Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228671 4.3 警告 vivvo - Vivvo CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0466 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228672 9.3 危険 synactis - Synactis ALL In-The-Box ActiveX の ALL_IN_THE_BOX.OCX における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0465 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228673 7.5 危険 wholehogsoftware - Whole Hog Password Protec における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-0461 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228674 7.5 危険 wholehogsoftware - Whole Hog Ware Support における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-0460 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228675 7.5 危険 wholehogsoftware - Whole Hog Password Protect の admin/login_submit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0459 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228676 7.5 危険 wholehogsoftware - Whole Hog Ware Support の admin/login_submit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0458 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228677 7.5 危険 sourdough - Sourdough で使用されている patForms の examples/example_clientside_javascript.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0456 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228678 7.5 危険 skalinks - Skalfa SkaLinks における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0451 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228679 7.5 危険 syntax desktop - Syntax Desktop の admin/modules/aa/preview.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0448 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228680 7.5 危険 web-album - WEBalbum の photo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0446 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215871 7.8 HIGH
Local 		google android In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution due to uninitialized data. This could lead to local escalation of privilege if a process were using libb… CWE-824
CWE-909
 Access of Uninitialized Pointer
 Missing Initialization of Resource 		CVE-2020-0438 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
215872 5.5 MEDIUM
Local 		google android In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional … CWE-862
 Missing Authorization 		CVE-2020-0437 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
215873 5.5 MEDIUM
Local 		google android In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. Us… CWE-125
Out-of-bounds Read 		CVE-2020-0424 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
215874 7.8 HIGH
Local 		google android In getPermissionInfosForGroup of Utils.java, there is a logic error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploit… NVD-CWE-noinfo
CVE-2020-0418 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
215875 7.8 HIGH
Local 		google android In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User int… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-0409 2024-11-21 13:53 2020-11-10 Show GitHub Exploit DB Packet Storm
215876 7.8 HIGH
Local 		google
debian 		android
debian_linux 		In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges … CWE-416
CWE-667
 Use After Free
 Improper Locking 		CVE-2020-0423 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
215877 3.3 LOW
Local 		google android In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure … NVD-CWE-noinfo
CVE-2020-0422 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
215878 7.8 HIGH
Local 		google android In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges need… CWE-787
CWE-755
 Out-of-bounds Write
 Improper Handling of Exceptional Conditions 		CVE-2020-0421 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
215879 7.8 HIGH
Local 		google android In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check. This could lead to local escalation of privilege with no additional execution pri… CWE-787
CWE-667
CWE-862
 Out-of-bounds Write
 Improper Locking
 Missing Authorization 		CVE-2020-0420 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm
215880 5.5 MEDIUM
Local 		google android In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information dis… CWE-862
 Missing Authorization 		CVE-2020-0419 2024-11-21 13:53 2020-10-14 Show GitHub Exploit DB Packet Storm