Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226971	6.8	警告	sazcart	-	SazCart における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2224	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

226972	7.5	危険	scorpnews	-	Thomas Gossmann ScorpNews の example.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2193	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

226973	6.8	警告	postnuke software foundation	-	PostNuke 用の pnEncyclopedia モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2191	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

226974	6.8	警告	romedchim international srl	-	Online Rent の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2190	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

226975	4.3	警告	Toocharger	-	SMartBlog の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2185	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

226976	7.5	危険	Toocharger	-	SMartBlog における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2184	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

226977	7.5	危険	Toocharger	-	SMartBlog の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2183	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

226978	4.3	警告	TYPO3 Association	-	TYPO3 用の powermail エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2182	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

226979	4.3	警告	zomp	-	Zomplog の admin/category.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2176	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

226980	6.5	警告	shelter manager	-	Robin Rawson-Tetley ASM における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2174	2012-12-20 18:52	2008-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211111	7.8	HIGH Local	google	android	In setInstallerPackageName of PackageManagerService.java, there is a missing permission check. This could lead to local escalation of privilege and granting spurious permissions with no additional ex…	CWE-862 Missing Authorization	CVE-2020-0401	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211112	5.5	MEDIUM Local	google	android	In showLimitedSimFunctionWarningNotification of NotificationMgr.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User e…	NVD-CWE-noinfo	CVE-2020-0399	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211113	5.5	MEDIUM Local	google	android	In getNotificationBuilder of CarrierServiceStateTracker.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution…	NVD-CWE-noinfo	CVE-2020-0397	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211114	5.5	MEDIUM Local	google	android	In various places in Telephony, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User inter…	NVD-CWE-noinfo	CVE-2020-0396	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211115	5.5	MEDIUM Local	google	android	In showNotification of EmergencyCallbackModeService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution pri…	NVD-CWE-noinfo	CVE-2020-0395	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211116	7.8	HIGH Local	google	android	In onCreate of BluetoothPairingDialog.java, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege and untrusted devices accessing co…	CWE-1021 CWE-1188 Improper Restriction of Rendered UI Layers or Frames Insecure Default Initialization of Resource	CVE-2020-0394	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211117	5.5	MEDIUM Local	google	android	In decrypt and decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution priv…	CWE-125 Out-of-bounds Read	CVE-2020-0393	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211118	7.8	HIGH Local	google	android	In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code execution due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. U…	CWE-415 Double Free	CVE-2020-0392	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211119	7.8	HIGH Local	google	android	In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. This could lead to local escalation of privilege with n…	NVD-CWE-noinfo	CVE-2020-0391	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211120	5.5	MEDIUM Local	google	android	In the app zygote SE Policy, there is a possible permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for…	CWE-276 Incorrect Default Permissions	CVE-2020-0390	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm