Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227871	4.3	警告	php-stats	-	PHP-Stats の tracking.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4917	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227872	9.3	危険	WinSCP	-	WinSCP におけるリモートサーバで任意のファイル転送を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4909	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227873	7.5	危険	Qualiteam Software Limited	-	X-Cart における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4907	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227874	4.3	警告	リアルネットワークス	-	RealNetworks RealPlayer および Helix Player におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2007-4904	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227875	7.5	危険	ultrashareware	-	Ultra Crypto コンポーネントの CryptoX.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4903	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227876	6.4	警告	ultrashareware	-	Ultra Crypto コンポーネントの CryptoX.dll における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4902	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

227877	4.3	警告	RSAセキュリティ	-	RSA EnVision のログオンページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4900	2012-12-20 18:33	2007-09-14	Show	GitHub Exploit DB Packet Storm

227878	2.1	注意	XWiki	-	XWiki Enterprise の Multiwiki プラグインにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-4898	2012-12-20 18:33	2007-09-14	Show	GitHub Exploit DB Packet Storm

227879	4.3	警告	toms-seiten.at	-	Toms Gaestebuch の admin/header.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4896	2012-12-20 18:33	2007-09-14	Show	GitHub Exploit DB Packet Storm

227880	5	警告	sisfo kampus	-	Semarang 3 の dwoprn.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4895	2012-12-20 18:33	2007-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210951	7.8	HIGH Local	google	android	In LLVM, there is a possible ineffective stack cookie placement due to stack frame double reservation. This could lead to local escalation of privilege with no additional execution privileges needed.…	NVD-CWE-noinfo	CVE-2020-0306	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210952	8.8	HIGH Network	google	android	In the Media extractor, there is a possible use after free due to improper locking. This could lead to remote code execution in the media extractor with no additional execution privileges needed. Use…	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-0303	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210953	6.5	MEDIUM Network	google	android	In libstagefright, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interacti…	CWE-20 Improper Input Validation	CVE-2020-0301	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210954	5.5	MEDIUM Local	google	android	In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction …	NVD-CWE-noinfo	CVE-2020-0297	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210955	5.5	MEDIUM Local	google	android	In ADB server and USB server, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interac…	NVD-CWE-noinfo	CVE-2020-0296	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210956	5.5	MEDIUM Local	google	android	In Java network APIs, there is possible access to sensitive network state due to a missing permission check. This could lead to local information disclosure with no additional execution privileges ne…	CWE-862 Missing Authorization	CVE-2020-0293	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210957	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0290	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210958	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0289	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210959	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across user boundaries with no additional execution privileges needed. User interaction is not …	CWE-862 Missing Authorization	CVE-2020-0288	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

210960	6.5	MEDIUM Network	google	android	In libmkvextractor, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction…	CWE-20 Improper Input Validation	CVE-2020-0287	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm