Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229571	4.3	警告	xcomputer	-	Xcomputer の Search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5479	2012-12-20 18:33	2007-10-16	Show	GitHub Exploit DB Packet Storm

229572	4.3	警告	valve software	-	WebMod Half-Life Dedicated Server プラグインの auth.w におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5477	2012-12-20 18:33	2007-10-16	Show	GitHub Exploit DB Packet Storm

229573	7.8	危険	SUSE	-	SUSE Linux Enterprise Server の ISC BIND named デーモンで使用される libgssapi におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-5471	2012-12-20 18:33	2007-10-15	Show	GitHub Exploit DB Packet Storm

229574	5	警告	viart	-	ViArt Shop の iDEAL payment モジュールにおける証明書および鍵ファイルのパス名を取得される脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5463	2012-12-20 18:33	2007-10-15	Show	GitHub Exploit DB Packet Storm

229575	4.3	警告	wwwisis	-	WWWISIS の wxis.exe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5455	2012-12-20 18:33	2007-10-14	Show	GitHub Exploit DB Packet Storm

229576	8.5	危険	php-stats	-	Php-Stats における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-5453	2012-12-20 18:33	2007-10-14	Show	GitHub Exploit DB Packet Storm

229577	10	危険	php-stats	-	Php-Stats の php-stats.recjs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5452	2012-12-20 18:33	2007-10-14	Show	GitHub Exploit DB Packet Storm

229578	7.5	危険	softbiz	-	Softbiz Recipes Portal Script の searchresult.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5449	2012-12-20 18:33	2007-10-14	Show	GitHub Exploit DB Packet Storm

229579	1.9	注意	VMware	-	VMware Workstation などの Reconfig.DLL における vmount2.exe がサービス運用妨害 (DoS) 状態となる脆弱性	CWE-20 不適切な入力確認	CVE-2007-5438	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229580	4.3	警告	pro.setun	-	PRO-search におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5434	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200771	7.8	HIGH Local	qualcomm	kamorta_firmware qcs605_firmware rennell_firmware saipan_firmware sdm670_firmware sdm710_firmware sdm845_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_…	Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile i…	CWE-416 Use After Free	CVE-2020-3642	2024-11-21 14:31	2020-06-22	Show	GitHub Exploit DB Packet Storm

200772	7.8	HIGH Local	qualcomm	apq8053_firmware apq8096au_firmware apq8098_firmware msm8909w_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware msm8996au_firmwa…	Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon …	CWE-787 Out-of-bounds Write	CVE-2020-3635	2024-11-21 14:31	2020-06-22	Show	GitHub Exploit DB Packet Storm

200773	7.8	HIGH Local	qualcomm	apq8053_firmware apq8096au_firmware apq8098_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware…	Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon…	CWE-276 Incorrect Default Permissions	CVE-2020-3626	2024-11-21 14:31	2020-06-22	Show	GitHub Exploit DB Packet Storm

200774	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9206_firmware<…	Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Ele…	CWE-120 Classic Buffer Overflow	CVE-2020-3614	2024-11-21 14:31	2020-06-22	Show	GitHub Exploit DB Packet Storm

200775	3.3	LOW Local	geovision	gv-gf192x_firmware	GeoVision Door Access Control device family improperly stores and controls access to system logs, any users can read these logs.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-3930	2024-11-21 14:31	2020-06-12	Show	GitHub Exploit DB Packet Storm

200776	5.9	MEDIUM Network	usavisionsys	geovision_gv-as210_firmware geovision_gv-as410_firmware geovision_gv-as810_firmware geovision_gv-as1010_firmware geovision_gv-gf192x_firmware	GeoVision Door Access Control device family employs shared cryptographic private keys for SSH and HTTPS. Attackers may conduct MITM attack with the derived keys and plaintext recover of encrypted mes…	CWE-326 Inadequate Encryption Strength	CVE-2020-3929	2024-11-21 14:31	2020-06-12	Show	GitHub Exploit DB Packet Storm

200777	9.8	CRITICAL Network	usavisionsys	geovision_gv-as210_firmware geovision_gv-as410_firmware geovision_gv-as810_firmware geovision_gv-as1010_firmware geovision_gv-gf192x_firmware	GeoVision Door Access Control device family is hardcoded with a root password, which adopting an identical password in all devices.	CWE-798 Use of Hard-coded Credentials	CVE-2020-3928	2024-11-21 14:31	2020-06-12	Show	GitHub Exploit DB Packet Storm

200778	6.5	MEDIUM Network	apple	mac_os_x	This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. Importing a maliciously crafted calendar invitation may exfiltrate user information.	NVD-CWE-noinfo	CVE-2020-3882	2024-11-21 14:31	2020-06-10	Show	GitHub Exploit DB Packet Storm

200779	7.0	HIGH Local	qualcomm	apq8009_firmware apq8053_firmware msm8909w_firmware msm8917_firmware msm8953_firmware qcs605_firmware qm215_firmware sa415m_firmware sdm429_firmware sdm429w_firmware sdm…	A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearabl…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-3680	2024-11-21 14:31	2020-06-3	Show	GitHub Exploit DB Packet Storm

200780	7.8	HIGH Local	qualcomm	sm8250_firmware sxr2130_firmware	When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SX…	CWE-120 Classic Buffer Overflow	CVE-2020-3625	2024-11-21 14:31	2020-06-3	Show	GitHub Exploit DB Packet Storm