Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229051	6.8	警告	phparanoid	-	PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-5672	2012-12-20 19:10	2008-12-18	Show	GitHub Exploit DB Packet Storm

229052	6.8	警告	Textpattern	-	Textpattern におけるセッションのハイジャック後パスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-5670	2012-12-20 19:10	2008-12-18	Show	GitHub Exploit DB Packet Storm

229053	5	警告	Textpattern	-	Textpattern のコメントプレビューセクションにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-5669	2012-12-20 19:10	2008-12-18	Show	GitHub Exploit DB Packet Storm

229054	4.3	警告	Textpattern	-	Textpattern におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5668	2012-12-20 19:10	2008-12-18	Show	GitHub Exploit DB Packet Storm

229055	5	警告	VirusBlokAda Ltd.	-	VirusBlokAda VBA32 Personal Antivirus のスキャンエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-5667	2012-12-20 19:10	2008-12-18	Show	GitHub Exploit DB Packet Storm

229056	3.5	注意	WING FTP software	-	WinFTP FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-5666	2012-12-20 18:52	2008-12-18	Show	GitHub Exploit DB Packet Storm

229057	7.5	危険	XOOPS	-	XOOPS の xhresim モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5665	2012-12-20 18:52	2008-12-18	Show	GitHub Exploit DB Packet Storm

229058	9.3	危険	Realtek Semiconductor Corp	-	Realtek Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5664	2012-12-20 18:52	2008-12-18	Show	GitHub Exploit DB Packet Storm

229059	7.5	危険	Quassel IRC	-	Quassel Core における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2008-5657	2012-12-20 18:52	2008-10-27	Show	GitHub Exploit DB Packet Storm

229060	4.3	警告	TYPO3 Association	-	TYPO3 の felogin system エクステンション用の frontend プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5656	2012-12-20 18:52	2008-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221371	5.5	MEDIUM Local	qualcomm	ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware qca8081_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwa…	Unauthorized access from GPU subsystem to HLOS or other non secure subsystem memory can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons…	NVD-CWE-noinfo	CVE-2019-2261	2024-11-21 13:40	2019-07-22	Show	GitHub Exploit DB Packet Storm

221372	7.0	HIGH Local	qualcomm	mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmware…	A race condition occurs while processing perf-event which can lead to a use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2019-2260	2024-11-21 13:40	2019-07-22	Show	GitHub Exploit DB Packet Storm

221373	5.5	MEDIUM Local	qualcomm	mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware s…	Possible buffer overflow at the end of iterating loop while getting the version info and lead to information disclosure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon In…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-2243	2024-11-21 13:40	2019-07-22	Show	GitHub Exploit DB Packet Storm

221374	5.5	MEDIUM Local	google	android	In multiple functions of key_store_service.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additiona…	CWE-667 Improper Locking	CVE-2019-2119	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221375	5.5	MEDIUM Local	google	android	In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. …	CWE-908 Use of Uninitialized Resource	CVE-2019-2118	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221376	5.5	MEDIUM Local	google	android	In checkQueryPermission of TelephonyProvider.java, there is a possible disclosure of secure data due to a missing permission check. This could lead to local information disclosure about carrier syste…	CWE-862 Missing Authorization	CVE-2019-2117	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221377	7.5	HIGH Network	google	android	In save_attr_seq of sdp_discovery.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges nee…	CWE-125 Out-of-bounds Read	CVE-2019-2116	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221378	5.5	MEDIUM Local	google	android	In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not need…	NVD-CWE-noinfo	CVE-2019-2113	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221379	7.8	HIGH Local	google	android	In several functions of alarm.cc, there is possible memory corruption due to a use after free. This could lead to local code execution with no additional execution privileges needed. User interaction…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2019-2112	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

221380	9.8	CRITICAL Network	google	android	In loop of DnsTlsSocket.cpp, there is a possible heap memory corruption due to a use after free. This could lead to remote code execution in the netd server with no additional execution privileges ne…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2019-2111	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed