Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226991 6.8 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおける任意のユーザアカウントへのアクセス権を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2134 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
226992 4.3 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2133 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
226993 7.5 危険 systementor - Systementor PostcardMentor の step1.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2132 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
226994 4.3 警告 tux cms - Tux CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2126 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
226995 4.3 警告 SAP - SAP ITS の WGate におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2123 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
226996 7.5 危険 project alumni - Project Alumni の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2118 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
226997 4.3 警告 project alumni - Project Alumni の pages/news.page.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2117 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
226998 4.4 警告 Scriptsez.net - ScriptsEZ.net Power Editor の editor.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2116 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
226999 4.3 警告 Scriptsez.net - ScriptsEZ.net Power Editor の editor.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2115 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
227000 7.5 危険 PreProject.com - Pre Shopping Mall の emall/search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2114 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211121 5.5 MEDIUM
Local 		google android In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privilege… NVD-CWE-noinfo
CVE-2020-0389 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211122 7.8 HIGH
Local 		google android In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privileg… CWE-276
Incorrect Default Permissions  		CVE-2020-0388 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211123 5.5 MEDIUM
Local 		google android In onCreate of RequestPermissionActivity.java, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege allowing an attacker to set Blu… CWE-1021
CWE-1188
 Improper Restriction of Rendered UI Layers or Frames
 Insecure Default Initialization of Resource 		CVE-2020-0386 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211124 5.5 MEDIUM
Local 		google android In Parse_insh of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execu… CWE-787
 Out-of-bounds Write 		CVE-2020-0385 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211125 5.5 MEDIUM
Local 		google android In Parse_art of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execut… CWE-787
 Out-of-bounds Write 		CVE-2020-0384 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211126 5.5 MEDIUM
Local 		google android In Parse_ins of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure in the media extractor process with no additional e… CWE-787
 Out-of-bounds Write 		CVE-2020-0383 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211127 2.3 LOW
Local 		google android In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with System execution privile… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-0382 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211128 7.5 HIGH
Network 		google android In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure in a highly constrained process with no additional ex… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-0381 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211129 9.8 CRITICAL
Network 		google android In allocExcessBits of bitalloc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. Us… CWE-787
 Out-of-bounds Write 		CVE-2020-0380 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211130 5.7 MEDIUM
Adjacent 		google android In the Bluetooth service, there is a possible spoofing attack due to a logic error. This could lead to remote information disclosure of sensitive information with no additional execution privileges n… NVD-CWE-noinfo
CVE-2020-0379 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm