Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228981	5	警告	designplace	-	ASP/MS Access Shoutbox における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4512	2012-12-20 18:52	2008-10-9	Show	GitHub Exploit DB Packet Storm

228982	5	警告	toddwoolums	-	Todd Woolums ASP News Management における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4511	2012-12-20 18:52	2008-10-9	Show	GitHub Exploit DB Packet Storm

228983	7.8	危険	tonec inc.	-	Tonec Internet Download Manager のファイル解析関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4508	2012-12-20 18:52	2008-10-9	Show	GitHub Exploit DB Packet Storm

228984	9	危険	Rhino Software	-	Serv-U の FTP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4501	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

228985	4.3	警告	Plone Foundation	-	Plone の LiveSearch モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4571	2012-12-20 18:52	2007-10-7	Show	GitHub Exploit DB Packet Storm

228986	4	警告	Rhino Software	-	Serv-U におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4500	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

228987	7.5	危険	phpautos	-	PHP Autos の searchresults.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4498	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

228988	7.5	危険	select development solutions	-	PHP Realtor の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4496	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

228989	7.5	危険	select development solutions	-	PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4495	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

228990	7.5	危険	torrenttrader	-	TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4494	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195681	7.8	HIGH Local	google	android	In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User i…	CWE-416 Use After Free	CVE-2021-0707	2024-11-21 14:43	2022-04-13	Show	GitHub Exploit DB Packet Storm

195682	7.8	HIGH Local	google	android	In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This coul…	CWE-863 Incorrect Authorization	CVE-2021-0694	2024-11-21 14:43	2022-04-13	Show	GitHub Exploit DB Packet Storm

195683	7.8	HIGH Local	google	android	In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User exec…	CWE-276 Incorrect Default Permissions	CVE-2021-1033	2024-11-21 14:43	2022-03-31	Show	GitHub Exploit DB Packet Storm

195684	7.8	HIGH Local	google	android	In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with no add…	CWE-276 Incorrect Default Permissions	CVE-2021-1000	2024-11-21 14:43	2022-03-31	Show	GitHub Exploit DB Packet Storm

195685	7.8	HIGH Local	google	android	In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way to bypass Factory Reset Protections. This could lead to local escalation of privilege with no additiona…	NVD-CWE-noinfo	CVE-2021-0957	2024-11-21 14:43	2022-03-17	Show	GitHub Exploit DB Packet Storm

195686	9.8	CRITICAL Network	google	android	Hacker one bug ID: 1343975Product: AndroidVersions: Android SoCAndroid ID: A-204256722	NVD-CWE-noinfo	CVE-2021-1049	2024-11-21 14:43	2022-01-15	Show	GitHub Exploit DB Packet Storm

195687	5.3	MEDIUM Network	google	android	The broadcast that DevicePickerFragment sends when a new device is paired doesn't have any permission checks, so any app can register to listen for it. This lets apps keep track of what devices are p…	CWE-862 Missing Authorization	CVE-2021-1037	2024-11-21 14:43	2022-01-15	Show	GitHub Exploit DB Packet Storm

195688	7.8	HIGH Local	google	android	In LocationSettingsActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privilege…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-1036	2024-11-21 14:43	2022-01-15	Show	GitHub Exploit DB Packet Storm

195689	7.8	HIGH Local	google	android	In setLaunchIntent of BluetoothDevicePickerPreferenceController.java, there is a possible way to invoke an arbitrary broadcast receiver due to a confused deputy. This could lead to local escalation o…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-1035	2024-11-21 14:43	2022-01-15	Show	GitHub Exploit DB Packet Storm

195690	7.8	HIGH Local	google	android	In jit_memory_region.cc, there is a possible bypass of memory restrictions due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed. Us…	NVD-CWE-noinfo	CVE-2021-0959	2024-11-21 14:43	2022-01-15	Show	GitHub Exploit DB Packet Storm