Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227721 8.5 危険 php-stats - Php-Stats における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5453 2012-12-20 18:33 2007-10-14 Show GitHub Exploit DB Packet Storm
227722 10 危険 php-stats - Php-Stats の php-stats.recjs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5452 2012-12-20 18:33 2007-10-14 Show GitHub Exploit DB Packet Storm
227723 7.5 危険 softbiz - Softbiz Recipes Portal Script の searchresult.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5449 2012-12-20 18:33 2007-10-14 Show GitHub Exploit DB Packet Storm
227724 1.9 注意 VMware - VMware Workstation などの Reconfig.DLL における vmount2.exe がサービス運用妨害 (DoS) 状態となる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5438 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227725 4.3 警告 pro.setun - PRO-search におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5434 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227726 4.3 警告 siteup - Site-Up の index.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5433 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227727 7.5 危険 scottmanktelow - Stride における管理者権限を取得される脆脆弱性 CWE-200
情報漏えい 		CVE-2007-5432 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227728 7.5 危険 scottmanktelow - Stride における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5430 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227729 4.3 警告 Umisoft - UMI CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5428 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227730 7.5 危険 Tiki Software Community Association - TikiWiki の tiki-graph_formula.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5423 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211061 6.7 MEDIUM
Local 		google android In nfa_hciu_send_msg of nfa_hci_utils.cc, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege in the NFC server with System exec… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-0050 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211062 6.5 MEDIUM
Network 		google android In onReadBuffer() of StreamingSource.cpp, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0049 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211063 5.5 MEDIUM
Local 		google android In onTransact of IAudioFlinger.cpp, there is a possible stack information leak due to uninitialized data. This could lead to local information disclosure with no additional execution privileges neede… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0048 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211064 3.3 LOW
Local 		google android In setMasterMute of AudioService.java, there is a missing permission check. This could lead to local silencing of audio with no additional execution privileges needed. User interaction is not needed … CWE-862
 Missing Authorization 		CVE-2020-0047 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211065 7.8 HIGH
Local 		google android In DrmPlugin::releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution… CWE-787
 Out-of-bounds Write 		CVE-2020-0046 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211066 6.4 MEDIUM
Local 		google android In StatsService::command of StatsService.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. Us… CWE-362
CWE-787
Race Condition
 Out-of-bounds Write 		CVE-2020-0045 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211067 7.5 HIGH
Network 		google android In setRequirePmfInternal of sta_network.cpp, there is a possible default value being improperly applied due to a logic error. This could lead to remote denial of service with no additional execution … NVD-CWE-noinfo
CVE-2020-0083 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211068 7.8 HIGH
Local 		google
huawei 		android
berkeley-l09_firmware
columbia-al10b_firmware
columbia-l29d_firmware
columbia-tl00b_firmware
columbia-tl00d_firmware
cornell-al00a_firmware
cornell-tl10b_firmware
dura… 		In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local e… CWE-787
 Out-of-bounds Write 		CVE-2020-0069 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211069 5.5 MEDIUM
Local 		google android In Pixel Recorder, there is a possible permissions bypass allowing arbitrary apps to record audio. This could lead to local information disclosure with no additional execution privileges needed. User… NVD-CWE-noinfo
CVE-2020-0061 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211070 4.4 MEDIUM
Local 		google android In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges need… CWE-89
SQL Injection 		CVE-2020-0060 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm