Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226931 7.5 危険 portalxp - PortalXP Teacher Edition における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3148 2012-12-20 19:28 2009-09-10 Show GitHub Exploit DB Packet Storm
226932 5 警告 visavi - Wap-Motor の gallery/gallery.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3123 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
226933 7.5 危険 x-iweb.ru - PHP-Fusion 用の dsmsf モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3119 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
226934 7.5 危険 snowhall - Snow Hall Silurus System の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3117 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
226935 7.5 危険 Uiga - Uiga Church Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3116 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
226936 5 警告 SolarWinds - SolarWinds TFTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3115 2012-12-20 19:28 2009-09-9 Show GitHub Exploit DB Packet Storm
226937 5.8 警告 シマンテック - Symantec Altiris Deployment Solution のファイル転送機能における重要なファイルを読み取られる脆弱性 CWE-362
競合状態 		CVE-2009-3110 2012-12-20 19:28 2009-08-26 Show GitHub Exploit DB Packet Storm
226938 9.3 危険 シマンテック - Symantec Altiris Deployment Solution の AClient エージェントにおける認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3109 2012-12-20 19:28 2009-08-26 Show GitHub Exploit DB Packet Storm
226939 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の Aclient GUI における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3108 2012-12-20 19:28 2009-08-26 Show GitHub Exploit DB Packet Storm
226940 4.8 警告 シマンテック - Symantec Altiris Deployment Solution における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3107 2012-12-20 19:28 2009-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214221 5.5 MEDIUM
Local 		google android In decrypt and decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution priv… CWE-125
Out-of-bounds Read 		CVE-2020-0393 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214222 7.8 HIGH
Local 		google android In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code execution due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. U… CWE-415
 Double Free 		CVE-2020-0392 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214223 7.8 HIGH
Local 		google android In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. This could lead to local escalation of privilege with n… NVD-CWE-noinfo
CVE-2020-0391 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214224 5.5 MEDIUM
Local 		google android In the app zygote SE Policy, there is a possible permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for… CWE-276
Incorrect Default Permissions  		CVE-2020-0390 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214225 5.5 MEDIUM
Local 		google android In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privilege… NVD-CWE-noinfo
CVE-2020-0389 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214226 7.8 HIGH
Local 		google android In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privileg… CWE-276
Incorrect Default Permissions  		CVE-2020-0388 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214227 5.5 MEDIUM
Local 		google android In onCreate of RequestPermissionActivity.java, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege allowing an attacker to set Blu… CWE-1021
CWE-1188
 Improper Restriction of Rendered UI Layers or Frames
 Insecure Default Initialization of Resource 		CVE-2020-0386 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214228 5.5 MEDIUM
Local 		google android In Parse_insh of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execu… CWE-787
 Out-of-bounds Write 		CVE-2020-0385 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214229 5.5 MEDIUM
Local 		google android In Parse_art of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execut… CWE-787
 Out-of-bounds Write 		CVE-2020-0384 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
214230 5.5 MEDIUM
Local 		google android In Parse_ins of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure in the media extractor process with no additional e… CWE-787
 Out-of-bounds Write 		CVE-2020-0383 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm