Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 18, 2026, 2:16 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 242041 | 3.5 | 注意 | Apache Software Foundation | - | Apache ActiveMQ の createDestination.action におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0684 | 2012-06-26 16:19 | 2010-04-5 | Show | GitHub Exploit DB Packet Storm |
| 242042 | 4.3 | 警告 | bgsvetionik | - | BGSvetionik BGS CMS の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0675 | 2012-06-26 16:19 | 2010-02-22 | Show | GitHub Exploit DB Packet Storm |
| 242043 | 5 | 警告 | 2enetworx | - | StatCounteX におけるデータベースをダウンロードされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0674 | 2012-06-26 16:19 | 2010-02-22 | Show | GitHub Exploit DB Packet Storm |
| 242044 | 7.5 | 危険 | WordPress.org copperleaf |
- | WordPress の Copperleaf Photolog プラグインの cplphoto.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0673 | 2012-06-26 16:19 | 2010-02-22 | Show | GitHub Exploit DB Packet Storm |
| 242045 | 9.3 | 危険 | アップル |
- | Google Chrome における Chrome サンドボックス内の任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-0659 | 2012-06-26 16:19 | 2010-02-18 | Show | GitHub Exploit DB Packet Storm |
| 242046 | 2.6 | 注意 | アップル | - | Google Chrome および Apple Safari の WebKit におけるポップアップウィンドウ上の制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0650 | 2012-06-26 16:19 | 2010-02-18 | Show | GitHub Exploit DB Packet Storm |
| 242047 | 9.3 | 危険 | アップル |
- | Google Chrome で使用される WebKit における Chrome サンドボックス内の任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0647 | 2012-06-26 16:19 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
| 242048 | 5 | 警告 | シスコシステムズ | - | CCS における JHTML ファイルのソースコードを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0642 | 2012-06-26 16:19 | 2010-02-17 | Show | GitHub Exploit DB Packet Storm |
| 242049 | 4.3 | 警告 | シスコシステムズ | - | CCS の webline/html/admin/wcs/LoginPage.jhtml におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0641 | 2012-06-26 16:19 | 2010-02-17 | Show | GitHub Exploit DB Packet Storm |
| 242050 | 7.5 | 危険 | eicrasoft | - | Eicra Car Rental-Script の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0631 | 2012-06-26 16:19 | 2010-02-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 18, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268711 | 5.3 |
MEDIUM
Network |
bouncycastle debian |
legion-of-the-bouncy-castle-java-crytography-api debian_linux |
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if … |
CWE-310
Cryptographic Issues |
CVE-2016-1000339 | 2024-11-21 11:43 | 2018-06-4 | Show | GitHub Exploit DB Packet Storm |
| 268712 | 7.5 |
HIGH
Network |
bouncycastle redhat canonical netapp |
legion-of-the-bouncy-castle-java-crytography-api satellite_capsule ubuntu_linux satellite 7-mode_transition_tool |
In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up t… |
CWE-347
Improper Verification of Cryptographic Signature |
CVE-2016-1000338 | 2024-11-21 11:43 | 2018-06-2 | Show | GitHub Exploit DB Packet Storm |
| 268713 | 9.8 |
CRITICAL
Network |
jfrog | artifactory | Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uplo… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2016-10036 | 2024-11-21 11:43 | 2018-05-2 | Show | GitHub Exploit DB Packet Storm |
| 268714 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_820_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, when executing a T… |
CWE-200
Information Exposure |
CVE-2016-10430 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268715 | 7.5 |
HIGH
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware sd_820a_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, HMAC verification … |
CWE-200
Information Exposure |
CVE-2016-10428 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268716 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_810_f… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 810, SD 820, and … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-10426 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268717 | 8.1 |
HIGH
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware sd_835_firmware sd_820a_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, and SD 835, TOCTOU vul… |
CWE-362
Race Condition |
CVE-2016-10409 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268718 | 8.1 |
HIGH
Network |
qualcomm |
mdm9635m_firmware mdm9640_firmware mdm9645_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_400_firmware sd_410_firmware sd_412_firmware sd_… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9635M, MDM9640, MDM9645, MSM8909W, SD 210/SD 212/SD 205, SD 4… |
CWE-119 CWE-362 Incorrect Access of Indexable Resource ('Range Error') Race Condition |
CVE-2016-10433 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268719 | 8.1 |
HIGH
Network |
qualcomm |
sd_820a_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_f… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, and SD 820A,… |
CWE-362
Race Condition |
CVE-2016-10432 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268720 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_625_… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, … |
CWE-20
Improper Input Validation |
CVE-2016-10431 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |