Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240141	7.5	危険	kwsphp	-	KwsPHP の mg2 モジュールの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5485	2012-09-25 16:59	2007-10-16	Show	GitHub Exploit DB Packet Storm

240142	4.3	警告	innovaage	-	InnovaAge InnovaShop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5480	2012-09-25 16:59	2007-10-16	Show	GitHub Exploit DB Packet Storm

240143	4.3	警告	nabh information systems	-	Nabh Stringbeans Portal のプロジェクトにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5478	2012-09-25 16:59	2007-10-16	Show	GitHub Exploit DB Packet Storm

240144	5	警告	Mono Project	-	Mono の System.Web の StaticFileHandler.cs における重要なファイルのソースコードを取得される脆弱性	CWE-200 情報漏えい	CVE-2007-5473	2012-09-25 16:59	2007-10-18	Show	GitHub Exploit DB Packet Storm

240145	2.1	注意	マイクロソフト	-	Microsoft Expression Media におけるカタログへのアクセス権を取得される脆弱性	CWE-200 CWE-310	CVE-2007-5470	2012-09-25 16:59	2007-10-15	Show	GitHub Exploit DB Packet Storm

240146	7.5	危険	mydoop	-	doop CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5465	2012-09-25 16:59	2007-10-15	Show	GitHub Exploit DB Packet Storm

240147	6.5	警告	lfs	-	Live for Speed におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5464	2012-09-25 16:59	2007-10-15	Show	GitHub Exploit DB Packet Storm

240148	7.1	危険	マイクロソフト	-	Windows Mobile などで使用される Microsoft ActiveSync におけるPIN/Password を解読される脆弱性	CWE-310 暗号の問題	CVE-2007-5460	2012-09-25 16:59	2007-10-15	Show	GitHub Exploit DB Packet Storm

240149	6.8	警告	michael dempfle Joomla!	-	Joomla! 用の com_jfu or com_joomla_flash_uploader における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5457	2012-09-25 16:59	2007-10-14	Show	GitHub Exploit DB Packet Storm

240150	7.5	危険	マイクロソフト	-	Microsoft Internet Explorer 7 における任意の .exe ファイルをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2007-5456	2012-09-25 16:59	2007-10-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2641	6.7	MEDIUM Local	qualcomm	cologne_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware sc8380xp_firmware wcd9378c_firmware wcd9380_firmware	Memory Corruption when sending random number generator command with insufficient output buffer size.	CWE-787 Out-of-bounds Write	CVE-2025-59614	2026-06-3 00:26	2026-06-2	Show	GitHub Exploit DB Packet Storm

2642	7.2	HIGH Physics	qualcomm	qca6391_firmware qca6564au_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6584au_firmware qca6595_firmware qca6595au_firmware qca6678aq_firmware qca6688a…	Memory Corruption when processing display command line information due to improper initialization of a variable.	CWE-121 Stack-based Buffer Overflow	CVE-2026-24085	2026-06-3 00:26	2026-06-2	Show	GitHub Exploit DB Packet Storm

2643	7.2	HIGH Physics	qualcomm	ar8031_firmware ar8035_firmware cologne_firmware cq7790_firmware cq8725s_firmware qpa1083bd_firmware qpa1086bd_firmware qrb5165n_firmware qru1032_firmware qualcomm_dragonwi…	Memory corruption while processing fastboot OEM commands.	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2026-24087	2026-06-3 00:26	2026-06-2	Show	GitHub Exploit DB Packet Storm

2644	8.2	HIGH Local	qualcomm	ar9380_firmware csr8811_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware g1_gen_1_firmware g2_gen_1_firmware g3…	Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.	CWE-306 Missing Authentication for Critical Function	CVE-2026-24088	2026-06-3 00:26	2026-06-2	Show	GitHub Exploit DB Packet Storm

2645	7.2	HIGH Physics	qualcomm	ar8031_firmware ar8035_firmware cologne_firmware cq7790_firmware cq8725s_firmware qmp1000_firmware qmp2001_firmware qpa1083bd_firmware qpa1086bd_firmware qrb5165n_firmware<…	Memory corruption while processing fastboot commands with invalid input.	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2026-24089	2026-06-3 00:25	2026-06-2	Show	GitHub Exploit DB Packet Storm

2646	7.1	HIGH Local	qualcomm	ar8031_firmware ar8035_firmware cologne_firmware cq7790_firmware cq8725s_firmware sm6850_firmware sm7435_firmware sm7435p_firmware sm7525_firmware sm7550_firmware sm7550…	Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow.	CWE-306 Missing Authentication for Critical Function	CVE-2026-24090	2026-06-3 00:25	2026-06-2	Show	GitHub Exploit DB Packet Storm

2647	7.2	HIGH Physics	qualcomm	c-v2x_9150_firmware cologne_firmware cq7790_firmware cq8725s_firmware cq8750m_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fastconnect_6200_firmware fast…	Memory corruption while processing fastboot commands with improperly formatted input.	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2026-24091	2026-06-3 00:25	2026-06-2	Show	GitHub Exploit DB Packet Storm

2648	7.2	HIGH Physics	qualcomm	ar8031_firmware ar8035_firmware cologne_firmware cq7790_firmware cq8725s_firmware cq8750m_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect…	Memory Corruption when processing fastboot commands to set display mode.	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2026-24092	2026-06-3 00:25	2026-06-2	Show	GitHub Exploit DB Packet Storm

2649	9.8	CRITICAL Network	langflow	langflow	IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction.	CWE-22 Path Traversal	CVE-2026-7524	2026-06-3 00:24	2026-05-27	Show	GitHub Exploit DB Packet Storm

2650	7.8	HIGH Local	qualcomm	cologne_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware sc8380xp_firmware wcd9378c_firmware wcd9380_firmware	Memory corruption while processing IOCTL calls for escape operations.	CWE-125 Out-of-bounds Read	CVE-2026-25258	2026-06-3 00:23	2026-06-2	Show	GitHub Exploit DB Packet Storm