Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227301 | 7.5 | 危険 | WordPress.org | - | WordPress 用の st_newsletter プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0683 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227302 | 7.5 | 危険 | WordPress.org | - | WordPress 用の Wordspew プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0682 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227303 | 6.8 | 警告 | phpshop | - | PHPShop の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0681 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227304 | 7.5 | 危険 | the everything development company | - | The Everything Development System の The Everything Development Engine における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0675 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227305 | 7.5 | 危険 | tintin | - | TinTin++ および WinTin++ におけるホームディレクトリの一番上のレベルにある任意のファイルを切り捨てられる脆弱性 |
CWE-DesignError
|
CVE-2008-0673 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227306 | 5 | 警告 | tintin | - | TinTin++ および WinTin++ の process_chat_input 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-0672 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227307 | 10 | 危険 | tintin | - | TinTin++ および WinTin++ の add_line_buffer 関数におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-0671 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227308 | 4.3 | 警告 | sift | - | Sift Unity の search.cgi におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-0669 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227309 | 3.6 | 注意 | website meta language | - | WML における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-0666 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
| 227310 | 3.6 | 注意 | website meta language | - | WML の wml_backend/p1_ipp/ipp.src における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-0665 | 2012-12-20 18:34 | 2008-02-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 2, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197431 | 8.6 |
HIGH
Network |
cisco | ios_xr | Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to either immediately crash the Int… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2020-3569 | 2024-11-21 14:31 | 2020-09-23 | Show | GitHub Exploit DB Packet Storm |
| 197432 | 5.5 |
MEDIUM
Local |
qualcomm |
bitra_firmware kamorta_firmware nicobar_firmware qcs404_firmware qcs610_firmware rennell_firmware sa6155p_firmware sa8155p_firmware saipan_firmware sc7180_firmware sc818… |
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapd… |
NVD-CWE-noinfo
|
CVE-2020-3679 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197433 | 5.5 |
MEDIUM
Local |
qualcomm |
nicobar_firmware qcs405_firmware saipan_firmware sc8180x_firmware sdx55_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mo… |
CWE-125
Out-of-bounds Read |
CVE-2020-3674 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197434 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware kamorta_firmware mdm9607_firmware msm8917_firmware msm8953_firmware nicobar_firmware qcm2150_firmware qcs405_firmware qcs605_firmware qm215_firmware ren… |
Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3656 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197435 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware mdm9625_firmware mdm9635m_firmware… |
u'Multiple Read overflows issue due to improper length check while decoding Generic NAS transport/EMM info' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT,… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2020-3634 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197436 | 7.1 |
HIGH
Local |
qualcomm |
kamorta_firmware nicobar_firmware qcs605_firmware qcs610_firmware rennell_firmware sc7180_firmware sda660_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdm670… |
u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.' in Snapdragon Compute, Snapdrag… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3617 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197437 | 6.5 |
MEDIUM
Adjacent |
qualcomm debian arista |
apq8053_firmware ipq4019_firmware ipq8064_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware qcn5502_firmware qcs405_firmware sdx20_firmware sm6150_firmware … |
u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the… |
CWE-319
Cleartext Transmission of Sensitive Information |
CVE-2020-3702 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197438 | 9.8 |
CRITICAL
Network |
qualcomm |
ipq5018_firmware ipq6018_firmware ipq8074_firmware kamorta_firmware nicobar_firmware qca6390_firmware qcn7605_firmware qcs404_firmware qcs405_firmware rennell_firmware s… |
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2020-3675 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197439 | 7.8 |
HIGH
Local |
qualcomm | msm8909w_firmware | u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrago… |
CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write |
CVE-2020-3648 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197440 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware qcs405_firmware sc8180x_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware |
u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM960… |
CWE-787
Out-of-bounds Write |
CVE-2020-3647 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |