Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 241941 | 7.5 | 危険 | Basic-CMS | - | BASIC-CMS の pages/index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2789 | 2012-06-26 16:02 | 2008-06-20 | Show | GitHub Exploit DB Packet Storm |
| 241942 | 7.5 | 危険 | dzoic | - | DZOIC Handshakes の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2781 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241943 | 6.4 | 警告 | albinoloverats | - | encrypt の Anubis プラグインにおける暗号化されたデータと乱数のパディングを識別される脆弱性 |
CWE-310
暗号の問題 |
CVE-2008-2780 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241944 | 9.3 | 危険 | globalscape | - | GlobalSCAPE CuteFTP Home および CuteFTP Pro におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-2779 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241945 | 4.3 | 警告 | dt centrepiece | - | DT Centrepiece の search.asp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-2776 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241946 | 7.5 | 危険 | dt centrepiece | - | DT Centrepiece の search.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2775 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241947 | 7.5 | 危険 | cartkeeper | - | CartKeeper CKGold Shopping Cart の item.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2774 | 2012-06-26 16:02 | 2008-06-19 | Show | GitHub Exploit DB Packet Storm |
| 241948 | 6.8 | 警告 | efiction | - | eFiction の toplists.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2754 | 2012-06-26 16:02 | 2008-06-18 | Show | GitHub Exploit DB Packet Storm |
| 241949 | 7.5 | 危険 | gryphon | - | Gryphon gllcTS2 の login.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-2746 | 2012-06-26 16:02 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 241950 | 9.3 | 危険 | black ice | - | Black Ice Software Annotation プラグイン の BiAnno ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-2745 | 2012-06-26 16:02 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 267561 | 7.5 |
HIGH
Network |
node-uuid_project | node-uuid | node-uuid before 1.4.4 uses insufficiently random data to create a GUID, which could make it easier for attackers to have unspecified impact via brute force guessing. |
CWE-331
Insufficient Entropy |
CVE-2015-8851 | 2024-11-21 11:39 | 2020-01-31 | Show | GitHub Exploit DB Packet Storm |
| 267562 | 9.8 |
CRITICAL
Network |
php-gettext_project opensuse redhat fedoraproject |
php-gettext leap enterprise_linux fedora |
The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code. |
CWE-20
Improper Input Validation |
CVE-2015-8980 | 2024-11-21 11:39 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 267563 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware sd_650_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in TQS QSEE application, while parsing "Set Certif… |
CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound |
CVE-2015-9183 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267564 | 9.8 |
CRITICAL
Network |
qualcomm | msm8974_firmware | In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MSM8974, lack of length checking in OEMCrypto_DeriveKeysFromSessionKey() could lead to a buffer overflow vul… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9179 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267565 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, lack of validation of the return value prior to us… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9174 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267566 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, missing of return value check in memscpy can cause… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9173 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267567 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in the function "Certificate_CreateWithBuffer" in … |
CWE-476
NULL Pointer Dereference |
CVE-2015-9162 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267568 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, userspace-provided pointer arguments are not validated. |
CWE-20
Improper Input Validation |
CVE-2015-9151 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267569 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, while computing the length of memory allocated for a Diag event, if t… |
CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound |
CVE-2015-9150 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 267570 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, userspace-provided pointer arguments are not validated. |
CWE-20
Improper Input Validation |
CVE-2015-9147 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |