Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230231 | 5 | 警告 | Tiki Software Community Association | - | Tikiwiki における重要な情報 (MySQL ユーザ名およびパスワード) を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2006-5702 | 2012-12-20 18:02 | 2006-11-3 | Show | GitHub Exploit DB Packet Storm |
| 230232 | 6.4 | 警告 | uni-vert | - | Uni-Vert PhpLeague の consult/classement.php における SQL インジェクションの脆弱性 | - | CVE-2006-5676 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230233 | 7.5 | 危険 | spider friendly | - | phpBB モジュール Spider Friendly の admin/modules_data.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5665 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230234 | 6.8 | 警告 | virtech | - | VIRtech Netquery の nquser.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5661 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230235 | 7.6 | 危険 | studio achtundachtzig | - | BlooMooWeb ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 | - | CVE-2006-5658 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230236 | 10 | 危険 | vilistextum | - | Vilistextum の src/text.c における脆弱性 | - | CVE-2006-5657 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230237 | 5 | 警告 | vilistextum | - | Vilistextum の src/util.c におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2006-5656 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230238 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun Java System Messenger Express の index スクリプトにおけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5653 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230239 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun iPlanet Messaging Server Messenger Express におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5652 | 2012-12-20 18:02 | 2006-11-2 | Show | GitHub Exploit DB Packet Storm |
| 230240 | 4.6 | 警告 | Canonical | - | PPC 用の Ubuntu におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2006-5649 | 2012-12-20 18:02 | 2006-12-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211141 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8098_firmware bitra_firmware kamorta_firmware sa6155p_firmware saipan_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
u'Null Pointer exception while playing crafted mkv file as data stream get deleted on secondary invalid configuration' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8098, Bitra… |
CWE-476
NULL Pointer Dereference |
CVE-2020-11122 | 2024-11-21 13:56 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 211142 | 9.8 |
CRITICAL
Network |
qualcomm |
ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware qca4531_firmware qca9531_firmware qca9980_firmware |
u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity,… |
CWE-77
Command Injection |
CVE-2020-11117 | 2024-11-21 13:56 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 211143 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8096au_firmware apq8098_firmware bitra_firmware mdm9607_firmware mdm9650_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware
u'Possible out of bound access while copying the mask file content into the buffer without checking the buffer size' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Indust…
|
CWE-129
|
Improper Validation of Array Index
CVE-2020-11128
|
2024-11-21 13:56 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 211144 | 7.8 |
HIGH
Local |
qualcomm |
apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8917_firmware msm8953_firmware msm8998_firmware qcm2150_firmware qcs405_firmware qcs605_firmware q… |
u'Calling thread may free the data buffer pointer that was passed to the callback and later when event loop executes the callback, data buffer may not be valid and will lead to use after free scenari… |
CWE-416
Use After Free |
CVE-2020-11120 | 2024-11-21 13:56 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 211145 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9150_firmware mdm9206_firmware mdm9207c_firmware
u'Information exposure issues while processing IE header due to improper check of beacon IE frame' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Con…
|
CWE-20
|
Improper Input Validation
CVE-2020-11118
|
2024-11-21 13:56 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 211146 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware
u'Possible out of bound write while processing association response received from host due to lack of check of IE length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Conne…
|
CWE-120
|
Classic Buffer Overflow
CVE-2020-11116
|
2024-11-21 13:56 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 211147 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware
u'Buffer over read occurs while processing information element from beacon due to lack of check of data received from beacon' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics C…
|
CWE-125
|
Out-of-bounds Read
CVE-2020-11115
|
2024-11-21 13:56 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 211148 | 5.3 |
MEDIUM
Network |
oracle redhat |
virtualization ovirt-engine |
An Open redirect vulnerability was found in ovirt-engine versions 4.4 and earlier, where it allows remote attackers to redirect users to arbitrary web sites and attempt phishing attacks. Once the tar… |
CWE-601
Open Redirect |
CVE-2020-10775 | 2024-11-21 13:56 | 2020-08-25 | Show | GitHub Exploit DB Packet Storm |
| 211149 | 6.3 |
MEDIUM
Network |
redhat | cloudforms_management_engine | Red Hat CloudForms 4.7 and 5 is affected by CSV Injection flaw, a crafted payload stays dormant till a victim export as CSV and opens the file with Excel. Once the victim opens the file, the formula … |
CWE-1236
Improper Neutralization of Formula Elements in a CSV File |
CVE-2020-10780 | 2024-11-21 13:56 | 2020-08-11 | Show | GitHub Exploit DB Packet Storm |
| 211150 | 8.3 |
HIGH
Network |
redhat | cloudforms | Red Hat CloudForms 4.7 and 5 is affected by a role-based privilege escalation flaw. An attacker with EVM-Operator group can perform actions restricted only to EVM-Super-administrator group, leads to,… |
NVD-CWE-noinfo
|
CVE-2020-10783 | 2024-11-21 13:56 | 2020-08-11 | Show | GitHub Exploit DB Packet Storm |