Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 4, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227471 | 4.3 | 警告 | phpcredo | - | PHCDownload の search.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6669 | 2012-12-20 18:34 | 2008-01-7 | Show | GitHub Exploit DB Packet Storm |
| 227472 | 7.5 | 危険 | Zenphoto | - | Zenphoto の rss.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6666 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227473 | 7.5 | 危険 | webportal | - | WebPortal CMS の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6664 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227474 | 7.5 | 危険 | pragmaticutopia | - | Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6663 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227475 | 7.5 | 危険 | xcms | - | XCMS の cpie.php における静的コードを直接挿入する攻撃を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-6652 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227476 | 5 | 警告 | sanybee gallery | - | SanyBee Gallery の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6648 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227477 | 7.5 | 危険 | W-Agora | - | w-Agora の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6647 | 2012-12-20 18:34 | 2008-01-4 | Show | GitHub Exploit DB Packet Storm |
| 227478 | 6.8 | 警告 | xml2owl | - | xml2owl の showCode.php における任意のコマンドを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-6632 | 2012-12-20 18:34 | 2008-01-3 | Show | GitHub Exploit DB Packet Storm |
| 227479 | 6.8 | 警告 | pnphpbb | - | PNphpBB2 の printview.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6624 | 2012-12-20 18:34 | 2008-01-3 | Show | GitHub Exploit DB Packet Storm |
| 227480 | 5 | 警告 | zeuscms | - | ZeusCMS における絶対パストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6623 | 2012-12-20 18:34 | 2008-01-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 5, 2026, 4:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223081 | 7.5 |
HIGH
Network |
qualcomm |
mdm9607_firmware nicobar_firmware rennell_firmware sa6155p_firmware sdm660_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_firmware sxr213… |
The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Sna… |
CWE-20
Improper Input Validation |
CVE-2019-14010 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223082 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrag… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-14006 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223083 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Buffer overflow occur while playing the clip which is nonstandard due to lack of check of size duration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14005 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223084 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Buffer overflow occurs while processing invalid MKV clip, which has invalid EBML size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial I… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-14004 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223085 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon… |
CWE-476
NULL Pointer Dereference |
CVE-2019-14003 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223086 | 7.5 |
HIGH
Network |
emerson |
rx3i_cpe100_firmware rx3i_cpe115_firmware rx3i_cpe302_firmware rx3i_cpe305_firmware rx3i_cpe310_firmware rx3i_cru320_firmware rx3i_cpe330_firmware rx3i_cpe400_firmware rx3i_cp… |
GE PACSystems RX3i CPE100/115: All versions prior to R9.85,CPE302/305/310/330/400/410: All versions prior to R9.90,CRU/320 All versions(End of Life) may allow an attacker sending specially manipulate… |
CWE-20
Improper Input Validation |
CVE-2019-13524 | 2024-11-21 13:25 | 2020-01-17 | Show | GitHub Exploit DB Packet Storm |
| 223087 | 7.1 |
HIGH
Adjacent |
siemens |
nucleus_rtos nucleus_readystart nucleus_source_code nucleus_safetycert nucleus_net capital_vstar apogee_modular_equiment_controller_firmware apogee_modular_building_controller_fi… |
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3… | - | CVE-2019-13939 | 2024-11-21 13:25 | 2020-01-17 | Show | GitHub Exploit DB Packet Storm |
| 223088 | 8.6 |
HIGH
Network |
siemens |
scalance_x-200rna_firmware scalance_x204rna_firmware scalance_x-300_firmware scalance_xr-300wg_firmware scalance_xr-300_firmware scalance_x408-2_firmware siplus_net_csm_1277_firmware |
A vulnerability has been identified in SCALANCE X204RNA (HSR), SCALANCE X204RNA (PRP), SCALANCE X204RNA EEC (HSR), SCALANCE X204RNA EEC (PRP), SCALANCE X204RNA EEC (PRP/HSR), SCALANCE X302-7 EEC (230… |
CWE-306
Missing Authentication for Critical Function |
CVE-2019-13933 | 2024-11-21 13:25 | 2020-01-17 | Show | GitHub Exploit DB Packet Storm |
| 223089 | 6.5 |
MEDIUM
Network |
chrome | Inappropriate implementation in WebRTC in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CWE-787
Out-of-bounds Write |
CVE-2019-13722 | 2024-11-21 13:25 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 223090 | 7.5 |
HIGH
Network |
aveva | iec870ip_firmware | The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash. |
CWE-787
Out-of-bounds Write |
CVE-2019-13537 | 2024-11-21 13:25 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |