Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229781 5 警告 シマンテック - Symantec Backup Exec System Recovery Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2512 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229782 7.5 危険 WordPress.org - WordPress 用 Upload File プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2510 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229783 4.3 警告 tr script news - Tr Script News の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2508 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229784 7.5 危険 simpel side - Simpel Side Weblosning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2506 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229785 4.3 警告 simpel side - Simpel Side Weblosning の result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2505 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229786 7.5 危険 simpel side - Simpel Side Netbutik における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2504 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229787 9.3 危険 加藤和良 - eMule X-Ray の Uploadlist におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2503 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
229788 4.3 警告 quate - Quate CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2496 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229789 4.3 警告 TYPO3 Association - TYPO3 用の KJ Image Lightbox 2 エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2490 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229790 7.5 危険 TYPO3 Association - TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2489 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196231 3.3 LOW
Local 		google android In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app without user consent due to tapjack overlay. This could lead to local escalation of privilege with no… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0992 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196232 2.4 LOW
Adjacent 		google android In OnMetadataChangedListener of AdvancedBluetoothDetailsHeaderController.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local informat… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-0991 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196233 3.3 LOW
Local 		google android In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-0990 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196234 3.3 LOW
Local 		google android In hasManageOngoingCallsPermission of TelecomServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-0989 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196235 3.3 LOW
Local 		google android In getLaunchedFromUid and getLaunchedFromPackage of ActivityClientController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel inf… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-0988 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196236 3.3 LOW
Local 		google android In getNeighboringCellInfo of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This … CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-0987 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196237 5.5 MEDIUM
Local 		google android In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information disclosure about the device owner, profile owner, or device admin due to a logic error in the code. This could … CWE-862
 Missing Authorization 		CVE-2021-0986 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196238 7.8 HIGH
Local 		google android In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a missing permission check. This could lead to local escalation of privilege with no additional execution p… CWE-862
 Missing Authorization 		CVE-2021-0985 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196239 7.8 HIGH
Local 		google android In onNullBinding of ManagedServices.java, there is a possible permission bypass due to an incorrectly unbound service. This could lead to local escalation of privilege with no additional execution pr… CWE-404
 Improper Resource Shutdown or Release 		CVE-2021-0984 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196240 3.3 LOW
Local 		google android In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible disclosure of information about installed device/profile owner package name due to side channel information disclos… CWE-200
Information Exposure 		CVE-2021-0983 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm