Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226831 7.5 危険 SoftbizScripts - Softbiz Jokes & Funny Pics Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2874 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
226832 7.5 危険 sharecms - ShareCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2870 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
226833 6.8 警告 webchamado - WebChamado の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2858 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
226834 7.5 危険 softdivision - Maxtrade AIO の Trade モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2847 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
226835 4.3 警告 traindepot - Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2839 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226836 5 警告 traindepot - Traindepot の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2838 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226837 7.5 危険 sidb - Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2834 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226838 10 危険 worldlevel - le.cms の admin/upload.php における管理者の認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2833 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
226839 10 危険 tmsnc - tmsnc におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2828 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
226840 4.3 警告 Xerox - Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2825 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211911 8.8 HIGH
Network 		google
opensuse
fedoraproject
debian
canonical 		android
leap
fedora
debian_linux
ubuntu_linux 		In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-9278 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211912 3.3 LOW
Local 		google android In the proc filesystem, there is a possible information disclosure due to log information disclosure. This could lead to local disclosure of app and browser activity with User execution privileges ne… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-9277 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211913 5.5 MEDIUM
Local 		google android In WiFi, there is a possible leak of WiFi state due to a permissions bypass. This could lead to a local information disclosure which could be used to determine device location with no additional exec… CWE-863
 Incorrect Authorization 		CVE-2019-9272 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211914 7.3 HIGH
Local 		google android In System Settings, there is a possible permissions bypass due to a cached Linux user ID. This could lead to a local permissions bypass with no additional execution privileges needed. User interactio… CWE-613
 Insufficient Session Expiration 		CVE-2019-9269 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211915 5.5 MEDIUM
Local 		google android In libstagefright, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. Use… CWE-416
CWE-667
 Use After Free
 Improper Locking 		CVE-2019-9268 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211916 6.7 MEDIUM
Local 		google android In sensorservice, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is … CWE-787
 Out-of-bounds Write 		CVE-2019-9266 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211917 7.5 HIGH
Network 		google android In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interactio… CWE-125
Out-of-bounds Read 		CVE-2019-9265 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211918 6.5 MEDIUM
Network 		google android In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for… CWE-125
Out-of-bounds Read 		CVE-2019-9264 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211919 7.8 HIGH
Local 		google android In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges ne… CWE-862
 Missing Authorization 		CVE-2019-9263 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm
211920 8.8 HIGH
Network 		google android In MPEG4Extractor, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the media extractor with no additional execution privileges needed. … CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-9262 2024-11-21 13:51 2019-09-28 Show GitHub Exploit DB Packet Storm