Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226721	7.5	危険	turnkeyforms	-	TurnkeyForms Business Survey Pro の survey_results_text.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6349	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

226722	4.3	警告	ticklespace	-	Drupal 用の Answers モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6413	2012-12-20 19:10	2008-09-18	Show	GitHub Exploit DB Packet Storm

226723	4.3	警告	sadi samami	-	Multi Languages WebShop Online の detail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6267	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

226724	6.8	警告	xt:Commerce	-	xt:Commerce における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6304	2012-12-20 19:10	2008-11-20	Show	GitHub Exploit DB Packet Storm

226725	7.5	危険	TYPO3 Association	-	TYPO3 用の TU-Clausthal Staff エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6344	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

226726	4.3	警告	TYPO3 Association	-	TYPO3 用の TU-Clausthal ODIN エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6343	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

226727	4.3	警告	TYPO3 Association	-	TYPO3 用の SB Universal Plugin エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6341	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

226728	7.5	危険	weber-ebusiness	-	TYPO3 用の WEBERkommunal Facilities エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6338	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

226729	4.3	警告	rightscripts	-	Text Lines Rearrange Script の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6336	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

226730	7.5	危険	simplecustomer	-	Simple Customer の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6332	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213581	5.9	MEDIUM Network	google	android	In wpa_supplicant, there is a possible man in the middle vulnerability due to improper input validation of the basicConstraints field of intermediary certificates. This could lead to remote informati…	CWE-20 Improper Input Validation	CVE-2019-9414	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213582	7.5	HIGH Network	google	android	In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction i…	CWE-125 Out-of-bounds Read	CVE-2019-9413	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213583	6.5	MEDIUM Network	google	android	In libSBRdec there is a possible out of bounds read due to incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is…	CWE-125 Out-of-bounds Read	CVE-2019-9412	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213584	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9411	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213585	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9410	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213586	6.5	MEDIUM Network	google	android	In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is n…	CWE-908 Use of Uninitialized Resource	CVE-2019-9409	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213587	6.5	MEDIUM Network	google	android	In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is ne…	CWE-908 Use of Uninitialized Resource	CVE-2019-9408	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213588	7.8	HIGH Local	google	android	In notification management of the service manager, there is a possible permissions bypass. This could lead to local escalation of privilege by preventing user notification, with no additional executi…	NVD-CWE-noinfo	CVE-2019-9407	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213589	6.5	MEDIUM Network	google	android	In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is n…	CWE-908 Use of Uninitialized Resource	CVE-2019-9406	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm

213590	8.8	HIGH Network	google	android	In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed f…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2019-9405	2024-11-21 13:51	2019-09-28	Show	GitHub Exploit DB Packet Storm