Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227471 4.3 警告 phpcredo - PHCDownload の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6669 2012-12-20 18:34 2008-01-7 Show GitHub Exploit DB Packet Storm
227472 7.5 危険 Zenphoto - Zenphoto の rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6666 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227473 7.5 危険 webportal - WebPortal CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6664 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227474 7.5 危険 pragmaticutopia - Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6663 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227475 7.5 危険 xcms - XCMS の cpie.php における静的コードを直接挿入する攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6652 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227476 5 警告 sanybee gallery - SanyBee Gallery の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6648 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227477 7.5 危険 W-Agora - w-Agora の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6647 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
227478 6.8 警告 xml2owl - xml2owl の showCode.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6632 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
227479 6.8 警告 pnphpbb - PNphpBB2 の printview.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6624 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
227480 5 警告 zeuscms - ZeusCMS における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6623 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210991 5.5 MEDIUM
Local 		google android In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privilege… NVD-CWE-noinfo
CVE-2020-0389 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210992 7.8 HIGH
Local 		google android In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privileg… CWE-276
Incorrect Default Permissions  		CVE-2020-0388 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210993 5.5 MEDIUM
Local 		google android In onCreate of RequestPermissionActivity.java, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege allowing an attacker to set Blu… CWE-1021
CWE-1188
 Improper Restriction of Rendered UI Layers or Frames
 Insecure Default Initialization of Resource 		CVE-2020-0386 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210994 5.5 MEDIUM
Local 		google android In Parse_insh of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execu… CWE-787
 Out-of-bounds Write 		CVE-2020-0385 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210995 5.5 MEDIUM
Local 		google android In Parse_art of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execut… CWE-787
 Out-of-bounds Write 		CVE-2020-0384 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210996 5.5 MEDIUM
Local 		google android In Parse_ins of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure in the media extractor process with no additional e… CWE-787
 Out-of-bounds Write 		CVE-2020-0383 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210997 2.3 LOW
Local 		google android In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with System execution privile… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-0382 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210998 7.5 HIGH
Network 		google android In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure in a highly constrained process with no additional ex… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-0381 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
210999 9.8 CRITICAL
Network 		google android In allocExcessBits of bitalloc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. Us… CWE-787
 Out-of-bounds Write 		CVE-2020-0380 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm
211000 5.7 MEDIUM
Adjacent 		google android In the Bluetooth service, there is a possible spoofing attack due to a logic error. This could lead to remote information disclosure of sensitive information with no additional execution privileges n… NVD-CWE-noinfo
CVE-2020-0379 2024-11-21 13:53 2020-09-18 Show GitHub Exploit DB Packet Storm