Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228331 10 危険 phpCollab - phpCollab の general/login.php における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-4304 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228332 6.8 警告 phpCollab - phpCollab における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4303 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228333 6.5 警告 rianxosencabos cms - Rianxosencabos CMS の Admin Control Panel におけるユーザの権限を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4245 2012-12-20 18:52 2008-09-25 Show GitHub Exploit DB Packet Storm
228334 7.5 危険 webcms - webCMS Portal Edition の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4185 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228335 4.3 警告 webcms - webCMS Portal Edition の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4184 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228336 7.5 危険 PreProject.com - Pre Real Estate Listings の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4177 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228337 7.5 危険 proarcadescript - ProArcadeScript における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4173 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228338 7.5 危険 rfaah - Cars & Vehicle の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4172 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228339 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228340 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195511 7.1 HIGH
Local 		google android In onCreate of KeyChainActivity.java, there is a possible way to use an app certificate stored in keychain due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0963 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195512 4.4 MEDIUM
Local 		google android In quota_proc_write of xt_quota2.c, there is a possible way to read kernel memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. U… CWE-909
 Missing Initialization of Resource 		CVE-2021-0961 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195513 4.4 MEDIUM
Local 		google android In update of km_compat.cpp, there is a possible loss of potentially sensitive data due to a logic error in the code. This could lead to local denial of service with User execution privileges needed. … NVD-CWE-Other
CVE-2021-0958 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195514 9.8 CRITICAL
Network 		google android In NfcTag::discoverTechnologies (activation) of NfcTag.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additio… CWE-787
 Out-of-bounds Write 		CVE-2021-0956 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195515 7.0 HIGH
Local 		google android In pf_write_buf of FuseDaemon.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User i… CWE-362
Race Condition 		CVE-2021-0955 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195516 7.3 HIGH
Local 		google android In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User inter… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0954 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195517 7.8 HIGH
Local 		google android In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. This could lead to local … CWE-281
 Improper Preservation of Permissions 		CVE-2021-0953 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195518 5.0 MEDIUM
Local 		google android In doCropPhoto of PhotoSelectionHandler.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure of user's contacts with no additional exe… NVD-CWE-Other
CVE-2021-0952 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195519 8.0 HIGH
Adjacent 		google android In onCreate of CompanionDeviceActivity.java or DeviceChooserActivity.java, there is a possible way for HTML tags to interfere with a consent dialog due to improper input validation. This could lead t… CWE-20
CWE-116
 Improper Input Validation 
 Improper Encoding or Escaping of Output 		CVE-2021-0933 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195520 7.8 HIGH
Local 		google android In showNotification of NavigationModeController.java, there is a possible confused deputy due to an unsafe PendingIntent. This could lead to local escalation of privilege that allows actions performe… NVD-CWE-Other
CVE-2021-0932 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm