	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9207c_firmware…	u'A potential buffer overflow exists due to integer overflow when parsing handler options due to wrong data type usage in operation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S…	CWE-190 Integer Overflow or Wraparound	CVE-2020-3624	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197582	7.8	HIGH Local	qualcomm	mdm9206 mdm9607 mdm9650 mdm9655 mdm9640 mdm9645 sdx20 sdm630 sdm636 sdm660 msm8937 sdm845 apq8096au msm8996au msm8996 msm8917 msm8998 sdm632 sdm7…	u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon …	CWE-787 Out-of-bounds Write	CVE-2020-3622	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197583	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9150_firmware mdm9607_firmware mdm9640_firmware	u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Sna…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-3621	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197584	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9150_firmware mdm9607_firmware mdm9640_firmware	u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Au…	CWE-190 Integer Overflow or Wraparound	CVE-2020-3620	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197585	7.0	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8098_firmware ipq8074_firmware kamorta_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware	u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv…	CWE-787 CWE-367 Out-of-bounds Write Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-3619	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197586	7.8	HIGH Local	qualcomm	apq8098_firmware kamorta_firmware msm8998_firmware qcs404_firmware qcs605_firmware sda660_firmware sda845_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdm670…	u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, …	NVD-CWE-noinfo	CVE-2020-3611	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197587	6.5	MEDIUM Network	cisco	jabber	A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An…	CWE-20 Improper Input Validation	CVE-2020-3498	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197588	6.8	MEDIUM Adjacent	cisco	rv340w_firmware rv340_firmware rv345_firmware rv345p_firmware	Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar…	CWE-20 Improper Input Validation	CVE-2020-3453	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197589	4.7	MEDIUM Network	cisco	rv340w_firmware rv340_firmware rv345_firmware rv345p_firmware	Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar…	CWE-20 Improper Input Validation	CVE-2020-3451	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197590	6.5	MEDIUM Network	cisco	asyncos	A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App…	CWE-522 Insufficiently Protected Credentials	CVE-2020-3547	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm