Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228591	5	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4170	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228592	4.3	警告	roytanck	-	WordPress 用の WP-Cumulus プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4169	2012-12-20 19:28	2009-09-27	Show	GitHub Exploit DB Packet Storm

228593	4.3	警告	roytanck	-	WordPress、Joomulus モジュール、および Joomla! 用の WP-Cumulus モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4168	2012-12-20 19:28	2009-11-15	Show	GitHub Exploit DB Packet Storm

228594	7.5	危険	simple glossar	-	TYPO3 用の simple_glossar エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4165	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228595	4.3	警告	simple glossar	-	TYPO3 用の simple_glossar エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4164	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228596	7.5	危険	tw productfinder	-	TYPO3 用の TW Productfinder エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4163	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228597	7.5	危険	Piwik teethgrinder.co.uk	-	Piwik などの製品で使用される Open Flash Chart Lug Wyrm Charmer における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-4140	2012-12-20 19:28	2009-10-21	Show	GitHub Exploit DB Packet Storm

228598	7.5	危険	Piwik	-	Piwik の core/Cookie.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4137	2012-12-20 19:28	2009-12-9	Show	GitHub Exploit DB Packet Storm

228599	9.3	危険	wikipedia	-	Firefox の Wikipedia Toolbar エクステンションにおける Chrome 権限を伴う任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4127	2012-12-20 19:28	2009-12-2	Show	GitHub Exploit DB Packet Storm

228600	10	危険	Ruby-lang.org	-	Ruby の string.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4124	2012-12-20 19:28	2009-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194641	7.8	HIGH Local	samsung	internet	Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action.	NVD-CWE-Other	CVE-2021-25400	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194642	7.1	HIGH Local	samsung	smart_manager	Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege.	NVD-CWE-noinfo	CVE-2021-25399	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194643	3.3	LOW Local	samsung	bixby_voice	Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts.	NVD-CWE-noinfo	CVE-2021-25398	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194644	5.5	MEDIUM Local	google	android	An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.	NVD-CWE-Other	CVE-2021-25397	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194645	6.7	MEDIUM Local	google	android	An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution.	CWE-787 Out-of-bounds Write	CVE-2021-25396	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194646	6.4	MEDIUM Local	google	android	A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised.	CWE-362 Race Condition	CVE-2021-25395	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194647	6.4	MEDIUM Local	google	android	A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised.	CWE-362 CWE-416 Race Condition Use After Free	CVE-2021-25394	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194648	5.5	MEDIUM Local	google	android	Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid data.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-25393	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194649	5.5	MEDIUM Local	google	android	Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the path.	CWE-326 Inadequate Encryption Strength	CVE-2021-25392	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm

194650	4.0	MEDIUM Local	google	android	Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.	NVD-CWE-Other	CVE-2021-25391	2024-11-21 14:54	2021-06-12	Show	GitHub Exploit DB Packet Storm