Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229821 7.5 危険 tagworx - TAGWORX.CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2394 2012-12-20 18:52 2008-05-21 Show GitHub Exploit DB Packet Storm
229822 9 危険 WordPress.org - WordPress における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2392 2012-12-20 18:52 2008-05-21 Show GitHub Exploit DB Packet Storm
229823 6.4 警告 レッドハット - Red Hat Network Satellite Server の manzier.pxt における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-2369 2012-12-20 18:52 2008-08-13 Show GitHub Exploit DB Packet Storm
229824 6.8 警告 wr-script - WR-Meeting の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2355 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
229825 5 警告 testmaker - testMaker のデータエクスポート関数におけるデータをエキスポートするアクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-2354 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
229826 6.8 警告 smeego - Smeego の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2352 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
229827 7.5 危険 WebManager Pro - CMS WebManager-Pro の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2351 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
229828 7.5 危険 zomp - Zomplog における管理アクセス権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2349 2012-12-20 18:52 2008-05-20 Show GitHub Exploit DB Packet Storm
229829 10 危険 TYPO3 Association - TYPO3 用の air_filemanager エクステンションにおける任意の PHP コードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2345 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
229830 4.3 警告 TYPO3 Association - TYPO3 用の air_filemanager エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2344 2012-12-20 18:52 2008-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196261 7.3 HIGH
Local 		google android In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User inter… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0954 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196262 7.8 HIGH
Local 		google android In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. This could lead to local … CWE-281
 Improper Preservation of Permissions 		CVE-2021-0953 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196263 5.0 MEDIUM
Local 		google android In doCropPhoto of PhotoSelectionHandler.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure of user's contacts with no additional exe… NVD-CWE-Other
CVE-2021-0952 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196264 8.0 HIGH
Adjacent 		google android In onCreate of CompanionDeviceActivity.java or DeviceChooserActivity.java, there is a possible way for HTML tags to interfere with a consent dialog due to improper input validation. This could lead t… CWE-20
CWE-116
 Improper Input Validation 
 Improper Encoding or Escaping of Output 		CVE-2021-0933 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196265 7.8 HIGH
Local 		google android In showNotification of NavigationModeController.java, there is a possible confused deputy due to an unsafe PendingIntent. This could lead to local escalation of privilege that allows actions performe… NVD-CWE-Other
CVE-2021-0932 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196266 5.5 MEDIUM
Local 		google android In getAlias of BluetoothDevice.java, there is a possible way to create misleading permission dialogs due to missing data filtering. This could lead to local information disclosure with User execution… NVD-CWE-Other
CVE-2021-0931 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196267 8.8 HIGH
Adjacent 		google android In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execu… CWE-787
 Out-of-bounds Write 		CVE-2021-0930 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196268 7.8 HIGH
Local 		google android In ion_dma_buf_end_cpu_access and related functions of ion.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional ex… CWE-416
 Use After Free 		CVE-2021-0929 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196269 7.8 HIGH
Local 		google android In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege w… CWE-20
CWE-755
 Improper Input Validation 
 Improper Handling of Exceptional Conditions 		CVE-2021-0928 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm
196270 7.8 HIGH
Local 		google android In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional e… CWE-281
 Improper Preservation of Permissions 		CVE-2021-0927 2024-11-21 14:43 2021-12-16 Show GitHub Exploit DB Packet Storm