Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248481 | 7.5 | 危険 | bingo news | - | BP News の bp_news.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-4649 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248482 | 7.5 | 危険 | bingo news | - | BP News の bp_ncom.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-4648 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248483 | 6.8 | 警告 | Drupal | - | Drupal の Pathauto モジュールにおけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-4646 | 2012-06-26 15:37 | 2006-09-5 | Show | GitHub Exploit DB Packet Storm |
| 248484 | 7.5 | 危険 | akarru | - | Akarru Social BookMarking Engine の akarru.gui/main_content.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-4645 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248485 | 1.7 | 注意 | auditwizard | - | AuditWizard における重要な情報を取得される脆弱性 | - | CVE-2006-4642 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248486 | 5.1 | 警告 | c-news.fr | - | C-News.fr C-News における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-4639 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248487 | 5.1 | 警告 | acgv news | - | ACGV News の article.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-4638 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248488 | 5.1 | 警告 | acgv news | - | ACGV News における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-4637 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248489 | 7.5 | 危険 | c-news.fr | - | C-News.fr C-News の affichage/commentaires.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-4629 | 2012-06-26 15:37 | 2006-09-8 | Show | GitHub Exploit DB Packet Storm |
| 248490 | 7.5 | 危険 | AVAST Software s.r.o. | - | alwil avast! Anti-virus Engine におけるヒープベースのバッファオーバーフローの脆弱性 | - | CVE-2006-4626 | 2012-06-26 15:37 | 2006-09-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197861 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware ipq4018_firmware<… |
Possible assertion due to improper verification while creating and deleting the peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna… |
CWE-617
Reachable Assertion |
CVE-2021-1938 | 2024-11-21 14:45 | 2021-07-13 | Show | GitHub Exploit DB Packet Storm |
| 197862 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar… |
Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon… |
CWE-787
Out-of-bounds Write |
CVE-2021-1890 | 2024-11-21 14:45 | 2021-07-13 | Show | GitHub Exploit DB Packet Storm |
| 197863 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar… |
Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr… |
CWE-120
Classic Buffer Overflow |
CVE-2021-1889 | 2024-11-21 14:45 | 2021-07-13 | Show | GitHub Exploit DB Packet Storm |
| 197864 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar… |
Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago… |
CWE-415
Double Free |
CVE-2021-1888 | 2024-11-21 14:45 | 2021-07-13 | Show | GitHub Exploit DB Packet Storm |
| 197865 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar… |
Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |
CWE-787
Out-of-bounds Write |
CVE-2021-1886 | 2024-11-21 14:45 | 2021-07-13 | Show | GitHub Exploit DB Packet Storm |
| 197866 | 8.1 |
HIGH
Adjacent |
sonicwall | switch | Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an attacker to cause a system instability or potentially read sensitive information from the memory loc… |
CWE-125
Out-of-bounds Read |
CVE-2021-20024 | 2024-11-21 14:45 | 2021-07-10 | Show | GitHub Exploit DB Packet Storm |
| 197867 | 5.4 |
MEDIUM
Adjacent |
sloan |
optima_eaf-100_firmware optima_eaf-150_firmware optima_eaf-200_firmware optima_eaf-225_firmware optima_eaf-250_firmware optima_eaf-275_firmware optima_eaf-350_firmware optima_eaf… |
There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kin… |
CWE-306
Missing Authentication for Critical Function |
CVE-2021-20107 | 2024-11-21 14:45 | 2021-06-30 | Show | GitHub Exploit DB Packet Storm |
| 197868 | 6.7 |
MEDIUM
Local |
tenable | nessus | Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaini… |
NVD-CWE-noinfo
|
CVE-2021-20079 | 2024-11-21 14:45 | 2021-06-30 | Show | GitHub Exploit DB Packet Storm |
| 197869 | 6.1 |
MEDIUM
Network |
machform | machform | Machform prior to version 16 is vulnerable to an open redirect in Safari_init.php due to an improperly sanitized 'ref' parameter. |
CWE-601
Open Redirect |
CVE-2021-20105 | 2024-11-21 14:45 | 2021-06-30 | Show | GitHub Exploit DB Packet Storm |
| 197870 | 8.1 |
HIGH
Network |
machform | machform | Machform prior to version 16 is vulnerable to unauthenticated remote code execution due to insufficient sanitization of file attachments uploaded with forms through upload.php. |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2021-20104 | 2024-11-21 14:45 | 2021-06-30 | Show | GitHub Exploit DB Packet Storm |