Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227301	7.5	危険	WordPress.org	-	WordPress 用の st_newsletter プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0683	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227302	7.5	危険	WordPress.org	-	WordPress 用の Wordspew プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0682	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227303	6.8	警告	phpshop	-	PHPShop の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0681	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227304	7.5	危険	the everything development company	-	The Everything Development System の The Everything Development Engine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0675	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227305	7.5	危険	tintin	-	TinTin++ および WinTin++ におけるホームディレクトリの一番上のレベルにある任意のファイルを切り捨てられる脆弱性	CWE-DesignError	CVE-2008-0673	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227306	5	警告	tintin	-	TinTin++ および WinTin++ の process_chat_input 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-0672	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227307	10	危険	tintin	-	TinTin++ および WinTin++ の add_line_buffer 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0671	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227308	4.3	警告	sift	-	Sift Unity の search.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0669	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227309	3.6	注意	website meta language	-	WML における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-0666	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

227310	3.6	注意	website meta language	-	WML の wml_backend/p1_ipp/ipp.src における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-0665	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211041	7.8	HIGH Local	google	android	In LLVM, there is a possible ineffective stack cookie placement due to stack frame double reservation. This could lead to local escalation of privilege with no additional execution privileges needed.…	NVD-CWE-noinfo	CVE-2020-0306	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211042	8.8	HIGH Network	google	android	In the Media extractor, there is a possible use after free due to improper locking. This could lead to remote code execution in the media extractor with no additional execution privileges needed. Use…	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-0303	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211043	6.5	MEDIUM Network	google	android	In libstagefright, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interacti…	CWE-20 Improper Input Validation	CVE-2020-0301	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211044	5.5	MEDIUM Local	google	android	In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction …	NVD-CWE-noinfo	CVE-2020-0297	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211045	5.5	MEDIUM Local	google	android	In ADB server and USB server, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interac…	NVD-CWE-noinfo	CVE-2020-0296	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211046	5.5	MEDIUM Local	google	android	In Java network APIs, there is possible access to sensitive network state due to a missing permission check. This could lead to local information disclosure with no additional execution privileges ne…	CWE-862 Missing Authorization	CVE-2020-0293	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211047	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0290	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211048	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0289	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211049	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across user boundaries with no additional execution privileges needed. User interaction is not …	CWE-862 Missing Authorization	CVE-2020-0288	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

211050	6.5	MEDIUM Network	google	android	In libmkvextractor, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction…	CWE-20 Improper Input Validation	CVE-2020-0287	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm