Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227541 | 10 | 危険 | サン・マイクロシステムズ | - | Sun Java Web Start の BasicService におけるクライアントマシン上で任意のプログラムを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4910 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227542 | 7.5 | 危険 | w1n78 | - | e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4906 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227543 | 5 | 警告 | typosphere | - | Typo におけるパスワードを推測される脆弱性 |
CWE-310
暗号の問題 |
CVE-2008-4905 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227544 | 6 | 警告 | typosphere | - | Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4904 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227545 | 4.3 | 警告 | typosphere | - | Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4903 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227546 | 7.5 | 危険 | scripts frenzy | - | Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4902 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227547 | 7.5 | 危険 | scripts frenzy | - | Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4901 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227548 | 9.3 | 危険 | SAP | - | SAP GUI の KWEdit ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 |
CWE-Other
その他 |
CVE-2008-4830 | 2012-12-20 18:52 | 2009-04-16 | Show | GitHub Exploit DB Packet Storm |
| 227549 | 7.5 | 危険 | YourFreeWorld.com | - | YourFreeWorld Classifieds Blaster Script の tr.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4900 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 227550 | 6.8 | 警告 | planetluc | - | Planetluc RateMe におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-4899 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224391 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8098_firmware ipq6018_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9607_firmware mdm9650_firmware msm8909_firmware msm8998_firmware
Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer…
|
CWE-704
|
Incorrect Type Conversion or Cast
CVE-2019-14077
|
2024-11-21 13:26 |
2020-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 224392 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware<… |
Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2019-14067 | 2024-11-21 13:26 | 2020-06-3 | Show | GitHub Exploit DB Packet Storm |
| 224393 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware mdm9205_firmware mdm9607_firmware nicobar_firmware qcs404_firmware qcs405_firmware rennell_firmware sa6155p_firmware sc7180_firmware sc8180x_firmware sd… |
Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdra… |
CWE-190
Integer Overflow or Wraparound |
CVE-2019-14066 | 2024-11-21 13:26 | 2020-06-3 | Show | GitHub Exploit DB Packet Storm |
| 224394 | 9.8 |
CRITICAL
Network |
qualcomm |
qcs605_firmware sa6155p_firmware sm8150_firmware |
Buffer over-write when this 0-byte buffer is typecasted to some other structure and hence memory corruption in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SA6155P, SM8150 |
CWE-787
Out-of-bounds Write |
CVE-2019-14132 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224395 | 7.8 |
HIGH
Local |
qualcomm |
saipan_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
Memory failure in SKB if it fails to to add the requested padding to the skb in low memory targets or targets with major memory fragmentation in Snapdragon Auto, Snapdragon Mobile in Saipan, SM8150, … |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2019-14122 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224396 | 7.8 |
HIGH
Local |
qualcomm | ipq6018_firmware | Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Comput… |
CWE-862
Missing Authorization |
CVE-2019-14116 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224397 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware ipq8074_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware… |
Possible integer overflow to buffer overflow in WLAN while parsing nonstandard NAN IE messages. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connec… |
CWE-190 CWE-120 Integer Overflow or Wraparound Classic Buffer Overflow |
CVE-2019-14135 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224398 | 9.8 |
CRITICAL
Network |
qualcomm |
ipq8074_firmware qca8081_firmware qcs605_firmware sda845_firmware sdm670_firmware sdm710_firmware sdm845_firmware sdm850_firmware sm6150_firmware sm7150_firmware sm8150_… |
Possible out of bound access in WLAN handler when the received value of length in rx path is shorter than the expected value of country IE in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon I… |
CWE-125
Out-of-bounds Read |
CVE-2019-14134 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224399 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8053_firmware apq8096au_firmware msm8998_firmware nicobar_firmware qca6574au_firmware qcs605_firmware rennell_firmware sa6155p_firmware saipan_firmware sc8180x_firmware<… |
Out of bound write can occur in radio measurement request if STA receives multiple invalid rrm measurement request from AP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon … |
CWE-787
Out-of-bounds Write |
CVE-2019-14131 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224400 | 7.8 |
HIGH
Local |
qualcomm |
sda845_firmware sdm845_firmware sm8150_firmware |
Kernel was reading the CSL defined reserved field as uint16 instead of uint32 which could lead to memory overflow in Snapdragon Industrial IOT, Snapdragon Mobile in SDA845, SDM845, SM8150 |
CWE-787
Out-of-bounds Write |
CVE-2019-14105 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |