Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 231741 | 4.3 | 警告 | php-stats | - | PHP-Stats の tracking.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4917 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231742 | 9.3 | 危険 | WinSCP | - | WinSCP におけるリモートサーバで任意のファイル転送を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2007-4909 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231743 | 7.5 | 危険 | Qualiteam Software Limited | - | X-Cart における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-4907 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231744 | 4.3 | 警告 | リアルネットワークス | - | RealNetworks RealPlayer および Helix Player におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-4904 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231745 | 7.5 | 危険 | ultrashareware | - | Ultra Crypto コンポーネントの CryptoX.dll におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2007-4903 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231746 | 6.4 | 警告 | ultrashareware | - | Ultra Crypto コンポーネントの CryptoX.dll における絶対パストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-4902 | 2012-12-20 18:33 | 2007-09-17 | Show | GitHub Exploit DB Packet Storm |
| 231747 | 4.3 | 警告 | RSAセキュリティ | - | RSA EnVision のログオンページにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4900 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 231748 | 2.1 | 注意 | XWiki | - | XWiki Enterprise の Multiwiki プラグインにおける重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2007-4898 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 231749 | 4.3 | 警告 | toms-seiten.at | - | Toms Gaestebuch の admin/header.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4896 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 231750 | 5 | 警告 | sisfo kampus | - | Semarang 3 の dwoprn.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-4895 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 8, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 199351 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware aqt1000_firmware msm8909w_firmware msm8917_firmware msm8953_firmware qca4020_firmware qca6174a_firmware… |
Null pointer dereference occurs due to improper validation when the preemption feature enablement is toggled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, … |
CWE-476
NULL Pointer Dereference |
CVE-2021-1939 | 2024-11-21 14:45 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 199352 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar7420_firmware ar8031_firmware ar8035_firmware<… |
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon In… |
CWE-416
Use After Free |
CVE-2021-1976 | 2024-11-21 14:45 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 199353 | 6.7 |
MEDIUM
Local |
tenable | nessus_agent | Nessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent … |
NVD-CWE-noinfo
|
CVE-2021-20118 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 199354 | 6.7 |
MEDIUM
Local |
tenable | nessus_agent | Nessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent … |
NVD-CWE-noinfo
|
CVE-2021-20117 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 199355 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8035_firmware csr8811_firmware csrb31024_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware ipq6005_firmware ipq6010_firmware ipq6018_firmware
Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial …
|
CWE-617
|
Reachable Assertion
CVE-2021-1971
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 199356 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8035_firmware ar9380_firmware csr8811_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware<… |
Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |
CWE-125
Out-of-bounds Read |
CVE-2021-1974 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 199357 | 6.7 |
MEDIUM
Local |
qualcomm |
apq8009w_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmwa… |
Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon… |
CWE-416
Use After Free |
CVE-2021-1963 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 199358 | 6.7 |
MEDIUM
Local |
qualcomm |
aqt1000_firmware ar9380_firmware fsm10055_firmware fsm10056_firmware ipq8064_firmware ipq8065_firmware ipq8068_firmware ipq8069_firmware mdm9150_firmware qca6391_firmware
Buffer Overflow while processing IOCTL for getting peripheral endpoint information there is no proper validation for input maximum endpoint pair and its size in Snapdragon Auto, Snapdragon Consumer I…
|
CWE-120
|
Classic Buffer Overflow
CVE-2021-1962
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 199359 | 6.7 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8053_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware fsm10055_firmware fsm10056_firmwar… |
Possible buffer overflow due to lack of offset length check while updating the buffer value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indust… |
CWE-120
Classic Buffer Overflow |
CVE-2021-1961 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 199360 | 6.5 |
MEDIUM
Adjacent |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmware ipq5010_firmware ipq5018_firmware ipq5028_firmware qca1062_firmware<… |
Improper handling of ASB-C broadcast packets with crafted opcode in LMP can lead to uncontrolled resource consumption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu… |
CWE-20
Improper Input Validation |
CVE-2021-1960 | 2024-11-21 14:45 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |