Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229741 6.5 警告 xigla - Xigla Absolute News Manager XE の search.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2757 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
229742 4.3 警告 xigla - Xigla Absolute Control Panel XE の admin/users.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2756 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
229743 7.1 危険 サン・マイクロシステムズ - Sun Java System Calendar Server などの cshttpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-2749 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229744 5 警告 skulltag team - Skulltag におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2748 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
229745 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2744 2012-12-20 18:52 2008-06-9 Show GitHub Exploit DB Packet Storm
229746 4.3 警告 Xerox - Xerox 4110 などの Copier/Printers の組み込み Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2743 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229747 4.3 警告 TYPO3 Association - TYPO3 の fe_adminlib.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2718 2012-12-20 18:52 2008-06-16 Show GitHub Exploit DB Packet Storm
229748 9.3 危険 サン・マイクロシステムズ - Sun Java System AM における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2705 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229749 4.3 警告 web-album - WEBalbum の photo_add-c.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2698 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
229750 7.5 危険 phpinv - phpInv の entry.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2695 2012-12-20 18:52 2008-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196291 6.7 MEDIUM
Local 		google android In OMA DRM, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not n… CWE-787
 Out-of-bounds Write 		CVE-2021-0628 2024-11-21 14:43 2021-08-19 Show GitHub Exploit DB Packet Storm
196292 6.7 MEDIUM
Local 		google android In OMA DRM, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed … CWE-190
 Integer Overflow or Wraparound 		CVE-2021-0627 2024-11-21 14:43 2021-08-19 Show GitHub Exploit DB Packet Storm
196293 6.7 MEDIUM
Local 		google android In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed… CWE-787
 Out-of-bounds Write 		CVE-2021-0626 2024-11-21 14:43 2021-08-19 Show GitHub Exploit DB Packet Storm
196294 7.8 HIGH
Local 		google android In sqlite3_str_vappendf of sqlite3.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege if the user can also inject a printf i… CWE-787
 Out-of-bounds Write 		CVE-2021-0646 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196295 7.8 HIGH
Local 		google android In shouldBlockFromTree of ExternalStorageProvider.java, there is a possible permissions bypass. This could lead to local escalation of privilege, allowing an app to read private app directories in ex… CWE-863
 Incorrect Authorization 		CVE-2021-0645 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196296 5.5 MEDIUM
Local 		google android In onResume of VoicemailSettingsFragment.java, there is a possible way to retrieve a trackable identifier without permissions due to a missing permission check. This could lead to local information d… CWE-862
 Missing Authorization 		CVE-2021-0642 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196297 5.5 MEDIUM
Local 		google android In getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing permission check. This could lead to local information disclo… CWE-862
 Missing Authorization 		CVE-2021-0641 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196298 7.8 HIGH
Local 		google android In noteAtomLogged of StatsdStats.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges n… CWE-787
 Out-of-bounds Write 		CVE-2021-0640 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196299 5.5 MEDIUM
Local 		google android In multiple functions of libl3oemcrypto.cpp, there is a possible weakness in the existing obfuscation mechanism due to the way sensitive data is handled. This could lead to local information disclosu… CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-0639 2024-11-21 14:43 2021-08-18 Show GitHub Exploit DB Packet Storm
196300 9.8 CRITICAL
Network 		risc-v instruction_set_manual The RISC-V Instruction Set Manual contains a documented ambiguity for the Machine Trap Vector Base Address (MTVEC) register that may lead to a vulnerability due to the initial state of the register n… CWE-908
 Use of Uninitialized Resource 		CVE-2021-1104 2024-11-21 14:43 2021-08-14 Show GitHub Exploit DB Packet Storm