Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 241421 | 5 | 警告 | databay | - | MaxCMS の includes/inc.thcms_admin_dirtree.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-3425 | 2012-06-26 16:18 | 2009-09-25 | Show | GitHub Exploit DB Packet Storm |
| 241422 | 6.8 | 警告 | databay | - | MaxCMS における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3424 | 2012-06-26 16:18 | 2009-09-25 | Show | GitHub Exploit DB Packet Storm |
| 241423 | 8.5 | 危険 | Craig Barratt | - | BackupPC の CgiUserConfigEdit における重要なファイルを読み書きされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3369 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241424 | 9.3 | 危険 | FTPShell | - | FTPShell Client におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3364 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241425 | 4.3 | 警告 | Datemill | - | Datemill におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3360 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241426 | 4.3 | 警告 | datetopia | - | Match Agency BiZ におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3359 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241427 | 4.3 | 警告 | datetopia | - | Datetopia Buy Dating Site の profile.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3355 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241428 | 10 | 危険 | Drupal andrew sterling hanenkamp |
- | Drupal の Rest API モジュールにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3354 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241429 | 7.5 | 危険 | datavore | - | Datavore Gyro における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3349 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
| 241430 | 4.3 | 警告 | datavore | - | Datavore Gyro におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3348 | 2012-06-26 16:18 | 2009-09-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 266911 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9650_firmware sd_650_firmware sd_652_firmware sd_808_firmware sd_810_firmware sd_820_firmware sdx20_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9650, SD 650/52, SD 808, SD 810, SD 820, and SDX20, lack of proper bounds checking may lead to a buffer o… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-10461 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266912 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_835_firmware sd_845_firmware sd_850_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 835, SD 845, and SD 850, vendor specific opcodes may not have any packet length validation leading to buf… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-10460 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266913 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 425, SD 430, SD 450, and SD 625, in a QTEE API function, an array out-of-bounds index can occur. |
CWE-129
Improper Validation of Array Index |
CVE-2016-10454 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266914 | 7.5 |
HIGH
Network |
qualcomm |
mdm9206_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_820_firmware sd_835_firmware sd_820a_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 820, SD 820A, and SD … |
CWE-16
Configuration |
CVE-2016-10446 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266915 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9640_firmware sdm630_firmware mdm9650_firmware msm8976_firmware msm8937_firmware sdm845_firmware msm8952_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9640, SDM630, MSM8976, MSM8937, SDM845, MSM8976, and MSM8952, when running module or kernel code with imp… |
CWE-284
Improper Access Control |
CVE-2016-10442 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266916 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, and SD 650/52, there is improper access control to a bus. |
CWE-284
Improper Access Control |
CVE-2016-10440 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266917 | 9.8 |
CRITICAL
Network |
qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9655_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_400_firmware s… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile, Snapdragon Wear, and Small Cell SoC FSM9055, MDM9206, MDM9607, MDM9635M, MDM9655, MSM8909W, SD 210/SD 212/S… |
CWE-20
Improper Input Validation |
CVE-2016-10501 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266918 | 7.5 |
HIGH
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9625_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware<… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM890… |
CWE-399
Resource Management Errors |
CVE-2016-10499 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266919 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9625_firmware mdm9635m_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware sd_210_firmware sd_212_firmware … |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9635M, MDM9645, MDM9650, MDM9655, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435… |
CWE-74
Injection |
CVE-2016-10498 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 266920 | 7.5 |
HIGH
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9625_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware<… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM890… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-10497 | 2024-11-21 11:44 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |