Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228251	6.8	警告	Sitecore	-	Sitecore Staging Module の Staging Webservice における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-4367	2012-12-20 19:28	2009-12-21	Show	GitHub Exploit DB Packet Storm

228252	4.3	警告	Scriptsez.net	-	ScriptsEz Ez Blog の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4366	2012-12-20 19:28	2009-12-21	Show	GitHub Exploit DB Packet Storm

228253	4.3	警告	Scriptsez.net	-	ScriptsEz Ez Blog の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4365	2012-12-20 19:28	2009-12-21	Show	GitHub Exploit DB Packet Storm

228254	4.3	警告	Scriptsez.net	-	ScriptsEz Ez Blog の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4364	2012-12-20 19:28	2009-12-21	Show	GitHub Exploit DB Packet Storm

228255	6.8	警告	wscreator	-	WSCreator の ADMIN/loginaction.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4351	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228256	6.8	警告	PHP Web Scripts	-	Link Up Gold の administration/administrators.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4349	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228257	4.3	警告	toni milovan	-	TYPO3 用の RTE エクステンションを伴う Frontend ニュース投稿ツールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4346	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228258	4.3	警告	tobias sommer	-	TYPO3 用の ZID Linkliste エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4344	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228259	7.5	危険	stephan vits	-	TYPO3 用の mf_subscription エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4339	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

228260	7.5	危険	fr.simon rundell	-	TYPO3 用の pd_calendar エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4337	2012-12-20 19:28	2009-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216111	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware	Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosu…	CWE-200 Information Exposure	CVE-2020-11221	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216112	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware	HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…	CWE-200 Information Exposure	CVE-2020-11199	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216113	7.8	HIGH Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<…	Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume…	CWE-416 Use After Free	CVE-2020-11309	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216114	6.8	MEDIUM Physics	qualcomm	apq8009_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware…	Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu…	CWE-129 Improper Validation of Array Index	CVE-2020-11308	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216115	9.1	CRITICAL Network	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8151_firmware	Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…	CWE-125 Out-of-bounds Read	CVE-2020-11166	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216116	6.8	MEDIUM Physics	qualcomm	apq8009_firmware apq8053_firmware mdm9206_firmware pm8909_firmware pm8916_firmware pm8953_firmware pmd9607_firmware pmi8952_firmware qca9367_firmware qca9377_firmware sm…	Integer overflow in boot due to improper length check on arguments received in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11305	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216117	6.4	MEDIUM Local	qualcomm	aqt1000_firmware fsm10055_firmware pm3003a_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm7350c_firmware pm8004_firmware pm8008_firmware p…	Potential arbitrary memory corruption when the qseecom driver updates ion physical addresses in the buffer as it exposes a physical address to user land in Snapdragon Auto, Snapdragon Compute, Snapdr…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-11230	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216118	7.8	HIGH Local	qualcomm	aqt1000_firmware ar8035_firmware pm4125_firmware pm4250_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm640a_firmware pm640l…	Part of RPM region was not protected from xblSec itself due to improper policy and leads to unprivileged access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IO…	NVD-CWE-noinfo	CVE-2020-11228	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216119	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8151_firmware csra6620_firmwar…	Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon …	CWE-120 Classic Buffer Overflow	CVE-2020-11299	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

216120	7.0	HIGH Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmwa…	Use after free condition in msm ioctl events due to race between the ioctl register and deregister events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Sna…	CWE-416 Use After Free	CVE-2020-11290	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm