Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228771	5	警告	snapgear	-	SnapGear におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1324	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

228772	6.8	警告	savas place	-	Sava's Guestbook の add2.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1305	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228773	6.8	警告	savas place	-	Sava's Guestbook の add2.php における SQL インジェクションの脆弱性	-	CVE-2007-1304	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228774	7.8	危険	rrdbrowse	-	RRDBrowse の rb.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1303	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228775	5.8	警告	rigter portal system	-	RPS における SQL インジェクションの脆弱性	-	CVE-2007-1293	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228776	5.8	警告	tyger	-	TygerBT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1291	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228777	7.5	危険	tyger	-	TygerBT の ViewReport.php における SQL インジェクションの脆弱性	-	CVE-2007-1290	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228778	6.4	警告	tyger	-	TygerBT の ViewBugs.php における SQL インジェクションの脆弱性	-	CVE-2007-1289	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228779	10	危険	webmobo	-	Webmobo WB News における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1288	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

228780	7.5	危険	WordPress.org	-	WordPress における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2007-1277	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210961	8.8	HIGH Network	3cx debian	phone_system_firmware debian_linux	PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an authenticated attacker to run arbitrary commands with the phonesystem user privileges because of "<space><sp…	CWE-77 Command Injection	CVE-2019-9972	2024-11-21 13:52	2022-06-8	Show	GitHub Exploit DB Packet Storm

210962	8.8	HIGH Network	3cx debian	phone_system_firmware debian_linux	PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs bec…	CWE-269 Improper Privilege Management	CVE-2019-9971	2024-11-21 13:52	2022-06-8	Show	GitHub Exploit DB Packet Storm

210963	7.8	HIGH Local	google	android	In deletePackageVersionedInternal of PackageManagerService.java, there is a possible way to exit Screen Pinning due to a permissions bypass. This could lead to local escalation of privilege with no a…	NVD-CWE-noinfo	CVE-2020-0025	2024-11-21 13:52	2021-03-11	Show	GitHub Exploit DB Packet Storm

210964	5.5	MEDIUM Local	google	android	In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local information disclosure in the kernel with no additional execution privileges needed. User interaction i…	CWE-1188 Insecure Default Initialization of Resource	CVE-2020-0019	2024-11-21 13:52	2020-12-15	Show	GitHub Exploit DB Packet Storm

210965	7.8	HIGH Local	google	android	In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction …	CWE-798 Use of Hard-coded Credentials	CVE-2020-0016	2024-11-21 13:52	2020-12-15	Show	GitHub Exploit DB Packet Storm

210966	7.8	HIGH Local	google	android	In addWindow of WindowManagerService.java, there is a possible window overlay attack due to an insecure default value. This could lead to local escalation of privilege via tapjacking with no addition…	CWE-1188 Insecure Default Initialization of Resource	CVE-2020-0099	2024-11-21 13:52	2020-12-15	Show	GitHub Exploit DB Packet Storm

210967	7.8	HIGH Local	google	android	In the audio server, there is a missing permission check. This could lead to local escalation of privilege regarding audio settings with no additional execution privileges needed. User interaction is…	CWE-862 Missing Authorization	CVE-2020-0089	2024-11-21 13:52	2020-09-19	Show	GitHub Exploit DB Packet Storm

210968	7.8	HIGH Local	google	android	In screencap, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege in a system process with User execution privileges needed. User …	CWE-20 CWE-77 Improper Input Validation Command Injection	CVE-2020-0130	2024-11-21 13:52	2020-09-18	Show	GitHub Exploit DB Packet Storm

210969	5.5	MEDIUM Local	google	android	In mediadrm, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is …	CWE-125 Out-of-bounds Read	CVE-2020-0125	2024-11-21 13:52	2020-09-18	Show	GitHub Exploit DB Packet Storm

210970	9.8	CRITICAL Network	google	android	There is a possible out of bounds write due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-149871374	CWE-787 Out-of-bounds Write	CVE-2020-0123	2024-11-21 13:52	2020-09-18	Show	GitHub Exploit DB Packet Storm