Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230381 | 6.8 | 警告 | salims softhouse | - | ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5129 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230382 | 7.5 | 危険 | powerportal | - | John Himmelman PowerPortal の index.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5126 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230383 | 7.5 | 危険 | phprojekt | - | Albrecht Guenther PHProjekt における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5123 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230384 | 7.5 | 危険 | postnuke software foundation | - | PostNuke の Admin セクションにおける SQL インジェクションの脆弱性 | - | CVE-2006-5121 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230385 | 4 | 警告 | scott metoyer | - | Scott Metoyer Red Mombin におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5120 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230386 | 4 | 警告 | Zen Cart | - | Zen Cart におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2006-5119 | 2012-12-20 18:02 | 2006-09-28 | Show | GitHub Exploit DB Packet Storm |
| 230387 | 7.5 | 危険 | phpselect | - | PHPSelect Web Development Division 用の PDD パッケージにおける PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5118 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
| 230388 | 5 | 警告 | The phpMyAdmin Project | - | phpMyAdmin における重要な情報を取得される脆弱性 | - | CVE-2006-5117 | 2012-12-20 18:02 | 2006-10-1 | Show | GitHub Exploit DB Packet Storm |
| 230389 | 5.1 | 警告 | The phpMyAdmin Project | - | phpMyAdmin におけるクロスサイトリクエストフォージェリの脆弱性 | - | CVE-2006-5116 | 2012-12-20 18:02 | 2006-10-1 | Show | GitHub Exploit DB Packet Storm |
| 230390 | 6.8 | 警告 | SAP | - | SAP ITS の wgate におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5114 | 2012-12-20 18:02 | 2006-10-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 10, 2026, 4:58 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211221 | 8.1 |
HIGH
Adjacent |
qualcomm |
qca6390_firmware qcn7605_firmware qcs404_firmware sa415m_firmware sa515m_firmware sc8180x_firmware sdx55_firmware sm8250_firmware |
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-11156 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211222 | 8.8 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware qcn7606_firmware sa415m_firmware sa515m_firmware sa6155p_firmware sa8155p_firmware sc8180x_firmware s… |
u'Buffer overflow while processing PDU packet in bluetooth due to lack of check of buffer length before copying into it.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11155 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211223 | 8.8 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware qcn7606_firmware sa415m_firmware sa515m_firmware sa6155p_firmware sa8155p_firmware sc8180x_firmware s… |
u'Buffer overflow while processing a crafted PDU data packet in bluetooth due to lack of check of buffer size before copying' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11154 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211224 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8053_firmware qca6390_firmware qca9379_firmware qcn7605_firmware sc8180x_firmware sdx55_firmware |
u'Out of bound memory access while processing GATT data received due to lack of check of pdu data length and leads to remote code execution' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connect… |
CWE-787
Out-of-bounds Write |
CVE-2020-11153 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211225 | 8.1 |
HIGH
Adjacent |
qualcomm |
apq8009_firmware apq8053_firmware qca6390_firmware qcn7605_firmware sa415m_firmware sa515m_firmware sc8180x_firmware sdx55_firmware sm8250_firmware |
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap configuration request received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-11141 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211226 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware apq8009_firmware bitra_firmware ipq4019_firmware ipq5018_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware kamorta_firmware mdm9150_firmware md… |
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon… |
CWE-787
Out-of-bounds Write |
CVE-2020-11125 | 2024-11-21 13:56 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 211227 | 7.5 |
HIGH
Network |
zohocorp | manageengine_applications_manager | Zoho ManageEngine Applications Manager 14780 and before allows a remote unauthenticated attacker to register managed servers via AAMRequestProcessor servlet. |
CWE-287
Improper Authentication |
CVE-2020-10816 | 2024-11-21 13:56 | 2020-10-9 | Show | GitHub Exploit DB Packet Storm |
| 211228 | 7.5 |
HIGH
Network |
glpi-project | glpi | In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could … | - | CVE-2020-11031 | 2024-11-21 13:56 | 2020-09-24 | Show | GitHub Exploit DB Packet Storm |
| 211229 | 7.5 |
HIGH
Network |
redhat |
single_sign-on openshift_application_runtimes keycloak |
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value tha… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2020-10758 | 2024-11-21 13:56 | 2020-09-17 | Show | GitHub Exploit DB Packet Storm |
| 211230 | 5.5 |
MEDIUM
Local |
linux debian |
linux_kernel debian_linux |
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM devic… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2020-10781 | 2024-11-21 13:56 | 2020-09-16 | Show | GitHub Exploit DB Packet Storm |