Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228881 7.5 危険 review-script - Five Star Review Script の recommend.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3780 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
228882 4.3 警告 review-script - Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3779 2012-12-20 18:52 2008-08-26 Show GitHub Exploit DB Packet Storm
228883 7.5 危険 simasy - Simasy CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3774 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
228884 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3773 2012-12-20 18:52 2008-08-18 Show GitHub Exploit DB Packet Storm
228885 7.5 危険 turnkey web tools - Turnkey Web Tools SunShop Shopping Cart の class.ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3768 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
228886 7.5 危険 smartisoft - phpBazar の classified.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3767 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
228887 5 警告 realtime internet band rehearsal - Realtime Internet llcon におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3766 2012-12-20 18:52 2008-08-22 Show GitHub Exploit DB Packet Storm
228888 7.5 危険 turnkey web tools - Turnkey PHP Live Helper の globalsoff.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3764 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
228889 6.8 警告 turnkey web tools - Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3763 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
228890 7.5 危険 turnkey web tools - Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3762 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195581 7.8 HIGH
Local 		google android In onNullBinding of ManagedServices.java, there is a possible permission bypass due to an incorrectly unbound service. This could lead to local escalation of privilege with no additional execution pr… CWE-404
 Improper Resource Shutdown or Release 		CVE-2021-0984 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195582 3.3 LOW
Local 		google android In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible disclosure of information about installed device/profile owner package name due to side channel information disclos… CWE-200
Information Exposure 		CVE-2021-0983 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195583 3.3 LOW
Local 		google android In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible organization name disclosure due to a missing permission check. This could lead to local information disclosure w… CWE-862
 Missing Authorization 		CVE-2021-0982 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195584 7.8 HIGH
Local 		google android In enqueueNotificationInternal of NotificationManagerService.java, there is a possible way to run a foreground service without showing a notification due to improper input validation. This could lead… NVD-CWE-Other
CVE-2021-0981 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195585 5.5 MEDIUM
Local 		google android In isRequestPinItemSupported of ShortcutService.java, there is a possible cross-user leak of packages in which the default launcher supports requests to create pinned shortcuts due to a permissions b… CWE-276
Incorrect Default Permissions  		CVE-2021-0979 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195586 3.3 LOW
Local 		google android In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.… CWE-862
 Missing Authorization 		CVE-2021-0978 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195587 6.7 MEDIUM
Local 		google android In phNxpNHal_DtaUpdate of phNxpNciHal_dta.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileg… CWE-787
 Out-of-bounds Write 		CVE-2021-0977 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195588 6.5 MEDIUM
Network 		google android In toBARK of floor0.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User inte… CWE-125
Out-of-bounds Read 		CVE-2021-0976 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195589 5.0 MEDIUM
Local 		google android In isFileUri of UriUtil.java, there is a possible way to bypass ignoring file://URI attachment due to improper handling of case sensitivity. This could lead to local information disclosure with no ad… CWE-178
 Improper Handling of Case Sensitivity 		CVE-2021-0973 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
195590 6.5 MEDIUM
Network 		google android In MPEG4Source::read of MPEG4Extractor.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privil… CWE-787
 Out-of-bounds Write 		CVE-2021-0971 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm