Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227671	4.3	警告	Zenphoto	-	Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4562	2012-12-20 19:28	2010-01-4	Show	GitHub Exploit DB Packet Storm

227672	6.8	警告	worms-league	-	WebLeague の Admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4561	2012-12-20 19:28	2010-01-4	Show	GitHub Exploit DB Packet Storm

227673	7.5	危険	worms-league	-	WebLeague の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4560	2012-12-20 19:28	2010-01-4	Show	GitHub Exploit DB Packet Storm

227674	7.2	危険	クイックヒール・テクノロジーズ・ジャパン株式会社	-	Quick Heal AntiVirus Plus 2009 などにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4556	2012-12-20 19:28	2010-01-4	Show	GitHub Exploit DB Packet Storm

227675	5	警告	rjvmedia	-	iRehearse におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4553	2012-12-20 19:28	2010-01-4	Show	GitHub Exploit DB Packet Storm

227676	7.5	危険	Secure Ideas	-	BASE の base_local_rules.php における任意のフォーカルファイルをインクルードされる脆弱性	CWE-noinfo 情報不足	CVE-2009-4592	2012-12-20 19:28	2009-10-4	Show	GitHub Exploit DB Packet Storm

227677	7.5	危険	Secure Ideas	-	BASE における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4591	2012-12-20 19:28	2009-10-4	Show	GitHub Exploit DB Packet Storm

227678	4.3	警告	Secure Ideas	-	BASE の base_local_rules.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4590	2012-12-20 19:28	2009-10-4	Show	GitHub Exploit DB Packet Storm

227679	5	警告	unleashedmind	-	Drupal 用の Image Assist モジュールにおける任意のノードタイトルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4558	2012-12-20 19:28	2009-07-15	Show	GitHub Exploit DB Packet Storm

227680	2.1	注意	unleashedmind	-	Drupal 用の Image Assist モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4557	2012-12-20 19:28	2009-07-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221421	8.8	HIGH Network	google	android	In huff_dec_1D of nlc_dec.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User int…	CWE-787 Out-of-bounds Write	CVE-2019-2093	2024-11-21 13:40	2019-06-8	Show	GitHub Exploit DB Packet Storm

221422	7.8	HIGH Local	google	android	In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, wi…	CWE-862 Missing Authorization	CVE-2019-2092	2024-11-21 13:40	2019-06-8	Show	GitHub Exploit DB Packet Storm

221423	7.8	HIGH Local	google	android	In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privil…	CWE-862 Missing Authorization	CVE-2019-2091	2024-11-21 13:40	2019-06-8	Show	GitHub Exploit DB Packet Storm

221424	7.8	HIGH Local	google	android	In isPackageDeviceAdminOnAnyUser of PackageManagerService.java, there is a possible permissions bypass due to a missing permissions check. This could lead to local escalation of privilege, with no ad…	CWE-862 Missing Authorization	CVE-2019-2090	2024-11-21 13:40	2019-06-8	Show	GitHub Exploit DB Packet Storm

221425	7.8	HIGH Local	qualcomm	qcs605_firmware sd_675_firmware sd_712_firmware sd_710_firmware sd_670_firmware sd_835_firmware sd_845_firmware sd_850_firmware sd_855_firmware sd_8cx_firmware sm7150_fi…	Kernel can write to arbitrary memory address passed by user while freeing/stopping a thread in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCS605, SD …	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2019-2250	2024-11-21 13:40	2019-05-25	Show	GitHub Exploit DB Packet Storm

221426	7.8	HIGH Local	qualcomm	mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware …	Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-2248	2024-11-21 13:40	2019-05-25	Show	GitHub Exploit DB Packet Storm

221427	7.8	HIGH Local	qualcomm	mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware sd_210_firmware sd_212_firmware	Possibility of double free issue while running multiple instances of smp2p test because of proper protection is missing while using global variable in Snapdragon Auto, Snapdragon Compute, Snapdragon …	CWE-415 Double Free	CVE-2019-2247	2024-11-21 13:40	2019-05-25	Show	GitHub Exploit DB Packet Storm

221428	9.8	CRITICAL Network	qualcomm	mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware qm215_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd…	Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute,…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2019-2245	2024-11-21 13:40	2019-05-25	Show	GitHub Exploit DB Packet Storm

221429	9.8	CRITICAL Network	qualcomm	mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware qm215_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd…	Possible integer underflow can happen when calculating length of elementary stream info from invalid section length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Comput…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2019-2244	2024-11-21 13:40	2019-05-25	Show	GitHub Exploit DB Packet Storm

221430	7.8	HIGH Local	google canonical	android ubuntu_linux	In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege wi…	NVD-CWE-noinfo	CVE-2019-2054	2024-11-21 13:40	2019-05-9	Show	GitHub Exploit DB Packet Storm