Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227161 | 4.3 | 警告 | snews | - | SNewsCMS Rus の search.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-1413 | 2012-12-20 18:52 | 2008-03-20 | Show | GitHub Exploit DB Packet Storm |
| 227162 | 7.5 | 危険 | phpbp | - | phpBP の includes/functions/banners-external.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-1408 | 2012-12-20 18:52 | 2008-03-20 | Show | GitHub Exploit DB Packet Storm |
| 227163 | 4.3 | 警告 | Plone Foundation | - | Plone CMS におけるアカウントへの永久アクセス権を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2008-1396 | 2012-12-20 18:52 | 2008-03-19 | Show | GitHub Exploit DB Packet Storm |
| 227164 | 7.5 | 危険 | Plone Foundation | - | Plone CMS におけるログアウトしたセッションを再利用される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-1395 | 2012-12-20 18:52 | 2008-03-19 | Show | GitHub Exploit DB Packet Storm |
| 227165 | 7.5 | 危険 | Plone Foundation | - | Plone CMS におけるアクセス権を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2008-1394 | 2012-12-20 18:52 | 2008-03-19 | Show | GitHub Exploit DB Packet Storm |
| 227166 | 10 | 危険 | Plone Foundation | - | Plone CMS における管理権限を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2008-1393 | 2012-12-20 18:52 | 2008-03-19 | Show | GitHub Exploit DB Packet Storm |
| 227167 | 4.3 | 警告 | s9y | - | S9Y のインストーラにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-1386 | 2012-12-20 18:52 | 2008-04-22 | Show | GitHub Exploit DB Packet Storm |
| 227168 | 4.3 | 警告 | s9y | - | S9Y の Top Referrers プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-1385 | 2012-12-20 18:52 | 2008-04-22 | Show | GitHub Exploit DB Packet Storm |
| 227169 | 7.5 | 危険 | ZoneMinder | - | ZoneMinder における任意のコマンドを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1381 | 2012-12-20 18:52 | 2008-05-1 | Show | GitHub Exploit DB Packet Storm |
| 227170 | 6.8 | 警告 | wildmary | - | wildmary Yap Blog の index.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-1370 | 2012-12-20 18:52 | 2008-03-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223241 | 7.5 |
HIGH
Network |
siemens |
ozw672_firmware ozw772_firmware |
A vulnerability has been identified in OZW672 (All versions < V10.00), OZW772 (All versions < V10.00). Vulnerable versions of OZW Web Server use predictable path names for project files that legitima… |
CWE-552
Files or Directories Accessible to External Parties |
CVE-2019-13941 | 2024-11-21 13:25 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 223242 | 7.5 |
HIGH
Network |
siemens |
s7-1200_cpu_1211c_firmware s7-1200_cpu_1212c_firmware s7-1200_cpu_1214c_firmware s7-1200_cpu_1215c_firmware s7-1200_cpu_1217c_firmware s7-1200_cpu_1212fc_firmware s7-1200_cpu_1214fc… |
A vulnerability has been identified in SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8FX PN/DP C… | - | CVE-2019-13940 | 2024-11-21 13:25 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 223243 | 7.5 |
HIGH
Network |
siemens |
scalance_s602_firmware scalance_s612_firmware scalance_s623_firmware scalance_s627-2m_firmware |
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627… | - | CVE-2019-13925 | 2024-11-21 13:25 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 223244 | 7.5 |
HIGH
Network |
siemens |
scalance_s602_firmware scalance_s612_firmware scalance_s623_firmware scalance_s627-2m_firmware |
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2019-13926 | 2024-11-21 13:25 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 223245 | 5.4 |
MEDIUM
Network |
siemens |
scalance_xc-200_firmware scalance_xf-200_firmware scalance_xp-200_firmware scalance_x-200irt_firmware scalance_xb-200_firmware scalance_xr-300wg_firmware scalance_x-300_firmware … |
A vulnerability has been identified in SCALANCE S602 (All versions < V4.1), SCALANCE S612 (All versions < V4.1), SCALANCE S623 (All versions < V4.1), SCALANCE S627-2M (All versions < V4.1), SCALANCE … | - | CVE-2019-13924 | 2024-11-21 13:25 | 2020-02-12 | Show | GitHub Exploit DB Packet Storm |
| 223246 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware |
Subsequent additions performed during Module loading while allocating the memory would lead to integer overflow and then to buffer overflow in Snapdragon Industrial IOT in MDM9206, MDM9607 |
CWE-190
Integer Overflow or Wraparound |
CVE-2019-14051 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223247 | 7.8 |
HIGH
Local |
qualcomm |
qcs605_firmware sdm439_firmware sdx24_firmware |
Out of bound access while allocating memory for an array in camera due to improper validation of elements parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivi… |
CWE-129
Improper Validation of Array Index |
CVE-2019-14046 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223248 | 7.8 |
HIGH
Local |
qualcomm |
qcs605_firmware sdm439_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdx24_firmware |
Out of bound access due to access of uninitialized memory segment in an array of pointers while normal camera open close in Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SDM439, SDM630, SDM63… |
CWE-129 CWE-908 Improper Validation of Array Index Use of Uninitialized Resource |
CVE-2019-14044 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223249 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware… |
Possibility of use-after-free and double free because of not marking buffer as NULL after freeing can lead to dangling pointer access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Elect… |
CWE-415 CWE-416 Double Free Use After Free |
CVE-2019-14055 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223250 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware apq8096au_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware msm8953_firmware qcn7605_firmware qcs605_firmware<… |
Stage-2 fault will occur while writing to an ION system allocation which has been assigned to non-HLOS memory which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electro… |
CWE-617
Reachable Assertion |
CVE-2019-14049 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |