Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226521	4.3	警告	pro2col	-	Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4168	2012-12-20 18:52	2008-09-22	Show	GitHub Exploit DB Packet Storm

226522	7.5	危険	zanfi solutions	-	Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4159	2012-12-20 18:52	2008-09-22	Show	GitHub Exploit DB Packet Storm

226523	6.8	警告	zanfi solutions	-	Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4158	2012-12-20 18:52	2008-09-22	Show	GitHub Exploit DB Packet Storm

226524	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4157	2012-12-20 18:52	2008-09-22	Show	GitHub Exploit DB Packet Storm

226525	7.5	危険	razorecommerce	-	RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4143	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

226526	7.5	危険	x10media	-	x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-4141	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

226527	10	危険	technote	-	Technote の skin_shop/standard/3_plugin_twindow/twindow_notice.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-4138	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

226528	7.8	危険	s60	-	Nokia E90 Communicator および Nseries N82 上で稼動している Symbian OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4135	2012-12-20 18:52	2008-09-19	Show	GitHub Exploit DB Packet Storm

226529	7.5	危険	phprealty	-	phpRealty の manager/static/view.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-4134	2012-12-20 18:52	2008-09-19	Show	GitHub Exploit DB Packet Storm

226530	5	警告	phpBB	-	phpBB の search 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-4125	2012-12-20 18:52	2008-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212341	6.5	MEDIUM Network	google	android	In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Pr…	CWE-909 Missing Initialization of Resource	CVE-2019-9320	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212342	6.5	MEDIUM Network	google	android	In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Pr…	CWE-909 Missing Initialization of Resource	CVE-2019-9319	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212343	6.5	MEDIUM Network	google	android	In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. P…	CWE-909 Missing Initialization of Resource	CVE-2019-9318	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212344	6.5	MEDIUM Network	google	android	In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploita…	CWE-909 Missing Initialization of Resource	CVE-2019-9317	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212345	6.5	MEDIUM Network	google	android	In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploita…	CWE-909 Missing Initialization of Resource	CVE-2019-9316	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212346	6.5	MEDIUM Network	google	android	In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. P…	CWE-909 Missing Initialization of Resource	CVE-2019-9315	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212347	6.5	MEDIUM Network	google	android	In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Pr…	CWE-909 Missing Initialization of Resource	CVE-2019-9314	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212348	6.5	MEDIUM Network	google	android	In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploita…	CWE-909 Missing Initialization of Resource	CVE-2019-9313	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212349	5.5	MEDIUM Local	google	android	In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is…	CWE-125 Out-of-bounds Read	CVE-2019-9312	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

212350	7.5	HIGH Network	google	android	In Bluetooth, there is a possible crash due to an integer overflow. This could lead to remote denial of service on incoming calls with no additional execution privileges needed. User interaction is n…	CWE-190 Integer Overflow or Wraparound	CVE-2019-9311	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm