Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226871 7.5 危険 PilotCart - ASPilot Pilot Cart の pilot.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2688 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
226872 7.5 危険 promanager - ProManager の inc/config.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2687 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
226873 7.5 危険 realm project - Realm CMS の _RealmAdmin/login.asp における 認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2682 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226874 5 警告 realm project - Realm CMS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2681 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226875 4.3 警告 realm project - Realm CMS の _db/compact.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2680 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226876 7.5 危険 realm project - Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2679 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226877 7.5 危険 telephone - Telephone Directory 2008 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2678 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226878 4.3 警告 telephone - Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2677 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226879 4.3 警告 softcomplex - PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2675 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
226880 7.5 危険 Powie - Powie pNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2673 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211121 5.5 MEDIUM
Local 		google android In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. Us… CWE-125
Out-of-bounds Read 		CVE-2020-0424 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
211122 7.8 HIGH
Local 		google android In getPermissionInfosForGroup of Utils.java, there is a logic error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploit… NVD-CWE-noinfo
CVE-2020-0418 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
211123 7.8 HIGH
Local 		google android In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User int… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-0409 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
211124 7.8 HIGH
Local 		google
debian 		android
debian_linux 		In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges … CWE-416
CWE-667
 Use After Free
 Improper Locking 		CVE-2020-0423 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211125 3.3 LOW
Local 		google android In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure … NVD-CWE-noinfo
CVE-2020-0422 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211126 7.8 HIGH
Local 		google android In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges need… CWE-787
CWE-755
 Out-of-bounds Write
 Improper Handling of Exceptional Conditions 		CVE-2020-0421 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211127 7.8 HIGH
Local 		google android In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check. This could lead to local escalation of privilege with no additional execution pri… CWE-787
CWE-667
CWE-862
 Out-of-bounds Write
 Improper Locking
 Missing Authorization 		CVE-2020-0420 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211128 5.5 MEDIUM
Local 		google android In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information dis… CWE-862
 Missing Authorization 		CVE-2020-0419 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211129 8.8 HIGH
Network 		google android In multiple settings screens, there are possible tapjacking attacks due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution pri… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2020-0416 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
211130 5.5 MEDIUM
Local 		google android In various locations in SystemUI, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of contact data with User execution privileges … NVD-CWE-noinfo
CVE-2020-0415 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm