Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226901	7.5	危険	ringsworld	-	Flashlight Free Edition の admin.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4205	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

226902	7.5	危険	ringsworld	-	Flashlight Free Edition の read.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4204	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

226903	7.5	危険	vollmar	-	Joomla! 用の Seminar コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4200	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

226904	7.2	危険	サン・マイクロシステムズ	-	x86-64 platform 上で稼動する Sun Solaris などのカーネルにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4191	2012-12-20 19:28	2009-12-3	Show	GitHub Exploit DB Packet Storm

226905	7.8	危険	サン・マイクロシステムズ	-	Sun OpenSolaris のカーネルにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4190	2012-12-20 19:28	2009-12-3	Show	GitHub Exploit DB Packet Storm

226906	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Portal Server の Gateway コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4187	2012-12-20 19:28	2009-12-1	Show	GitHub Exploit DB Packet Storm

226907	4.3	警告	Yahoo!	-	Yahoo! Messenger 用の YahooBridgeLib.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4171	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

226908	5	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4170	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

226909	4.3	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4169	2012-12-20 19:28	2009-09-27	Show	GitHub Exploit DB Packet Storm

226910	4.3	警告	roytanck	-	WordPress、Joomulus モジュール、および Joomla! 用の WP-Cumulus モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4168	2012-12-20 19:28	2009-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195991	9.8	CRITICAL Network	google	android	In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with n…	CWE-787 Out-of-bounds Write	CVE-2021-0515	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

195992	8.1	HIGH Network	google	android	In several functions of the V8 library, there is a possible use after free due to a race condition. This could lead to remote code execution in an unprivileged process with no additional execution pr…	CWE-362 Race Condition	CVE-2021-0514	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

195993	7.8	HIGH Local	google	android	In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execut…	CWE-276 Incorrect Default Permissions	CVE-2021-0486	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

195994	7.3	HIGH Local	google	android	In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. This could lead to local escalation of privilege with no additional execution privileges needed. Use…	CWE-276 Incorrect Default Permissions	CVE-2021-0441	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

195995	6.7	MEDIUM Local	intel	core_i7-6700k xeon_e3-1240_v5 core_i7 core_i5 xeon_e3 core_i9 xeon_d-1649n xeon_d-1633n xeon_d-1637 xeon_d-1627 xeon_d-1623n xeon_d-1622 xeon_d-1653n xeon_d-160…	Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.	CWE-1188 Insecure Default Initialization of Resource	CVE-2021-0144	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

195996	7.3	HIGH Local	google	android	In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…	CWE-74 Injection	CVE-2021-0553	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

195997	5.5	MEDIUM Local	google	android	In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-0552	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

195998	6.5	MEDIUM Network	google	android	In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …	CWE-74 Injection	CVE-2021-0551	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

195999	7.8	HIGH Local	google	android	In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-0550	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

196000	4.4	MEDIUM Local	google	android	In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-0549	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm