Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229691	7.5	危険	pixaria	-	Pixaria Gallery における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2458	2012-12-20 18:19	2007-04-15	Show	GitHub Exploit DB Packet Storm

229692	7.5	危険	pixaria	-	Pixaria Gallery の resources/includes/class.Smarty.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2457	2012-12-20 18:19	2007-04-15	Show	GitHub Exploit DB Packet Storm

229693	2.1	注意	CollabNet, Inc.	-	Subversion における重要な情報 (プロパティの改定) を取得される脆弱性	-	CVE-2007-2448	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

229694	6.8	警告	tecnick.com	-	TCExam の shared/config/tce_config.php におけるクロスサイトスクリプティング攻撃 (XSS) を実行される脆弱性	-	CVE-2007-2431	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

229695	7.8	危険	tecnick.com	-	TCExam の shared/code/tce_tmx.php における cache/ 配下の任意の PHP ファイルを作成される脆弱性	-	CVE-2007-2430	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

229696	7.5	危険	pnflashgames	-	PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性	-	CVE-2007-2427	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

229697	7.5	危険	wildbits	-	WordPress 用の myGallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2426	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

229698	7.5	危険	the merchant project	-	themerchant の help/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2424	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

229699	10	危険	RSAセキュリティ Progress Software Corporation	-	複数の RSA 製品で使用される Progress Software Progress および OpenEdge におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2417	2012-12-20 18:19	2007-07-15	Show	GitHub Exploit DB Packet Storm

229700	5	警告	pi3web	-	Pi3Web Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-2415	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213961	5.5	MEDIUM Local	google	android	In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth due to a missing permission check. This could lead to local information disclosu…	CWE-862 Missing Authorization	CVE-2020-0023	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213962	8.8	HIGH Adjacent	google huawei	android mate_20_firmware mate_20_pro_firmware mate_20_x_firmware p_smart_firmware p_smart_2019_firmware p20_firmware p20_pro_firmware p30_firmware p30_pro_firmware y6_20…	In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no addit…	CWE-682 Incorrect Calculation	CVE-2020-0022	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213963	6.5	MEDIUM Network	google	android	In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with Us…	CWE-476 NULL Pointer Dereference	CVE-2020-0021	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213964	5.5	MEDIUM Local	google	android	In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-0020	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213965	4.4	MEDIUM Local	google	android	In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. This could lead to local disclosure of user input with System execution privileges needed. Us…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-0018	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213966	4.4	MEDIUM Local	google	android	In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. This could lead to local information disclosure with no additional execution …	NVD-CWE-noinfo	CVE-2020-0017	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213967	7.8	HIGH Local	google	android	In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. This could lead to local escalation of privilege with no addition…	NVD-CWE-noinfo	CVE-2020-0015	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213968	5.5	MEDIUM Local	google	android	It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. This could lead to a local escalation of privilege with no additional execution pr…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-0014	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213969	6.7	MEDIUM Local	google	android	In btm_read_remote_ext_features_complete of btm_acl.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution p…	CWE-787 Out-of-bounds Write	CVE-2020-0005	2024-11-21 13:52	2020-02-14	Show	GitHub Exploit DB Packet Storm

213970	7.5	HIGH Network	python canonical netapp	python ubuntu_linux active_iq_unified_manager	Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service (resource consumption) via a ZIP bomb.	CWE-400 Uncontrolled Resource Consumption	CVE-2019-9674	2024-11-21 13:52	2020-02-5	Show	GitHub Exploit DB Packet Storm