Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228561 4.3 警告 Scriptsez.net - ScriptsEz Ez Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4317 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
228562 4.3 警告 zeeways - ZeeLyrics の searchresults_main.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4316 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
228563 4.4 警告 サン・マイクロシステムズ - Solaris 上で稼動する Sun Ray Server Software におけるセッションへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4314 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
228564 7.8 危険 サン・マイクロシステムズ - Sun Ray Server Software における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-4295 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
228565 10 危険 サン・マイクロシステムズ - Sun Ray Server Software の Authentication Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4294 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
228566 4.3 警告 YABSoft - YABSoft AIH Script の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4266 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
228567 9.3 危険 pointdev - Ideal Administration 2009 におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4265 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
228568 7.5 危険 ptcpay - PTCPay GeN3 forum の main_forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4263 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
228569 7.5 危険 Ganeti project - Ganeti の iallocator フレームワークにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4261 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
228570 7.5 危険 truesolution - AlefMentor の cource.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4256 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194641 7.8 HIGH
Local 		samsung internet Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action. NVD-CWE-Other
CVE-2021-25400 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194642 7.1 HIGH
Local 		samsung smart_manager Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege. NVD-CWE-noinfo
CVE-2021-25399 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194643 3.3 LOW
Local 		samsung bixby_voice Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts. NVD-CWE-noinfo
CVE-2021-25398 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194644 5.5 MEDIUM
Local 		google android An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications. NVD-CWE-Other
CVE-2021-25397 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194645 6.7 MEDIUM
Local 		google android An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution. CWE-787
 Out-of-bounds Write 		CVE-2021-25396 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194646 6.4 MEDIUM
Local 		google android A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised. CWE-362
Race Condition 		CVE-2021-25395 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194647 6.4 MEDIUM
Local 		google android A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised. CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2021-25394 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194648 5.5 MEDIUM
Local 		google android Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid data. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-25393 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194649 5.5 MEDIUM
Local 		google android Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the path. CWE-326
Inadequate Encryption Strength 		CVE-2021-25392 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm
194650 4.0 MEDIUM
Local 		google android Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action. NVD-CWE-Other
CVE-2021-25391 2024-11-21 14:54 2021-06-12 Show GitHub Exploit DB Packet Storm