Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 11, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227691 | 8.5 | 危険 | The phpMyAdmin Project | - | phpMyAdmin の libraries/database_interface.lib.php における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4096 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227692 | 7.5 | 危険 | Ruby on Rails project | - | Ruby on Rails における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4094 | 2012-12-20 18:52 | 2008-09-30 | Show | GitHub Exploit DB Packet Storm |
| 227693 | 6.8 | 警告 | yourownbux | - | YourOwnBux の memberstats.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4093 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227694 | 6.8 | 警告 | source workshop | - | Web Directory Script の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4091 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227695 | 7.5 | 危険 | source workshop | - | Reciprocal Links Manager の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4086 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227696 | 4.4 | 警告 | stephenjungels | - | Plait の plaiter における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-4085 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227697 | 7.5 | 危険 | stash | - | Stash の admin/login.php における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-4081 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227698 | 6.8 | 警告 | stash | - | Stash における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4080 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227699 | 7.5 | 危険 | zanfi solutions | - | Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4074 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
| 227700 | 7.5 | 危険 | zanfi solutions | - | Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4073 | 2012-12-20 18:52 | 2008-09-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224411 | 6.1 |
MEDIUM
Network |
limesurvey | limesurvey | LimeSurvey 3.17.7+190627 has XSS via Boxes in application/extensions/PanelBoxWidget/views/box.php or a label title in application/views/admin/labels/labelview_view.php. |
CWE-79
Cross-site Scripting |
CVE-2019-14512 | 2024-11-21 13:26 | 2020-03-17 | Show | GitHub Exploit DB Packet Storm |
| 224412 | 9.8 |
CRITICAL
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identifie… |
CWE-787
Out-of-bounds Write |
CVE-2019-14310 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |
| 224413 | 7.5 |
HIGH
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information store… |
CWE-798
Use of Hard-coded Credentials |
CVE-2019-14309 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |
| 224414 | 7.5 |
HIGH
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices allow denial of service (issue 1 of 3). Some Ricoh printers were affected by a wrong LPD service implementation that lead to a denial of service vulnerability. |
NVD-CWE-noinfo
|
CVE-2019-14303 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |
| 224415 | 9.8 |
CRITICAL
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local acc… |
CWE-307
mproper Restriction of Excessive Authentication Attempts |
CVE-2019-14299 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |
| 224416 | 7.8 |
HIGH
Local |
qualcomm |
qcn7605_firmware qcs605_firmware sda845_firmware sdm670_firmware sdm710_firmware sdm845_firmware sdm850_firmware sm8150_firmware sxr1130_firmware |
Possible Integer underflow in WLAN function due to lack of check of data received from user side in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consu… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2019-14085 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |
| 224417 | 9.1 |
CRITICAL
Network |
qualcomm |
ipq8074_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware qcn7605_firmware sm8150_firmware |
Potential buffer over-read due to lack of bound check of memory offset passed in WLAN firmware in Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2019-14082 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |
| 224418 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096_firmware apq8096au_firmware ipq6018_firmware ipq8074_firmware mdm9206_firmware mdm9207c_firmware… |
Possible buffer overflow in data offload handler due to lack of check of keydata length when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electron… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14098 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |
| 224419 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware msm8998_firmwar… |
Possible buffer overflow in WLAN Parser due to lack of length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sn… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14097 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |
| 224420 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8016_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware… |
Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14095 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |