|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257191 | 6.8 | 警告 | Lightbox Technologies Inc. | - | Science Fair In A Box における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5026 | 2011-12-9 13:50 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257192 | 4.3 | 警告 | Lightbox Technologies Inc. | - | Science Fair In A Box におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-5027 | 2011-12-9 13:49 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257193 | 7.5 | 危険 | Jextensions | - | Joomla! 用 JExtensions JE Job のコンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5028 | 2011-12-9 13:48 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257194 | 7.5 | 危険 | codefabrik gmbh | - | Ecomat CMS における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5029 | 2011-12-9 13:47 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257195 | 4.3 | 警告 | codefabrik gmbh | - | Ecomat CMS におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-5030 | 2011-12-9 13:46 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257196 | 4.3 | 警告 | fileNice | - | fileNice の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-5031 | 2011-12-9 13:45 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257197 | 7.5 | 危険 | Tamlyn Creative Pty | - | Joomla! 用 BF Quiz コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5032 | 2011-12-9 13:45 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257198 | 7.5 | 危険 | Fusebox | - | Fusebox の ProductList.cfm における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5033 | 2011-12-9 13:44 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257199 | 7.5 | 危険 | iScripts | - | iScripts EasyBiller の viewhistorydetail.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5034 | 2011-12-9 13:43 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
| 257200 | 4.3 | 警告 | iScripts | - | iScripts eSwap の search.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-5035 | 2011-12-9 13:42 | 2011-11-2 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252781 | 7.2 |
HIGH
Network |
apache | virtual_computing_lab | Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL sta… |
CWE-89
SQL Injection |
CVE-2018-11772 | 2024-11-21 12:44 | 2019-07-30 | Show | GitHub Exploit DB Packet Storm |
| 252782 | 9.8 |
CRITICAL
Network |
apache | storm | In Apache Storm versions 1.1.0 to 1.2.2, when the user is using the storm-kafka-client or storm-kafka modules, it is possible to cause the Storm UI daemon to deserialize user provided bytes into a Ja… |
CWE-502
Deserialization of Untrusted Data |
CVE-2018-11779 | 2024-11-21 12:44 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 252783 | 7.2 |
HIGH
Network |
elitecms | elite_cms | An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection. |
CWE-89
SQL Injection |
CVE-2018-12250 | 2024-11-21 12:44 | 2019-07-4 | Show | GitHub Exploit DB Packet Storm |
| 252784 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmw… |
Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Snapdragon Auto, Snapdragon Consumer Elect… |
CWE-125
Out-of-bounds Read |
CVE-2018-11955 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252785 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq8064_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmwa… |
The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Ind… |
CWE-415
Double Free |
CVE-2018-11947 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252786 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs405_firmware | Failure to initialize the reserved memory which is sent to the firmware might lead to exposure of 1 byte of uninitialized kernel SKB memory to FW in Snapdragon Auto, Snapdragon Consumer IOT, Snapdrag… |
CWE-200
Information Exposure |
CVE-2018-11942 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252787 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qca6574au_firmware sd_210_firmware sd_212_firmware sd_205_firmware | Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MD… |
CWE-416
Use After Free |
CVE-2018-11939 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252788 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmware qca9379_firmwa… |
Possible out of bounds write due to improper input validation while processing DO_ACS vendor command in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdra… |
CWE-787
Out-of-bounds Write |
CVE-2018-11934 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252789 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs405_firmware qcs605_firmware sd_425_firmware sd_427_firmware s… |
Lack of input validation in WLAN function can lead to potential heap overflow in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MD… |
CWE-787
Out-of-bounds Write |
CVE-2018-11929 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252790 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd… |
Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9640, MD… |
CWE-416
Use After Free |
CVE-2018-11819 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |