Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 18, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 242151 | 6.8 | 警告 | bestwebsharing | - | Groovy Media Player におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4931 | 2012-06-26 16:19 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 242152 | 4.3 | 警告 | esoftpro | - | Online Contact Manager および EContact PRO におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4926 | 2012-06-26 16:19 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 242153 | 6.8 | 警告 | creasito | - | Portale e-commerce Creasito における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4925 | 2012-06-26 16:19 | 2010-07-12 | Show | GitHub Exploit DB Packet Storm |
| 242154 | 4.3 | 警告 | dan pascu | - | Dan Pascu python-cjson における特定のクロスサイトスクリプティング攻撃を誘発する脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4924 | 2012-06-26 16:19 | 2010-07-2 | Show | GitHub Exploit DB Packet Storm |
| 242155 | 6.8 | 警告 | dootzky | - | oBlog の admin/index.php における総当りパスワード推測攻撃を実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-4909 | 2012-06-26 16:19 | 2010-06-25 | Show | GitHub Exploit DB Packet Storm |
| 242156 | 4.3 | 警告 | dootzky | - | oBlog におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4908 | 2012-06-26 16:19 | 2010-06-25 | Show | GitHub Exploit DB Packet Storm |
| 242157 | 6.8 | 警告 | dootzky | - | oBlog におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-4907 | 2012-06-26 16:19 | 2010-06-25 | Show | GitHub Exploit DB Packet Storm |
| 242158 | 7.8 | 危険 | シスコシステムズ | - | Cisco ASA 5580 シリーズの DTLS 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4923 | 2012-06-26 16:19 | 2009-04-6 | Show | GitHub Exploit DB Packet Storm |
| 242159 | 6.8 | 警告 | シスコシステムズ | - | Cisco ASA 5580 シリーズにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4922 | 2012-06-26 16:19 | 2009-04-6 | Show | GitHub Exploit DB Packet Storm |
| 242160 | 7.8 | 危険 | シスコシステムズ | - | Cisco ASA 5580 シリーズにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4921 | 2012-06-26 16:19 | 2009-04-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 18, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268711 | 5.3 |
MEDIUM
Network |
bouncycastle debian |
legion-of-the-bouncy-castle-java-crytography-api debian_linux |
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if … |
CWE-310
Cryptographic Issues |
CVE-2016-1000339 | 2024-11-21 11:43 | 2018-06-4 | Show | GitHub Exploit DB Packet Storm |
| 268712 | 7.5 |
HIGH
Network |
bouncycastle redhat canonical netapp |
legion-of-the-bouncy-castle-java-crytography-api satellite_capsule ubuntu_linux satellite 7-mode_transition_tool |
In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up t… |
CWE-347
Improper Verification of Cryptographic Signature |
CVE-2016-1000338 | 2024-11-21 11:43 | 2018-06-2 | Show | GitHub Exploit DB Packet Storm |
| 268713 | 9.8 |
CRITICAL
Network |
jfrog | artifactory | Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uplo… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2016-10036 | 2024-11-21 11:43 | 2018-05-2 | Show | GitHub Exploit DB Packet Storm |
| 268714 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_820_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, when executing a T… |
CWE-200
Information Exposure |
CVE-2016-10430 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268715 | 7.5 |
HIGH
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware sd_820a_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, HMAC verification … |
CWE-200
Information Exposure |
CVE-2016-10428 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268716 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_810_f… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 810, SD 820, and … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-10426 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268717 | 8.1 |
HIGH
Network |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware sd_835_firmware sd_820a_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, and SD 835, TOCTOU vul… |
CWE-362
Race Condition |
CVE-2016-10409 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268718 | 8.1 |
HIGH
Network |
qualcomm |
mdm9635m_firmware mdm9640_firmware mdm9645_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_400_firmware sd_410_firmware sd_412_firmware sd_… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9635M, MDM9640, MDM9645, MSM8909W, SD 210/SD 212/SD 205, SD 4… |
CWE-119 CWE-362 Incorrect Access of Indexable Resource ('Range Error') Race Condition |
CVE-2016-10433 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268719 | 8.1 |
HIGH
Network |
qualcomm |
sd_820a_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_f… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, and SD 820A,… |
CWE-362
Race Condition |
CVE-2016-10432 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 268720 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_625_… |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, … |
CWE-20
Improper Input Validation |
CVE-2016-10431 | 2024-11-21 11:43 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |