Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226481	7.5	危険	rmsoft	-	Xoops 用の RMSOFT MiniShop モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4433	2012-12-20 18:52	2008-10-3	Show	GitHub Exploit DB Packet Storm

226482	4.3	警告	rmsoft	-	Xoops 用の RMSOFT MiniShop モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4432	2012-12-20 18:52	2008-10-3	Show	GitHub Exploit DB Packet Storm

226483	5	警告	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4403	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

226484	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4402	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

226485	9.3	危険	safer networking	-	Safer Networking FileAlyzer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4396	2012-12-20 18:52	2008-10-2	Show	GitHub Exploit DB Packet Storm

226486	4.3	警告	ベリサイン	-	VeriSign Kontiki DMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4393	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

226487	9.3	危険	simba technologies SAP	-	SAP SAPgui の mdrmsap.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4387	2012-12-20 18:52	2008-11-10	Show	GitHub Exploit DB Packet Storm

226488	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4244	2012-12-20 18:52	2008-09-25	Show	GitHub Exploit DB Packet Storm

226489	7.5	危険	softacid	-	SoftAcid HRS の city.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4204	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

226490	6.9	警告	レッドハット	-	cman の fence_egenera における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4192	2012-12-20 18:52	2008-09-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211651	6.7	MEDIUM Local	google	android	In nfa_hciu_send_msg of nfa_hci_utils.cc, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege in the NFC server with System exec…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-0050	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211652	6.5	MEDIUM Network	google	android	In onReadBuffer() of StreamingSource.cpp, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege…	CWE-908 Use of Uninitialized Resource	CVE-2020-0049	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211653	5.5	MEDIUM Local	google	android	In onTransact of IAudioFlinger.cpp, there is a possible stack information leak due to uninitialized data. This could lead to local information disclosure with no additional execution privileges neede…	CWE-908 Use of Uninitialized Resource	CVE-2020-0048	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211654	3.3	LOW Local	google	android	In setMasterMute of AudioService.java, there is a missing permission check. This could lead to local silencing of audio with no additional execution privileges needed. User interaction is not needed …	CWE-862 Missing Authorization	CVE-2020-0047	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211655	7.8	HIGH Local	google	android	In DrmPlugin::releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution…	CWE-787 Out-of-bounds Write	CVE-2020-0046	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211656	6.4	MEDIUM Local	google	android	In StatsService::command of StatsService.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. Us…	CWE-362 CWE-787 Race Condition Out-of-bounds Write	CVE-2020-0045	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211657	7.5	HIGH Network	google	android	In setRequirePmfInternal of sta_network.cpp, there is a possible default value being improperly applied due to a logic error. This could lead to remote denial of service with no additional execution …	NVD-CWE-noinfo	CVE-2020-0083	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211658	7.8	HIGH Local	google huawei	android berkeley-l09_firmware columbia-al10b_firmware columbia-l29d_firmware columbia-tl00b_firmware columbia-tl00d_firmware cornell-al00a_firmware cornell-tl10b_firmware dura…	In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local e…	CWE-787 Out-of-bounds Write	CVE-2020-0069	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211659	5.5	MEDIUM Local	google	android	In Pixel Recorder, there is a possible permissions bypass allowing arbitrary apps to record audio. This could lead to local information disclosure with no additional execution privileges needed. User…	NVD-CWE-noinfo	CVE-2020-0061	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211660	4.4	MEDIUM Local	google	android	In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges need…	CWE-89 SQL Injection	CVE-2020-0060	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm