Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
244161 6.8 警告 MediaWiki - MediaWiki の AJAX 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1055 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244162 6.8 警告 MediaWiki - MediaWiki の AJAX 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1054 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244163 10 危険 malbum - mAlbum における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-1045 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244164 5 警告 Pearson Education, Inc. - Pearson Education PowerSchool における admin フォルダの内容をリスト化される脆弱性 CWE-200
情報漏えい
CVE-2007-1044 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244165 10 危険 peanutkb - PeanutKB における脆弱性 - CVE-2007-1039 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244166 7.5 危険 レッドハット - JBoss のディフォルト設定における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-1036 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244167 7.8 危険 Niels Provos - Niels Provos libevent におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1030 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244168 4.4 警告 IBM - Linux および Unix 用の IBM DB2 における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題
CVE-2007-1027 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244169 10 危険 marcello vitagliano - Meganoide's news の include.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1024 2012-09-25 16:47 2007-02-21 Show GitHub Exploit DB Packet Storm
244170 4.6 警告 macrovision - Macrovision InstallAnywhere における許可されないインストールを実行される脆弱性 - CVE-2007-1009 2012-09-25 16:47 2007-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253241 9.8 CRITICAL
Network
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
msm8996au_firmware
sd210_firmware
sd212_firmware
sd205_firmware
sd425_firmware
sd427_firmware
sd430_…
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, S… CWE-20
 Improper Input Validation 
CVE-2018-11287 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253242 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
msm8996au_firmware
sd210_firmware
sd212_firmware
sd205_firmware
sd425_firmware
sd427_firmware
sd430_…
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, … CWE-125
Out-of-bounds Read
CVE-2018-11285 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253243 7.8 HIGH
Local
qualcomm msm8909w_firmware
msm8996au_firmware
sd210_firmware
sd212_firmware
sd205_firmware
sd430_firmware
sd450_firmware
sd615_firmware
sd616_firmware
sd415_firmware
sd617_firmwa…
In Snapdragon (Automobile, Mobile, Wear) in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD… CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-11277 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253244 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9640_firmware
mdm9645_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
msm8996au_firmware
sd210_firmware<…
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … CWE-129
 Improper Validation of Array Index
CVE-2018-11269 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253245 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9640_firmware
mdm9645_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
msm8996au_firmware
sd210_firmware<…
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … CWE-129
 Improper Validation of Array Index
CVE-2018-11268 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253246 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9615_firmware
mdm9640_firmware
mdm9650_firmware
mdm9655_firmware
msm8996au_firmware
sd210_firmware
sd212_firmware
sd205_firmware
sd4…
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, S… CWE-129
 Improper Validation of Array Index
CVE-2018-11267 2024-11-21 12:43 2018-09-20 Show GitHub Exploit DB Packet Storm
253247 5.9 MEDIUM
Network
apache tika In Apache Tika 0.9 to 1.18, in a rare edge case where a user does not specify an extract directory on the commandline (--extract-dir=) and the input file has an embedded file with an absolute path, s… CWE-22
Path Traversal
CVE-2018-11762 2024-11-21 12:43 2018-09-19 Show GitHub Exploit DB Packet Storm
253248 7.5 HIGH
Network
apache
oracle
tika
business_process_management_suite
In Apache Tika 0.1 to 1.18, the XML parsers were not configured to limit entity expansion. They were therefore vulnerable to an entity expansion vulnerability which can lead to a denial of service at… CWE-611
XXE
CVE-2018-11761 2024-11-21 12:43 2018-09-19 Show GitHub Exploit DB Packet Storm
253249 7.8 HIGH
Local
google android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from userspace before copying into buffer can lead to poten… CWE-20
 Improper Input Validation 
CVE-2018-11302 2024-11-21 12:43 2018-09-19 Show GitHub Exploit DB Packet Storm
253250 7.8 HIGH
Local
google android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to a… CWE-191
 Integer Underflow (Wrap or Wraparound)
CVE-2018-11301 2024-11-21 12:43 2018-09-19 Show GitHub Exploit DB Packet Storm