Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253391 | 5 | 警告 | Roundcube.net | - | Roundcube Webmail の include/iniset.php におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-4078 | 2011-11-10 16:27 | 2011-11-3 | Show | GitHub Exploit DB Packet Storm |
| 253392 | 7.5 | 危険 | The PHP Group | - | PHP の is_a 関数における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-3379 | 2011-11-10 16:27 | 2011-08-22 | Show | GitHub Exploit DB Packet Storm |
| 253393 | 7.5 | 危険 | SIR | - | Gnuboard の bbs/tb.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4066 | 2011-11-10 16:26 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
| 253394 | 6.3 | 警告 | Conky | - | Conky における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-3616 | 2011-11-10 16:26 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
| 253395 | 6.9 | 警告 | GNOME Project レッドハット |
- | GNOME NetworkManager における任意のコマンドを実行される脆弱性 |
CWE-Other
その他 |
CVE-2011-3364 | 2011-11-10 16:24 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
| 253396 | 3.6 | 注意 | pureftpd | - | pure-FTPd のディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-3171 | 2011-11-10 16:24 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
| 253397 | 6.8 | 警告 | ヒューレット・パッカード | - | HP-UX Containers における権限を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3164 | 2011-11-10 16:23 | 2011-10-26 | Show | GitHub Exploit DB Packet Storm |
| 253398 | 7.5 | 危険 | e107.org | - | e107 CMS の install_.php における任意の PHP コードを挿入される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2011-1513 | 2011-11-10 16:23 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
| 253399 | 7.5 | 危険 | Deon George | - | phpLDAPadmin の lib/functions.php 内の masort 関数における任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-4075 | 2011-11-9 16:42 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 253400 | 4.3 | 警告 | Deon George | - | phpLDAPadmin の cmd.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4074 | 2011-11-9 16:42 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246661 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, S… |
CWE-20
Improper Input Validation |
CVE-2018-11287 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246662 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, … |
CWE-125
Out-of-bounds Read |
CVE-2018-11285 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246663 | 7.8 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd430_firmware sd450_firmware sd615_firmware sd616_firmware sd415_firmware sd617_firmwa… |
In Snapdragon (Automobile, Mobile, Wear) in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2018-11277 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246664 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware sd210_firmware<… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-11269 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246665 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware sd210_firmware<… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-11268 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246666 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd4… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, S… |
CWE-129
Improper Validation of Array Index |
CVE-2018-11267 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246667 | 5.9 |
MEDIUM
Network |
apache | tika | In Apache Tika 0.9 to 1.18, in a rare edge case where a user does not specify an extract directory on the commandline (--extract-dir=) and the input file has an embedded file with an absolute path, s… |
CWE-22
Path Traversal |
CVE-2018-11762 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |
| 246668 | 7.5 |
HIGH
Network |
apache oracle |
tika business_process_management_suite |
In Apache Tika 0.1 to 1.18, the XML parsers were not configured to limit entity expansion. They were therefore vulnerable to an entity expansion vulnerability which can lead to a denial of service at… |
CWE-611
XXE |
CVE-2018-11761 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |
| 246669 | 7.8 |
HIGH
Local |
android | In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from userspace before copying into buffer can lead to poten… |
CWE-20
Improper Input Validation |
CVE-2018-11302 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm | |
| 246670 | 7.8 |
HIGH
Local |
android | In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to a… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2018-11301 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |