Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226911	10	危険	plusphp	-	plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2480	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226912	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin Gold の faq.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2460	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226913	7.5	危険	phpclassifiedsscript	-	PHP Classifieds Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2453	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226914	4.3	警告	TYPO3 Association	-	TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2452	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226915	7.5	危険	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2451	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226916	4.3	警告	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2450	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226917	7.5	危険	wgcc	-	WGCC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2446	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226918	4.3	警告	wgcc	-	WGCC の profile.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2445	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226919	7.5	危険	therealestatescript	-	The Real Estate Script の dpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2443	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

226920	5	警告	トレンドマイクロ	-	Trend Micro OfficeScan および Worry-Free Business Security クライアントの OfficeScanNT Listener サービスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2439	2012-12-20 18:52	2008-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211121	5.5	MEDIUM Local	google	android	In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. Us…	CWE-125 Out-of-bounds Read	CVE-2020-0424	2024-11-21 13:53	2020-11-10	Show	GitHub Exploit DB Packet Storm

211122	7.8	HIGH Local	google	android	In getPermissionInfosForGroup of Utils.java, there is a logic error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploit…	NVD-CWE-noinfo	CVE-2020-0418	2024-11-21 13:53	2020-11-10	Show	GitHub Exploit DB Packet Storm

211123	7.8	HIGH Local	google	android	In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User int…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-0409	2024-11-21 13:53	2020-11-10	Show	GitHub Exploit DB Packet Storm

211124	7.8	HIGH Local	google debian	android debian_linux	In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges …	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-0423	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211125	3.3	LOW Local	google	android	In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure …	NVD-CWE-noinfo	CVE-2020-0422	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211126	7.8	HIGH Local	google	android	In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges need…	CWE-787 CWE-755 Out-of-bounds Write Improper Handling of Exceptional Conditions	CVE-2020-0421	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211127	7.8	HIGH Local	google	android	In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check. This could lead to local escalation of privilege with no additional execution pri…	CWE-787 CWE-667 CWE-862 Out-of-bounds Write Improper Locking Missing Authorization	CVE-2020-0420	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211128	5.5	MEDIUM Local	google	android	In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information dis…	CWE-862 Missing Authorization	CVE-2020-0419	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211129	8.8	HIGH Network	google	android	In multiple settings screens, there are possible tapjacking attacks due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution pri…	CWE-1188 Insecure Default Initialization of Resource	CVE-2020-0416	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm

211130	5.5	MEDIUM Local	google	android	In various locations in SystemUI, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of contact data with User execution privileges …	NVD-CWE-noinfo	CVE-2020-0415	2024-11-21 13:53	2020-10-14	Show	GitHub Exploit DB Packet Storm