Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227781 5 警告 yannick tanguy - ELSEIF CMS における重要な情報を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5306 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227782 7.5 危険 yannick tanguy - ELSEIF CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5305 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227783 4.3 警告 yannick tanguy - ELSEIF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5304 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227784 4.3 警告 snewscms - SnewsCMS Rus の news_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5303 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227785 4.3 警告 splitside - Directory Image Gallery の photos.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5292 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227786 4.3 警告 zomplog - Zomplog におけるファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5278 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227787 6.8 警告 trionic - Trionic Cite CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5271 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227788 7.5 危険 phpfreelog - phpFreeLog の log.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5258 2012-12-20 18:33 2007-10-6 Show GitHub Exploit DB Packet Storm
227789 7.2 危険 VirusBlokAda Ltd. - VirusBlokAda Vba32 AntiVirus における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5254 2012-12-20 18:33 2007-10-6 Show GitHub Exploit DB Packet Storm
227790 4.3 警告 webhost automation - Helm におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5251 2012-12-20 18:33 2007-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211061 6.7 MEDIUM
Local 		google android In nfa_hciu_send_msg of nfa_hci_utils.cc, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege in the NFC server with System exec… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-0050 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211062 6.5 MEDIUM
Network 		google android In onReadBuffer() of StreamingSource.cpp, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0049 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211063 5.5 MEDIUM
Local 		google android In onTransact of IAudioFlinger.cpp, there is a possible stack information leak due to uninitialized data. This could lead to local information disclosure with no additional execution privileges neede… CWE-908
 Use of Uninitialized Resource 		CVE-2020-0048 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211064 3.3 LOW
Local 		google android In setMasterMute of AudioService.java, there is a missing permission check. This could lead to local silencing of audio with no additional execution privileges needed. User interaction is not needed … CWE-862
 Missing Authorization 		CVE-2020-0047 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211065 7.8 HIGH
Local 		google android In DrmPlugin::releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution… CWE-787
 Out-of-bounds Write 		CVE-2020-0046 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211066 6.4 MEDIUM
Local 		google android In StatsService::command of StatsService.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. Us… CWE-362
CWE-787
Race Condition
 Out-of-bounds Write 		CVE-2020-0045 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211067 7.5 HIGH
Network 		google android In setRequirePmfInternal of sta_network.cpp, there is a possible default value being improperly applied due to a logic error. This could lead to remote denial of service with no additional execution … NVD-CWE-noinfo
CVE-2020-0083 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211068 7.8 HIGH
Local 		google
huawei 		android
berkeley-l09_firmware
columbia-al10b_firmware
columbia-l29d_firmware
columbia-tl00b_firmware
columbia-tl00d_firmware
cornell-al00a_firmware
cornell-tl10b_firmware
dura… 		In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local e… CWE-787
 Out-of-bounds Write 		CVE-2020-0069 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211069 5.5 MEDIUM
Local 		google android In Pixel Recorder, there is a possible permissions bypass allowing arbitrary apps to record audio. This could lead to local information disclosure with no additional execution privileges needed. User… NVD-CWE-noinfo
CVE-2020-0061 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm
211070 4.4 MEDIUM
Local 		google android In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges need… CWE-89
SQL Injection 		CVE-2020-0060 2024-11-21 13:52 2020-03-11 Show GitHub Exploit DB Packet Storm