Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 17, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228341 | 4.3 | 警告 | georgemathewk | - | WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-3526 | 2013-05-14 15:37 | 2013-05-10 | Show | GitHub Exploit DB Packet Storm |
| 228342 | 7.5 | 危険 | David Clark | - | phpVMS 用 Pop Up News モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-3524 | 2013-05-14 15:36 | 2013-05-10 | Show | GitHub Exploit DB Packet Storm |
| 228343 | 7.5 | 危険 | greg jennings | - | This HTML Is Simple における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-3523 | 2013-05-14 15:35 | 2013-04-1 | Show | GitHub Exploit DB Packet Storm |
| 228344 | 6.5 | 警告 | vBulletin Solutions, Inc. | - | vBulletin の index.php/ajax/api/reputation/vote における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-3522 | 2013-05-14 15:34 | 2013-05-10 | Show | GitHub Exploit DB Packet Storm |
| 228345 | 4.6 | 警告 | シスコシステムズ | - | Cisco Aggregation Services Router Route Processor 上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) 状態にされる脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2013-1136 | 2013-05-14 14:52 | 2013-05-13 | Show | GitHub Exploit DB Packet Storm |
| 228346 | 10 | 危険 | phpvms.net | - | phpVMS の admin/action.php における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-6552 | 2013-05-14 12:00 | 2012-08-24 | Show | GitHub Exploit DB Packet Storm |
| 228347 | 9.3 | 危険 | サムスン | - | MarkAny ContentSAFER MASetupCaller の ActiveX コントロールに脆弱性 |
CWE-94
コード・インジェクション |
CVE-2012-2990 | 2013-05-13 17:59 | 2012-08-24 | Show | GitHub Exploit DB Packet Storm |
| 228348 | 4.3 | 警告 | WPPA Opa Jaap | - | WordPress 用 WP Photo Album Plus プラグインの wp-admin/admin.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-3254 | 2013-05-13 17:32 | 2013-05-6 | Show | GitHub Exploit DB Packet Storm |
| 228349 | 6.8 | 警告 | NetWebLogic | - | WordPress 用 Login With Ajax プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-2707 | 2013-05-13 17:31 | 2013-05-6 | Show | GitHub Exploit DB Packet Storm |
| 228350 | 5 | 警告 | シスコシステムズ | - | Cisco Unified Presence のサーバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2013-1242 | 2013-05-13 17:30 | 2013-05-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 17, 2026, 4:19 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 193901 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware
Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indu…
|
CWE-787
|
Out-of-bounds Write
CVE-2021-30256
|
2024-11-21 15:03 |
2021-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 193902 | 6.1 |
MEDIUM
Network |
kindsoft | kindeditor | Cross Site Scripting (XSS) vulnerability exists in KindEditor (Chinese versions) 4.1.12, which can be exploited by an attacker to obtain user cookie information. |
CWE-79
Cross-site Scripting |
CVE-2021-30086 | 2024-11-21 15:03 | 2021-09-29 | Show | GitHub Exploit DB Packet Storm |
| 193903 | 7.8 |
HIGH
Local |
oracle |
linux engineered_systems_utilities |
Vulnerability in Oracle Linux (component: OSwatcher). Supported versions that are affected are 7 and 8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructur… |
NVD-CWE-noinfo
|
CVE-2021-2464 | 2024-11-21 15:03 | 2021-09-25 | Show | GitHub Exploit DB Packet Storm |
| 193904 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware csr6030_firmware<… |
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industr… |
CWE-20
Improper Input Validation |
CVE-2021-30261 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193905 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8092_firmware apq8094_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware… |
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Comp… |
CWE-20 CWE-190 Improper Input Validation Integer Overflow or Wraparound |
CVE-2021-30260 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193906 | 8.2 |
HIGH
Network |
axiossystems | assyst | Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through … |
CWE-611
XXE |
CVE-2021-30137 | 2024-11-21 15:03 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 193907 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmwa… |
Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CWE-120
Classic Buffer Overflow |
CVE-2021-30295 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193908 | 5.5 |
MEDIUM
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Potential null pointer dereference in KGSL GPU auxiliary command due to improper validation of user input in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-476
NULL Pointer Dereference |
CVE-2021-30294 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193909 | 7.0 |
HIGH
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mo… |
CWE-476 CWE-367 NULL Pointer Dereference Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-30290 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193910 | 8.6 |
HIGH
Local |
amazon | kindle_firmware | Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root. |
CWE-269
Improper Privilege Management |
CVE-2021-30355 | 2024-11-21 15:03 | 2021-09-2 | Show | GitHub Exploit DB Packet Storm |