Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230431	10	危険	planamesa	-	Planamesa NeoOffice の OpenOffice.org コードにおける脆弱性	CWE-noinfo 情報不足	CVE-2007-6456	2012-12-20 18:34	2007-12-19	Show	GitHub Exploit DB Packet Storm

230432	9.3	危険	SAP	-	Business Objects の RptViewerAX.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6254	2012-12-20 18:34	2008-03-19	Show	GitHub Exploit DB Packet Storm

230433	6.8	警告	viart	-	ViArt CMS などの blocks/block_site_map.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6347	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

230434	7.5	危険	Trivantis Corporation Inc.	-	Trivantis CourseMill Enterprise Learning Management System の userlogin.jsp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6338	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

230435	5	警告	sergey lyubka	-	Windows 上で稼動する Sergey Lyubka Simple HTTPD におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6326	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

230436	5	警告	xml2owl	-	xml2owl の filedownload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6322	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

230437	4.3	警告	Roundcube.net	-	RoundCube webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6321	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

230438	6.8	警告	WordPress.org	-	WordPress の wp-includes/query.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6318	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

230439	5.5	警告	Real Time Logic	-	BarracudaDrive Web Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6317	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

230440	4.3	警告	Real Time Logic	-	BarracudaDrive Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6316	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213941	6.7	MEDIUM Local	qualcomm	aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_…	Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile	CWE-416 Use After Free	CVE-2020-11147	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

213942	5.3	MEDIUM Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.	CWE-862 Missing Authorization	CVE-2020-10858	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

213943	9.8	CRITICAL Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution.	NVD-CWE-noinfo	CVE-2020-10857	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

213944	7.5	HIGH Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware ar9380_firmware c…	Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2020-11119	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213945	6.4	MEDIUM Local	qualcomm	msm8909w sdm630 qca6174a qca6574au qca6584au qca9377 msm8976 msm8937 msm8952 apq8096au msm8996au msm8917 sd450 sd835 sdx24 qcs605 sd855 qcs405 ap…	Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer I…	CWE-362 Race Condition	CVE-2020-11152	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213946	6.4	MEDIUM Local	qualcomm	qca6574au qca6584au sdx55 sa6155p qca6390 qcm4290 qcs4290 sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd675 pm3003a pm6125 pm6150 pm6150a pm615…	Race condition occurs while calling user space ioctl from two different threads can results to use after free issue in video in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2020-11151	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213947	6.7	MEDIUM Local	qualcomm	qca6574au msm8917 qcs605 sd855 apq8017 apq8053 sdx55 msm8953 sa6155p qca6390 sdm429w sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd429 sd439	Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, S…	CWE-416 Use After Free	CVE-2020-11148	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213948	6.7	MEDIUM Local	qualcomm	qca6174a qca6574au qca6584au qca9377 qca9379 qca6574 qca6564 sd210 sd205 sdx24 qcs605 sd855 qca4020 qcs405 sdx55 sa6155p qca6390 sdm429w sa6155	Out of bound memory access in camera driver due to improper validation on data coming from UMD which is used for offset manipulation of pointer in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11150	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213949	6.7	MEDIUM Local	qualcomm	mdm9650 sdx20 qca6174a qca6574au qca6584au qca9377 qca9379 apq8096au qca6574 qca6564 qcs605 qca4020 qcs405 apq8053 sd855 sdx24 sd205 sd210 qca639…	Out of bound access due to usage of an out-of-range pointer offset in the camera driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industria…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11149	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

213950	7.8	HIGH Local	qualcomm	qca6174a qca6574au qca6584au qca9379 msm8937 qca6574 qca6564 sd210 sd205 sd845 qcs605 sd855 qca4020 qcs405 sdx55 sa6155p qca6390 sdm429w apq8076<…	Out of bound write while copying data using IOCTL due to lack of check of array index received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap…	CWE-129 Improper Validation of Array Index	CVE-2020-11146	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm