Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226291 7.5 危険 umerinc - Umer Inc Songs Portal の albums.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5921 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
226292 7.5 危険 tigris - WebSVN の utils.inc における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5920 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226293 6.8 警告 tigris - WebSVN の rss.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5919 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226294 4.3 警告 tigris - WebSVN の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5918 2012-12-20 19:10 2009-01-20 Show GitHub Exploit DB Packet Storm
226295 7.5 危険 xrdp - xrdp の rdp/rdp_rdp.c における脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5904 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226296 7.5 危険 xrdp - xrdp の xrdp/funcs.c における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2008-5903 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226297 7.5 危険 xrdp - xrdp の xrdp/xrdp_bitmap.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5902 2012-12-20 19:10 2009-01-15 Show GitHub Exploit DB Packet Storm
226298 5 警告 Tincan - phplist におけるファイルをインクルードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5887 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
226299 5 警告 takempis - TAKempis Discussion Web におけるパスワードを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5886 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
226300 5 警告 the net guys - The Net Guys ASPired2Quote におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5885 2012-12-20 19:10 2009-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212221 7.8 HIGH
Local 		google android In HidRawSensor::batch of HidRawSensor.cpp, there is a possible out of bounds write due to an unexpected switch fallthrough. This could lead to local escalation of privilege with no additional execut… CWE-787
 Out-of-bounds Write 		CVE-2020-0027 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212222 7.8 HIGH
Local 		google android In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. U… CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2020-0026 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212223 5.5 MEDIUM
Local 		google android In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth due to a missing permission check. This could lead to local information disclosu… CWE-862
 Missing Authorization 		CVE-2020-0023 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212224 8.8 HIGH
Adjacent 		google
huawei 		android
mate_20_firmware
mate_20_pro_firmware
mate_20_x_firmware
p_smart_firmware
p_smart_2019_firmware
p20_firmware
p20_pro_firmware
p30_firmware
p30_pro_firmware
y6_20… 		In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no addit… CWE-682
 Incorrect Calculation 		CVE-2020-0022 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212225 6.5 MEDIUM
Network 		google android In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with Us… CWE-476
 NULL Pointer Dereference 		CVE-2020-0021 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212226 5.5 MEDIUM
Local 		google android In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-0020 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212227 4.4 MEDIUM
Local 		google android In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. This could lead to local disclosure of user input with System execution privileges needed. Us… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-0018 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212228 4.4 MEDIUM
Local 		google android In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. This could lead to local information disclosure with no additional execution … NVD-CWE-noinfo
CVE-2020-0017 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212229 7.8 HIGH
Local 		google android In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. This could lead to local escalation of privilege with no addition… NVD-CWE-noinfo
CVE-2020-0015 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm
212230 5.5 MEDIUM
Local 		google android It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. This could lead to a local escalation of privilege with no additional execution pr… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-0014 2024-11-21 13:52 2020-02-14 Show GitHub Exploit DB Packet Storm