Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228171	7.5	危険	tourismscripts	-	Tourism Script Bus Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4618	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

228172	7.5	危険	tourismscripts	-	Tourism Script Accommodation Hotel Booking Portal Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4617	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

228173	7.2	危険	south river technologies	-	South River Technologies WebDrive におけるサービスを停止される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4606	2012-12-20 19:28	2010-01-13	Show	GitHub Exploit DB Packet Storm

228174	5	警告	The phpMyAdmin Project	-	phpMyAdmin の scripts/setup.php におけるクロスサイトリクエストフォージェリ (CSRF) 攻撃を実行される脆弱性	CWE-DesignError	CVE-2009-4605	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228175	5	警告	SAP	-	SAP Kernel の sapstartsrv.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4603	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

228176	4.3	警告	zeeways	-	Zeeways ZeeJobsite の basic_search_result.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4601	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

228177	7.5	危険	phpwares	-	PHP Inventory の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4597	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

228178	4.3	警告	phpwares	-	PHP Inventory の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4596	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

228179	6	警告	phpwares	-	PHP Inventory の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4595	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

228180	4.3	警告	wowd	-	Wowd クライアントの index.html におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4586	2012-12-20 19:28	2010-01-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216071	7.8	HIGH Local	qualcomm	aqt1000_firmware ar8035_firmware pm3003a_firmware pm4125_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350…	Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…	CWE-787 Out-of-bounds Write	CVE-2020-11165	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

216072	7.1	HIGH Local	qualcomm	apq8053_firmware apq8064au_firmware apq8096au_firmware ar8031_firmware ar8151_firmware csra6620_firmware csra6640_firmware mdm9650_firmware msm8996au_firmware pm215_firmwar…	Out-of-bounds memory access can occur while calculating alignment requirements for a negative width from external components in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago…	CWE-125 Out-of-bounds Read	CVE-2020-11161	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

216073	6.7	MEDIUM Local	qualcomm	apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware mdm9650_firmware pm215_firmware pm3003a_firmware pm6125_firmware …	Resource leakage issue during dci client registration due to reference count is not decremented if dci client registration fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd…	CWE-190 Integer Overflow or Wraparound	CVE-2020-11160	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

216074	9.8	CRITICAL Network	qualcomm	aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware ipq6005_firmware	Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly vali…	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2020-11134	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

216075	9.1	CRITICAL Network	qualcomm	apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq4018_firmware ipq4028_firmware	Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co…	CWE-125 Out-of-bounds Read	CVE-2020-11126	2024-11-21 13:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

216076	7.1	HIGH Network	infinispan redhat netapp	infinispan-server-rest data_grid oncommand_insight	A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. This flaw allows an attacker to perform a cross-site reques…	-	CVE-2020-10771	2024-11-21 13:56	2021-06-2	Show	GitHub Exploit DB Packet Storm

216077	5.5	MEDIUM Local	linux	linux_kernel	A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to re…	-	CVE-2020-10774	2024-11-21 13:56	2021-05-28	Show	GitHub Exploit DB Packet Storm

216078	9.8	CRITICAL Network	qualcomm	apq8017_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm439_firmware pm45…	Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdrag…	CWE-129 Improper Validation of Array Index	CVE-2020-11163	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

216079	6.7	MEDIUM Local	qualcomm	aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_…	Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile	CWE-416 Use After Free	CVE-2020-11147	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

216080	5.3	MEDIUM Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.	CWE-862 Missing Authorization	CVE-2020-10858	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm