Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230851 | 7.5 | 危険 | phpbb security | - | IM Portal の includes/functions_portal.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5083 | 2012-12-20 18:02 | 2006-09-28 | Show | GitHub Exploit DB Packet Storm |
| 230852 | 7.5 | 危険 | SugarCRM | - | SugarCRM における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2006-5082 | 2012-12-20 18:02 | 2006-09-17 | Show | GitHub Exploit DB Packet Storm |
| 230853 | 7.5 | 危険 | polaring | - | Kristian Niemi Polaring の view/general.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5078 | 2012-12-20 18:02 | 2006-09-28 | Show | GitHub Exploit DB Packet Storm |
| 230854 | 2.6 | 注意 | TYPO3 Association | - | TYPO3 用の class.tx_indexedsearch.php エクステンションにおけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5069 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230855 | 5.1 | 警告 | zoomstats | - | ZoomStats の libs/dbmax/mysql.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5065 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230856 | 5.1 | 警告 | stefan ritt | - | Elog におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5063 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230857 | 5.1 | 警告 | wired community software | - | WWWthreads におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5059 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230858 | 7.5 | 危険 | web-news | - | Web-News の webnews/template.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5053 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230859 | 5 | 警告 | rob landley | - | Rob Landley BusyBox の httpd におけるディレクトリトラバーサルの脆弱性 | - | CVE-2006-5050 | 2012-12-20 18:02 | 2006-09-27 | Show | GitHub Exploit DB Packet Storm |
| 230860 | 6.8 | 警告 | waltercedric | - | Joomla! 用の Security Images コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-5048 | 2012-12-20 18:02 | 2006-07-31 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211971 | 8.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8035_firmware
User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn…
|
NVD-CWE-Other
|
CVE-2020-11177
|
2024-11-21 13:57 |
2021-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 211972 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8030_firmware apq8037_firmware apq8052_firmware apq8053_firmware apq8056_firmware apq8060a_firmware apq8062_firmware<… |
Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11170 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211973 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206 mdm9650 msm8909w sdx20 sdm630 qca6174a qca6574au qca9377 qca9379 msm8937 apq8096au msm8996au msm8917 qca6574 qca6564 sd210 sd205 sd450 sd… |
A buffer overflow can occur when playing an MKV clip due to lack of input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IO… |
CWE-787
Out-of-bounds Write |
CVE-2020-11283 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211974 | 7.1 |
HIGH
Local |
qualcomm |
apq8009w_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware msm8909w_firmware msm8996au_firmware pm215_firmware pm456_firmware pm6125_firmware pm6150_firmware<… |
Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon In… |
CWE-787
Out-of-bounds Write |
CVE-2020-11203 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211975 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206 mdm9650 msm8909w mdm9655 mdm9615 sdx20 msm8937 apq8096au msm8996au msm8917 sdm630 qca6574 qca9379 qca9377 qca6584au qca6584 qca6574au qca617… |
Improper access control when using mmap with the kgsl driver with a special offset value that can be provided to map the memstore of the GPU to user space in Snapdragon Auto, Snapdragon Compute, Snap… |
NVD-CWE-noinfo
|
CVE-2020-11282 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211976 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware csrb31024_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm8004_firmware pm8008_firmware pm855_firmware pm855b_firmware pm8… |
Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile |
CWE-129
Improper Validation of Array Index |
CVE-2020-11187 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211977 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware<… |
Allowing RTT frames to be linked with non randomized MAC address by comparing the sequence numbers can lead to information disclosure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,… |
CWE-200
Information Exposure |
CVE-2020-11281 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211978 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware<… |
Possible denial of service while handling host WMI command due to improper validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sn… |
CWE-617
Reachable Assertion |
CVE-2020-11278 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211979 | 7.4 |
HIGH
Local |
qualcomm |
pm3003a_firmware pm4250_firmware pm6125_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm7… |
Possible race condition during async fastrpc session after sending RPC message due to the fastrpc ctx gets free during async session in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2020-11277 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 211980 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware<… |
Before enqueuing a frame to the PE queue for further processing, an entry in a hash table can be deleted and using a stale version later can lead to use after free condition in Snapdragon Auto, Snapd… |
CWE-416
Use After Free |
CVE-2020-11272 | 2024-11-21 13:57 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |