Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227821	6.8	警告	sitex	-	SiteX CMS の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5141	2012-12-20 18:33	2007-09-28	Show	GitHub Exploit DB Packet Storm

227822	4.3	警告	simpgb	-	SimpGB におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5127	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

227823	10	危険	シマンテック	-	Windows Servers 用の Symantec Veritas Backup Exec のクライアントにおける脆弱性	CWE-noinfo 情報不足	CVE-2007-5126	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

227824	7.5	危険	solidweb	-	Novus の notas.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5123	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

227825	7.5	危険	SoftbizScripts	-	SoftBiz Classifieds PLUS の store_info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5122	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

227826	5	警告	roi revolution	-	Google Urchin の report.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5113	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

227827	4.3	警告	roi revolution	-	Google Urchin の session.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5112	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

227828	4.3	警告	WordPress.org	-	WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5106	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

227829	4.3	警告	WordPress.org	-	WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5105	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

227830	6.8	警告	wordsmith	-	Wordsmith の config.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5103	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211061	6.7	MEDIUM Local	google	android	In nfa_hciu_send_msg of nfa_hci_utils.cc, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege in the NFC server with System exec…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-0050	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211062	6.5	MEDIUM Network	google	android	In onReadBuffer() of StreamingSource.cpp, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege…	CWE-908 Use of Uninitialized Resource	CVE-2020-0049	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211063	5.5	MEDIUM Local	google	android	In onTransact of IAudioFlinger.cpp, there is a possible stack information leak due to uninitialized data. This could lead to local information disclosure with no additional execution privileges neede…	CWE-908 Use of Uninitialized Resource	CVE-2020-0048	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211064	3.3	LOW Local	google	android	In setMasterMute of AudioService.java, there is a missing permission check. This could lead to local silencing of audio with no additional execution privileges needed. User interaction is not needed …	CWE-862 Missing Authorization	CVE-2020-0047	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211065	7.8	HIGH Local	google	android	In DrmPlugin::releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution…	CWE-787 Out-of-bounds Write	CVE-2020-0046	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211066	6.4	MEDIUM Local	google	android	In StatsService::command of StatsService.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. Us…	CWE-362 CWE-787 Race Condition Out-of-bounds Write	CVE-2020-0045	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211067	7.5	HIGH Network	google	android	In setRequirePmfInternal of sta_network.cpp, there is a possible default value being improperly applied due to a logic error. This could lead to remote denial of service with no additional execution …	NVD-CWE-noinfo	CVE-2020-0083	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211068	7.8	HIGH Local	google huawei	android berkeley-l09_firmware columbia-al10b_firmware columbia-l29d_firmware columbia-tl00b_firmware columbia-tl00d_firmware cornell-al00a_firmware cornell-tl10b_firmware dura…	In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local e…	CWE-787 Out-of-bounds Write	CVE-2020-0069	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211069	5.5	MEDIUM Local	google	android	In Pixel Recorder, there is a possible permissions bypass allowing arbitrary apps to record audio. This could lead to local information disclosure with no additional execution privileges needed. User…	NVD-CWE-noinfo	CVE-2020-0061	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm

211070	4.4	MEDIUM Local	google	android	In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges need…	CWE-89 SQL Injection	CVE-2020-0060	2024-11-21 13:52	2020-03-11	Show	GitHub Exploit DB Packet Storm