Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228641	7.5	危険	scripts frenzy	-	Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4901	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228642	9.3	危険	SAP	-	SAP GUI の KWEdit ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-4830	2012-12-20 18:52	2009-04-16	Show	GitHub Exploit DB Packet Storm

228643	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Blaster Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4900	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228644	6.8	警告	planetluc	-	Planetluc RateMe におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4899	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228645	4.3	警告	planetluc	-	planetluc RateMe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4898	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228646	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Downline Builder の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4895	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228647	5.1	警告	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4894	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228648	2.6	注意	Tribal Ltd.	-	Tribiq CMS の templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4893	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228649	4.3	警告	planetluc	-	Planetluc MyGallery の gallery.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4892	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

228650	4.3	警告	planetluc	-	Planetluc SignMe の signme.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4891	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215361	8.8	HIGH Adjacent	google huawei	android mate_20_firmware mate_20_pro_firmware mate_20_x_firmware p_smart_firmware p_smart_2019_firmware p20_firmware p20_pro_firmware p30_firmware p30_pro_firmware y6_20…	In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no addit…	CWE-682 Incorrect Calculation	CVE-2020-0022	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215362	6.5	MEDIUM Network	google	android	In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with Us…	CWE-476 NULL Pointer Dereference	CVE-2020-0021	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215363	5.5	MEDIUM Local	google	android	In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-0020	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215364	4.4	MEDIUM Local	google	android	In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. This could lead to local disclosure of user input with System execution privileges needed. Us…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-0018	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215365	4.4	MEDIUM Local	google	android	In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. This could lead to local information disclosure with no additional execution …	NVD-CWE-noinfo	CVE-2020-0017	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215366	7.8	HIGH Local	google	android	In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. This could lead to local escalation of privilege with no addition…	NVD-CWE-noinfo	CVE-2020-0015	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215367	5.5	MEDIUM Local	google	android	It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. This could lead to a local escalation of privilege with no additional execution pr…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-0014	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215368	6.7	MEDIUM Local	google	android	In btm_read_remote_ext_features_complete of btm_acl.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution p…	CWE-787 Out-of-bounds Write	CVE-2020-0005	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

215369	7.5	HIGH Network	python canonical netapp	python ubuntu_linux active_iq_unified_manager	Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service (resource consumption) via a ZIP bomb.	CWE-400 Uncontrolled Resource Consumption	CVE-2019-9674	2024-11-21 13:52	2020-02-5	Show	GitHub Exploit DB Packet Storm

215370	9.3	CRITICAL Network	mozilla	firefox firefox_esr	Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a maliciou…	NVD-CWE-noinfo	CVE-2019-9812	2024-11-21 13:52	2020-01-9	Show	GitHub Exploit DB Packet Storm