Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 26, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227781 | 6.8 | 警告 | Pligg | - | Pligg におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-4787 | 2012-12-20 19:28 | 2009-11-30 | Show | GitHub Exploit DB Packet Storm |
| 227782 | 4.3 | 警告 | Pligg | - | Pligg におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4786 | 2012-12-20 19:28 | 2009-11-30 | Show | GitHub Exploit DB Packet Storm |
| 227783 | 4.3 | 警告 | phpMyFAQ | - | phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4780 | 2012-12-20 19:28 | 2009-12-1 | Show | GitHub Exploit DB Packet Storm |
| 227784 | 6.8 | 警告 | Ubercart | - | Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-4773 | 2012-12-20 19:28 | 2009-11-18 | Show | GitHub Exploit DB Packet Storm |
| 227785 | 4.3 | 警告 | Ubercart | - | Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4772 | 2012-12-20 19:28 | 2009-11-18 | Show | GitHub Exploit DB Packet Storm |
| 227786 | 5 | 警告 | Ubercart | - | Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4771 | 2012-12-20 19:28 | 2009-11-18 | Show | GitHub Exploit DB Packet Storm |
| 227787 | 9 | 危険 | Codeorigin | - | Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-4790 | 2012-12-20 19:28 | 2010-04-22 | Show | GitHub Exploit DB Packet Storm |
| 227788 | 7.2 | 危険 | tukeva | - | TUKEVA Password Reminder における資格情報を発見される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-4781 | 2012-12-20 19:28 | 2010-04-21 | Show | GitHub Exploit DB Packet Storm |
| 227789 | 7.5 | 危険 | robert garrigos | - | NukeHall における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4779 | 2012-12-20 19:28 | 2010-04-21 | Show | GitHub Exploit DB Packet Storm |
| 227790 | 4.3 | 警告 | Plohni | - | Plohni Shoutbox の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4767 | 2012-12-20 19:28 | 2010-04-20 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 26, 2026, 4:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221371 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qcs404_firmware qcs605_firmware
Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics …
|
CWE-129
|
Improper Validation of Array Index
CVE-2019-2239
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 221372 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_67… |
Lack of check of data type can lead to subsequent loop-expression potentially go negative and the condition will still evaluate to true leading to buffer underflow. in Snapdragon Auto, Snapdragon Com… |
CWE-787
Out-of-bounds Write |
CVE-2019-2238 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221373 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_67… |
Failure in taking appropriate action to handle the error case If keypad gpio deactivation fails leads to silent failure scenario and subsequent logic gets executed everytime in Snapdragon Auto, Snapd… |
CWE-388
7PK - Errors |
CVE-2019-2237 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221374 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qca8081_firmware qcs605_firmware qualcomm_215_firmware sd_410_firmwa… |
Null pointer dereference during secure application termination using specific application ids. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connect… |
CWE-476
NULL Pointer Dereference |
CVE-2019-2236 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221375 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qcs404_firmware qcs605_firmware qualcomm_215_firmware sd_410_firmware sd_412_firmware… |
Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2235 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221376 | 5.4 |
MEDIUM
Network |
oracle | database_server | Vulnerability in the Application Express component of Oracle Database Server. Supported versions that are affected are 5.1 and 18.2. Easily exploitable vulnerability allows low privileged attacker ha… |
NVD-CWE-noinfo
|
CVE-2019-2484 | 2024-11-21 13:40 | 2019-07-24 | Show | GitHub Exploit DB Packet Storm |
| 221377 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9650_firmware msm8996au_firmware qca6574au_firmware qcs405_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware s… |
Out of bound access can occur due to buffer copy without checking size of input received from WLAN firmware in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, … |
CWE-787
Out-of-bounds Write |
CVE-2019-2292 | 2024-11-21 13:40 | 2019-07-22 | Show | GitHub Exploit DB Packet Storm |
| 221378 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6574au_firmware qcs405_firmware qcs605_firmware… |
Improper validation for inputs received from firmware can lead to an out of bound write issue in video driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial I… |
CWE-787
Out-of-bounds Write |
CVE-2019-2287 | 2024-11-21 13:40 | 2019-07-22 | Show | GitHub Exploit DB Packet Storm |
| 221379 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6574au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firm… |
Shared memory gets updated with invalid data and may lead to access beyond the allocated memory. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd… |
CWE-787
Out-of-bounds Write |
CVE-2019-2279 | 2024-11-21 13:40 | 2019-07-22 | Show | GitHub Exploit DB Packet Storm |
| 221380 | 7.8 |
HIGH
Local |
qualcomm |
msm8996au_firmware qcs405_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450… |
Out of bound read can happen due to lack of NULL termination on user controlled data in WLAN in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mob… |
CWE-125
Out-of-bounds Read |
CVE-2019-2277 | 2024-11-21 13:40 | 2019-07-22 | Show | GitHub Exploit DB Packet Storm |