Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227941	7.5	危険	smartisoft	-	phpBazar の classified.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4221	2012-12-20 19:28	2009-12-7	Show	GitHub Exploit DB Packet Storm

227942	7.5	危険	raphael mazoyer	-	PointComma の includes/classes/pctemplate.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4220	2012-12-20 19:28	2009-12-7	Show	GitHub Exploit DB Packet Storm

227943	7.5	危険	ringsworld	-	Flashlight Free Edition の admin.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4205	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

227944	7.5	危険	ringsworld	-	Flashlight Free Edition の read.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4204	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

227945	7.5	危険	vollmar	-	Joomla! 用の Seminar コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4200	2012-12-20 19:28	2009-12-4	Show	GitHub Exploit DB Packet Storm

227946	7.2	危険	サン・マイクロシステムズ	-	x86-64 platform 上で稼動する Sun Solaris などのカーネルにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-4191	2012-12-20 19:28	2009-12-3	Show	GitHub Exploit DB Packet Storm

227947	7.8	危険	サン・マイクロシステムズ	-	Sun OpenSolaris のカーネルにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4190	2012-12-20 19:28	2009-12-3	Show	GitHub Exploit DB Packet Storm

227948	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Portal Server の Gateway コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4187	2012-12-20 19:28	2009-12-1	Show	GitHub Exploit DB Packet Storm

227949	4.3	警告	Yahoo!	-	Yahoo! Messenger 用の YahooBridgeLib.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4171	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

227950	5	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4170	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221321	4.2	MEDIUM Local	mongodb	mongodb	Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the Mo…	CWE-20 Improper Input Validation	CVE-2019-2389	2024-11-21 13:40	2019-08-31	Show	GitHub Exploit DB Packet Storm

221322	5.5	MEDIUM Local	google	android	In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User ex…	CWE-862 Missing Authorization	CVE-2019-2137	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221323	5.5	MEDIUM Local	google	android	In Status::readFromParcel of Status.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileg…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2019-2136	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221324	5.5	MEDIUM Local	google	android	In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privi…	CWE-125 Out-of-bounds Read	CVE-2019-2135	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221325	7.8	HIGH Local	google	android	In phFriNfc_ExtnsTransceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execut…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2019-2134	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221326	7.8	HIGH Local	google	android	In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution pri…	CWE-787 Out-of-bounds Write	CVE-2019-2133	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221327	7.8	HIGH Local	google	android	It is possible to overlay the VPN dialog by a malicious application. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for ex…	NVD-CWE-noinfo	CVE-2019-2132	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221328	7.8	HIGH Local	google	android	An application with overlay permission can display overlays on top of settings UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is…	CWE-1188 Insecure Default Initialization of Resource	CVE-2019-2131	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221329	9.8	CRITICAL Network	google	android	In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. This could lead to escalation of privilege from a malicious proxy configuration with no…	CWE-843 Type Confusion	CVE-2019-2130	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm

221330	6.5	MEDIUM Network	google	android	In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional exe…	CWE-125 Out-of-bounds Read	CVE-2019-2129	2024-11-21 13:40	2019-08-21	Show	GitHub Exploit DB Packet Storm