Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 11, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249691 | 7.5 | 危険 | iJoomla | - | Joomla! 用 iJoomla Magazine コンポーネントにおける任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-4918 | 2012-02-28 10:53 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249692 | 7.5 | 危険 | Yegnold | - | A-Blog の sources/search.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4917 | 2012-02-28 10:52 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249693 | 7.5 | 危険 | ColdGen | - | ColdGen ColdUserGroup の index.cfm における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4916 | 2012-02-28 10:50 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249694 | 7.5 | 危険 | ColdGen | - | ColdGen ColdBookmarks の index.cfm における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4915 | 2012-02-28 10:47 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249695 | 7.5 | 危険 | DeltaScripts | - | PHP Classifieds の tools/phpmailer/class.phpmailer.php における任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-4914 | 2012-02-28 10:43 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249696 | 4.3 | 警告 | ColdGen | - | ColdGen ColdUserGroup の search 機能におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4913 | 2012-02-28 10:41 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249697 | 7.5 | 危険 | Discuz | - | UCenter Home の shop.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4912 | 2012-02-28 10:40 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249698 | 7.5 | 危険 | Sell@Site | - | PHP Classifieds Ads の classi/detail.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4911 | 2012-02-28 10:39 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249699 | 7.5 | 危険 | ColdGen | - | ColdGen ColdCalendar の index.cfm におけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4910 | 2012-02-28 10:37 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
| 249700 | 4.3 | 警告 | Mechbunny | - | PaysiteReviewCMS におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4909 | 2012-02-28 10:36 | 2011-10-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 199551 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8053_firmware apq8096au_firmware mdm9150_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmw… |
Valid deauth/disassoc frames is dropped in case if RMF is enabled and some rouge peer keep on sending rogue deauth/disassoc frames due to improper enum values used to check the frame subtype in Snapd… |
CWE-617
Reachable Assertion |
CVE-2020-3615 | 2024-11-21 14:31 | 2020-06-3 | Show | GitHub Exploit DB Packet Storm |
| 199552 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware msm8909w_firmware msm8917_firmware msm8953_firmware msm8996au_firmware nicobar_firmware qcs405_firmwar… |
Possibility of double free of the drawobj that is added to the drawqueue array of the context during IOCTL commands as there is no refcount taken for this object in Snapdragon Auto, Snapdragon Comput… |
CWE-415
Double Free |
CVE-2020-3610 | 2024-11-21 14:31 | 2020-06-3 | Show | GitHub Exploit DB Packet Storm |
| 199553 | 5.5 |
MEDIUM
Local |
netqmail debian canonical |
netqmail debian_linux ubuntu_linux |
qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A local attacker can test for the existence of files and directories anywhere in the filesystem because qmai… |
CWE-269
Improper Privilege Management |
CVE-2020-3812 | 2024-11-21 14:31 | 2020-05-26 | Show | GitHub Exploit DB Packet Storm |
| 199554 | 7.5 |
HIGH
Network |
netqmail debian canonical |
netqmail debian_linux ubuntu_linux |
qmail-verify as used in netqmail 1.06 is prone to a mail-address verification bypass vulnerability. |
CWE-665 CWE-863 Improper Initialization Incorrect Authorization |
CVE-2020-3811 | 2024-11-21 14:31 | 2020-05-26 | Show | GitHub Exploit DB Packet Storm |
| 199555 | 5.5 |
MEDIUM
Local |
debian fedoraproject canonical |
debian_linux apt fedora ubuntu_linux |
Missing input validation in the ar/tar implementations of APT before version 2.1.2 could result in denial of service when processing specially crafted deb files. |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3810 | 2024-11-21 14:31 | 2020-05-15 | Show | GitHub Exploit DB Packet Storm |
| 199556 | 9.1 |
CRITICAL
Network |
qualcomm |
msm8998_firmware qca6390_firmware sc7180_firmware sc8180x_firmware sdm850_firmware |
Possible buffer over-read in windows wlan driver function due to lack of check of length of variable received from userspace in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3653 | 2024-11-21 14:31 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 199557 | 9.1 |
CRITICAL
Network |
qualcomm |
msm8998_firmware qca6390_firmware sc7180_firmware sc8180x_firmware sdm850_firmware |
Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Con… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3652 | 2024-11-21 14:31 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 199558 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8905_firmware… |
Active command timeout since WM status change cmd is not removed from active queue if peer sends multiple deauth frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connec… |
CWE-617
Reachable Assertion |
CVE-2020-3651 | 2024-11-21 14:31 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 199559 | 7.5 |
HIGH
Network |
draytek | vigorap_910c_firmware | A vulnerable SNMP in Draytek VigorAP910C cannot be disabled, which may cause information leakage. |
NVD-CWE-noinfo
|
CVE-2020-3932 | 2024-11-21 14:31 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 199560 | 9.8 |
CRITICAL
Network |
apple | mac_os_x | A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arb… |
CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write |
CVE-2020-3850 | 2024-11-21 14:31 | 2020-04-2 | Show | GitHub Exploit DB Packet Storm |