Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228431	7.5	危険	TYPO3 Association	-	TYPO3 用の M1 Intern エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4660	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228432	7.5	危険	TYPO3 Association	-	TYPO3 用の Mannschaftsliste エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4659	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228433	7.5	危険	TYPO3 Association	-	TYPO3 用の JobControl エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4658	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228434	7.5	危険	TYPO3 Association	-	TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4657	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228435	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4656	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228436	7.5	危険	TYPO3 Association	-	TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4655	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228437	9.3	危険	VideoLAN	-	VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4654	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228438	7.5	危険	XOOPS	-	XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4653	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228439	7.5	危険	sweetcms	-	sweetCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4647	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

228440	2.1	注意	ウェブセンス	-	Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-4646	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195521	5.5	MEDIUM Local	google	android	In getAlias of BluetoothDevice.java, there is a possible way to create misleading permission dialogs due to missing data filtering. This could lead to local information disclosure with User execution…	NVD-CWE-Other	CVE-2021-0931	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195522	8.8	HIGH Adjacent	google	android	In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execu…	CWE-787 Out-of-bounds Write	CVE-2021-0930	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195523	7.8	HIGH Local	google	android	In ion_dma_buf_end_cpu_access and related functions of ion.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional ex…	CWE-416 Use After Free	CVE-2021-0929	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195524	7.8	HIGH Local	google	android	In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege w…	CWE-20 CWE-755 Improper Input Validation Improper Handling of Exceptional Conditions	CVE-2021-0928	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195525	7.8	HIGH Local	google	android	In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional e…	CWE-281 Improper Preservation of Permissions	CVE-2021-0927	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195526	7.8	HIGH Local	google	android	In onCreate of NfcImportVCardActivity.java, there is a possible way to add a contact without user's consent due to a missing permission check. This could lead to local escalation of privilege with no…	CWE-862 Missing Authorization	CVE-2021-0926	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195527	7.5	HIGH Network	google	android	In rw_t4t_sm_detect_ndef of rw_t4t.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure due to a limited change in behavior ba…	CWE-125 Out-of-bounds Read	CVE-2021-0925	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195528	7.8	HIGH Local	google	android	In xhci_vendor_get_ops of xhci.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed…	CWE-125 Out-of-bounds Read	CVE-2021-0924	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195529	7.8	HIGH Local	google	android	In createOrUpdate of Permission.java, there is a possible way to gain internal permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execu…	CWE-862 Missing Authorization	CVE-2021-0923	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

195530	7.8	HIGH Local	google	android	In enforceCrossUserOrProfilePermission of PackageManagerService.java, there is a possible bypass of INTERACT_ACROSS_PROFILES permission due to a missing permission check. This could lead to local esc…	CWE-862 Missing Authorization	CVE-2021-0922	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm