Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 22, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228961 | 7.5 | 危険 | xnova | - | Xnova の includes/todofleetcontrol.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-6022 | 2012-12-20 19:10 | 2009-02-2 | Show | GitHub Exploit DB Packet Storm |
| 228962 | 7.5 | 危険 | rianxosencabos cms | - | Rianxosencabos CMS の scripts/links.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6014 | 2012-12-20 19:10 | 2009-01-30 | Show | GitHub Exploit DB Packet Storm |
| 228963 | 7.5 | 危険 | sg real estate portal | - | SG Real Estate Portal の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6011 | 2012-12-20 19:10 | 2009-01-30 | Show | GitHub Exploit DB Packet Storm |
| 228964 | 5 | 警告 | sg real estate portal | - | SG Real Estate Portal におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-6010 | 2012-12-20 19:10 | 2009-01-30 | Show | GitHub Exploit DB Packet Storm |
| 228965 | 7.5 | 危険 | sg real estate portal | - | SG Real Estate Portal における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-6009 | 2012-12-20 19:10 | 2009-01-30 | Show | GitHub Exploit DB Packet Storm |
| 228966 | 7.5 | 危険 | quidascript | - | APB の view_group.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6007 | 2012-12-20 19:10 | 2009-01-30 | Show | GitHub Exploit DB Packet Storm |
| 228967 | 10 | 危険 | W3C | - | W3C Amaya Web Browser の CheckUniqueName 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-6005 | 2012-12-20 19:10 | 2009-01-28 | Show | GitHub Exploit DB Packet Storm |
| 228968 | 7.1 | 危険 | web-cp | - | web-cp の sendfile.php における絶対パストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-6002 | 2012-12-20 19:10 | 2009-01-28 | Show | GitHub Exploit DB Packet Storm |
| 228969 | 4.3 | 警告 | TYPO3 Association | - | TYPO3 用の freeCap CAPTCHA エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5995 | 2012-12-20 19:10 | 2009-01-28 | Show | GitHub Exploit DB Packet Storm |
| 228970 | 6.8 | 警告 | phpcounter | - | PHPcounter の defs.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-5989 | 2012-12-20 19:10 | 2009-01-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 201761 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware kamorta_firmware nicobar_firmware qcm6125_firmware qcs610_firmware rennell_firmware sa415m_firmware saipan_firmware sc7180_firmware sc8180x_firmware sdx2… |
u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server' in Snapdragon Auto, Snapdragon Compu… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3692 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201762 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware bitra_firmware kamorta_firmware nicobar_firmware qca6390_firmware qcs404_firmware qcs605_firmware qcs610_firmware rennell_firmware sa415m_firmware sa515m… |
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, … |
NVD-CWE-Other
|
CVE-2020-3690 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201763 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware apq8009_firmware apq8098_firmware bitra_firmware ipq6018_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware md… |
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Sn… |
NVD-CWE-Other
|
CVE-2020-3684 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201764 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware
u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapdragon Auto, Snapdragon Compute, Snapdrag…
|
CWE-129
|
Improper Validation of Array Index
CVE-2020-3673
|
2024-11-21 14:31 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 201765 | 9.1 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9625_firmware mdm9635m_firmware<… |
u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information Element(IEI) NAS message container' in Snapdragon Auto, Snapdragon Compute, … |
CWE-125
Out-of-bounds Read |
CVE-2020-3670 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201766 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware<… |
u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due to lack of array bound check.' in Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3657 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201767 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware
u'Buffer overflow occurs while processing SIP message packet due to lack of check of index validation before copying into it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag…
|
CWE-129
|
Improper Validation of Array Index
CVE-2020-3654
|
2024-11-21 14:31 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 201768 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware bitra_firmware kamorta_firmware qca6390_firmware qcs404_firmware qcs610_firmware rennell_firmware sa515m_firmware sc7180_firmware sc8180x_firmware sdx55_… |
u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,… |
NVD-CWE-noinfo
|
CVE-2020-3638 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 201769 | 7.8 |
HIGH
Local |
apple |
iphone_os ipados tvos watchos mac_os_x |
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 M… |
CWE-125
Out-of-bounds Read |
CVE-2020-3880 | 2024-11-21 14:31 | 2020-10-28 | Show | GitHub Exploit DB Packet Storm |
| 201770 | 7.8 |
HIGH
Local |
apple redhat |
iphone_os ipados tvos safari icloud itunes enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server |
A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and… |
CWE-346
Origin Validation Error |
CVE-2020-3864 | 2024-11-21 14:31 | 2020-10-28 | Show | GitHub Exploit DB Packet Storm |