Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226381	7.5	危険	uniwin	-	Uniwin eCart Professional における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4746	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

226382	4.3	警告	uniwin	-	Uniwin eCart Professional の emailFriend.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4745	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

226383	7.5	危険	quidascript	-	QuidaScript FAQ Management Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4743	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

226384	4.3	警告	timetrex	-	TimeTrex の interface/Login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4742	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

226385	5.1	警告	tinycms	-	TinyCMS 内の ZZ_Templater モジュール内におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4740	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

226386	6.8	警告	plugspace	-	PlugSpace の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4739	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

226387	7.5	危険	tufat	-	MyCard の gallery.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4738	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

226388	7.5	危険	pressography	-	WordPress 用の WP Comment Remix プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4734	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

226389	4.3	警告	pressography	-	WordPress 用の WP Comment Remix プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4733	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

226390	7.5	危険	pressography	-	WordPress 用の WP Comment Remix プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4732	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212251	6.5	MEDIUM Network	google	android	In libstagefright there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interacti…	CWE-908 Use of Uninitialized Resource	CVE-2019-9416	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212252	6.5	MEDIUM Network	google	android	In libstagefright there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interacti…	CWE-908 Use of Uninitialized Resource	CVE-2019-9415	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212253	5.9	MEDIUM Network	google	android	In wpa_supplicant, there is a possible man in the middle vulnerability due to improper input validation of the basicConstraints field of intermediary certificates. This could lead to remote informati…	CWE-20 Improper Input Validation	CVE-2019-9414	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212254	7.5	HIGH Network	google	android	In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction i…	CWE-125 Out-of-bounds Read	CVE-2019-9413	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212255	6.5	MEDIUM Network	google	android	In libSBRdec there is a possible out of bounds read due to incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is…	CWE-125 Out-of-bounds Read	CVE-2019-9412	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212256	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9411	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212257	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9410	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212258	6.5	MEDIUM Network	google	android	In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is n…	CWE-908 Use of Uninitialized Resource	CVE-2019-9409	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212259	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9408	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212260	7.8	HIGH Local	google	android	In notification management of the service manager, there is a possible permissions bypass. This could lead to local escalation of privilege by preventing user notification, with no additional executi…	NVD-CWE-noinfo	CVE-2019-9407	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm