Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227481	8.8	危険	visagesoft	-	VISAGESOFT eXPert PDF Viewer X ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-4919	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

227482	4.3	警告	SonicWALL	-	SonicWALL Pro 2040 などで使用されている SonicWALL SonicOS Enhanced におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4918	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

227483	7.5	危険	rs maxsoft	-	RS MAXSOFT の fotogalerie モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4912	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227484	10	危険	サン・マイクロシステムズ	-	Sun Java Web Start の BasicService におけるクライアントマシン上で任意のプログラムを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4910	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227485	7.5	危険	w1n78	-	e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4906	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227486	5	警告	typosphere	-	Typo におけるパスワードを推測される脆弱性	CWE-310 暗号の問題	CVE-2008-4905	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227487	6	警告	typosphere	-	Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4904	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227488	4.3	警告	typosphere	-	Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4903	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227489	7.5	危険	scripts frenzy	-	Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4902	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

227490	7.5	危険	scripts frenzy	-	Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4901	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224211	5.5	MEDIUM Local	qualcomm	mdm9607_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware msm8998_firmware nicobar_firmware qcs605_firmware rennell_firmware …	Null pointer dereference issue in radio interface layer due to lack of null check in sapmodule destructor in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in …	CWE-476 NULL Pointer Dereference	CVE-2019-14075	2024-11-21 13:26	2020-04-16	Show	GitHub Exploit DB Packet Storm

224212	7.0	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware<…	Possible use after free issue in pcm volume controls due to race condition exist in private data used in mixer controls in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Ind…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2019-14070	2024-11-21 13:26	2020-04-16	Show	GitHub Exploit DB Packet Storm

224213	7.8	HIGH Local	andyroid	andy_os	An issue was discovered in AndyOS Andy versions up to 46.11.113. By default, it starts telnet and ssh (ports 22 and 23) with root privileges in the emulated Android system. This can be exploited by r…	CWE-276 Incorrect Default Permissions	CVE-2019-14326	2024-11-21 13:26	2020-04-15	Show	GitHub Exploit DB Packet Storm

224214	6.1	MEDIUM Network	limesurvey	limesurvey	LimeSurvey 3.17.7+190627 has XSS via Boxes in application/extensions/PanelBoxWidget/views/box.php or a label title in application/views/admin/labels/labelview_view.php.	CWE-79 Cross-site Scripting	CVE-2019-14512	2024-11-21 13:26	2020-03-17	Show	GitHub Exploit DB Packet Storm

224215	9.8	CRITICAL Network	ricoh	sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware	Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identifie…	CWE-787 Out-of-bounds Write	CVE-2019-14310	2024-11-21 13:26	2020-03-14	Show	GitHub Exploit DB Packet Storm

224216	7.5	HIGH Network	ricoh	sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware	Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information store…	CWE-798 Use of Hard-coded Credentials	CVE-2019-14309	2024-11-21 13:26	2020-03-14	Show	GitHub Exploit DB Packet Storm

224217	7.5	HIGH Network	ricoh	sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware	Ricoh SP C250DN 1.05 devices allow denial of service (issue 1 of 3). Some Ricoh printers were affected by a wrong LPD service implementation that lead to a denial of service vulnerability.	NVD-CWE-noinfo	CVE-2019-14303	2024-11-21 13:26	2020-03-14	Show	GitHub Exploit DB Packet Storm

224218	9.8	CRITICAL Network	ricoh	sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware	Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local acc…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2019-14299	2024-11-21 13:26	2020-03-14	Show	GitHub Exploit DB Packet Storm

224219	7.8	HIGH Local	qualcomm	qcn7605_firmware qcs605_firmware sda845_firmware sdm670_firmware sdm710_firmware sdm845_firmware sdm850_firmware sm8150_firmware sxr1130_firmware	Possible Integer underflow in WLAN function due to lack of check of data received from user side in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consu…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2019-14085	2024-11-21 13:26	2020-03-5	Show	GitHub Exploit DB Packet Storm

224220	9.1	CRITICAL Network	qualcomm	ipq8074_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware qcn7605_firmware sm8150_firmware	Potential buffer over-read due to lack of bound check of memory offset passed in WLAN firmware in Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2019-14082	2024-11-21 13:26	2020-03-5	Show	GitHub Exploit DB Packet Storm