Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227821 7.5 危険 xigla - Xigla Software Absolute News Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6856 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
227822 7.5 危険 xigla - Xigla Software Absolute News Feed における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6855 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
227823 7.5 危険 xigla - Xigla Software Absolute FAQ Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6854 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
227824 4.3 警告 PHP-Fusion - PHP-Fusion の messages.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6850 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
227825 6.8 警告 w2b - phpGreetCards の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6849 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
227826 4.3 警告 w2b - phpGreetCards の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6848 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
227827 4.3 警告 PreProject.com - Pre ASP Job Board の Employee/emp_login.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6847 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
227828 6.8 警告 Pluck CMS - Pluck の data/modules/blog/module_pages_site.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6842 2012-12-20 19:10 2009-07-2 Show GitHub Exploit DB Packet Storm
227829 4.3 警告 tgs-cms - TGS Content Management におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6839 2012-12-20 19:10 2009-06-27 Show GitHub Exploit DB Packet Storm
227830 4.3 警告 Zoph - Zoph の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6838 2012-12-20 19:10 2009-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195661 7.8 HIGH
Local 		nvidia virtual_gpu NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) that could allow an attacker to cause stack-based buffer overflow and put a customized ROP gadget on the stack. … CWE-787
 Out-of-bounds Write 		CVE-2021-1099 2024-11-21 14:43 2021-07-21 Show GitHub Exploit DB Packet Storm
195662 7.8 HIGH
Local 		nvidia virtual_gpu NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it doesn't release some resources during driver unload requests from guests. This flaw allows a malicious… CWE-404
 Improper Resource Shutdown or Release 		CVE-2021-1098 2024-11-21 14:43 2021-07-21 Show GitHub Exploit DB Packet Storm
195663 7.8 HIGH
Local 		nvidia virtual_gpu NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it improperly validates the length field in a request from a guest. This flaw allows a malicious guest to… CWE-20
 Improper Input Validation  		CVE-2021-1097 2024-11-21 14:43 2021-07-21 Show GitHub Exploit DB Packet Storm
195664 5.5 MEDIUM
Local 		google android In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing permission check. This could lead to local information disclosure from locked profiles with no additional… CWE-862
 Missing Authorization 		CVE-2021-0654 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
195665 5.5 MEDIUM
Local 		google android In generateFileInfo of BluetoothOppSendFileInfo.java, there is a possible way to share private files over Bluetooth due to a confused deputy. This could lead to local information disclosure with no a… NVD-CWE-Other
CVE-2021-0604 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
195666 7.8 HIGH
Local 		google android In onCreate of ContactSelectionActivity.java, there is a possible way to get access to contacts without permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0603 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
195667 7.8 HIGH
Local 		google android In onCreateOptionsMenu of WifiNetworkDetailsFragment.java, there is a possible way for guest users to view and modify Wi-Fi settings for all configured APs due to a permissions bypass. This could lea… CWE-200
Information Exposure 		CVE-2021-0602 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
195668 5.5 MEDIUM
Local 		google android In encodeFrames of avc_enc_fuzzer.cpp, there is a possible out of bounds write due to a double free. This could lead to local information disclosure with no additional execution privileges needed. Us… CWE-787
CWE-415
 Out-of-bounds Write
 Double Free 		CVE-2021-0601 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
195669 7.4 HIGH
Network 		cisco dna_center A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensiti… CWE-295
Improper Certificate Validation  		CVE-2021-1134 2024-11-21 14:43 2021-06-29 Show GitHub Exploit DB Packet Storm
195670 8.3 HIGH
Network 		nvidia geforce_experience NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a browser, while, at the same time, any other web page is loaded… NVD-CWE-noinfo
CVE-2021-1073 2024-11-21 14:43 2021-06-26 Show GitHub Exploit DB Packet Storm