Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250791 7.5 危険 Hulihan Applications - Hulihan BXR の folder/list における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4963 2012-02-29 15:03 2010-07-22 Show GitHub Exploit DB Packet Storm
250792 7.5 危険 Dev-Team Typoheads - TYPO3 用 Webkit PDFs エクステンションにおける任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4962 2012-02-29 14:52 2011-10-9 Show GitHub Exploit DB Packet Storm
250793 7.5 危険 Dev-Team Typoheads - TYPO3 用 Webkit PDFs エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4961 2012-02-29 14:49 2011-10-9 Show GitHub Exploit DB Packet Storm
250794 4.3 警告 Martin Hesse - TYPO3 用 Branchenbuch エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4960 2012-02-29 14:43 2011-10-9 Show GitHub Exploit DB Packet Storm
250795 7.5 危険 PreProject.com - Pre Projects Pre Podcast Portal の login 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4959 2012-02-29 14:35 2011-10-9 Show GitHub Exploit DB Packet Storm
250796 7.5 危険 Prado Portal - Prado Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4958 2012-02-29 14:23 2011-10-9 Show GitHub Exploit DB Packet Storm
250797 7.5 危険 php-programs - APBoard Developers APBoard の board/board.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4955 2012-02-29 14:06 2011-10-9 Show GitHub Exploit DB Packet Storm
250798 7.5 危険 Gambio - xt:Commerce Gambio 2008 の product_reviews_info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4954 2012-02-29 14:05 2011-10-9 Show GitHub Exploit DB Packet Storm
250799 10 危険 Jens Witt - TYPO3 用 JW Calendar エクステンションにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4953 2012-02-29 11:55 2011-10-9 Show GitHub Exploit DB Packet Storm
250800 7.5 危険 Joachim Ruhs - TYPO3 用 FE user statistic エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4952 2012-02-29 11:51 2011-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201231 5.5 MEDIUM
Local 		qualcomm apq8009_firmware
apq8053_firmware
apq8096au_firmware
apq8098_firmware
bitra_firmware
kamorta_firmware
mdm9206_firmware
mdm9150_firmware
mdm9607_firmware
mdm9640_firmware 		u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Au… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-3620 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201232 7.0 HIGH
Local 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8098_firmware
ipq8074_firmware
kamorta_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware 		u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… CWE-787
CWE-367
 Out-of-bounds Write
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-3619 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201233 7.8 HIGH
Local 		qualcomm apq8098_firmware
kamorta_firmware
msm8998_firmware
qcs404_firmware
qcs605_firmware
sda660_firmware
sda845_firmware
sdm630_firmware
sdm636_firmware
sdm660_firmware
sdm670… 		u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, … NVD-CWE-noinfo
CVE-2020-3611 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201234 6.5 MEDIUM
Network 		cisco jabber A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An… CWE-20
 Improper Input Validation  		CVE-2020-3498 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201235 6.8 MEDIUM
Adjacent 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3453 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201236 4.7 MEDIUM
Network 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3451 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201237 6.5 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-3547 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201238 5.3 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive informatio… CWE-20
 Improper Input Validation  		CVE-2020-3546 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201239 6.7 MEDIUM
Local 		cisco firepower_extensible_operating_system A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds … CWE-787
 Out-of-bounds Write 		CVE-2020-3545 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201240 5.3 MEDIUM
Network 		cisco webex_training A vulnerability in Cisco Webex Training could allow an authenticated, remote attacker to join a password-protected meeting without providing the meeting password. The vulnerability is due to improper… CWE-20
 Improper Input Validation  		CVE-2020-3542 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm