Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230081 2.6 注意 xrms - XRMS CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3398 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230082 4.3 警告 runesoft - Runesoft Cerberus CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3397 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230083 5.8 警告 webwizguide - Web Wiz Forum におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3392 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230084 4.3 警告 webwizguide - Web Wiz Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3391 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230085 7.5 危険 phpfootball - PHPFootball の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3387 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230086 4.3 警告 snarky - Snark VisualPic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3379 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230087 7.5 危険 talkback - TalkBack の install/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3371 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230088 7.5 危険 viart - ViArt Shop の products_rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3369 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230089 4.3 警告 webwizguide - Web Wiz RTE の RTE_popup_link.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3367 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230090 7.5 危険 Pligg - Pligg CMS の story.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3366 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222841 7.5 HIGH
Network 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8096au_firmware
apq8098_firmware
mdm9206_firmware
mdm9207c_firmware
mdm9607_firmware
mdm9640_firmware
mdm9650_firmware… 		Out of bound read would occur while trying to read action category and action ID without validating the action length of the Rx Frame body in Snapdragon Auto, Snapdragon Consumer Electronics Connecti… CWE-125
Out-of-bounds Read 		CVE-2019-2310 2024-11-21 13:40 2019-12-12 Show GitHub Exploit DB Packet Storm
222842 7.8 HIGH
Local 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8096_firmware
apq8096au_firmware
apq8098_firmware
ipq8074_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware<… 		Out of bound write in TZ while copying the secure dump structure on HLOS provided buffer as a part of memory dump in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer … CWE-120
Classic Buffer Overflow 		CVE-2019-2288 2024-11-21 13:40 2019-12-12 Show GitHub Exploit DB Packet Storm
222843 7.5 HIGH
Network 		google android In handleRun of TextLine.java, there is a possible application crash due to improper input validation. This could lead to remote denial of service when processing Unicode with no additional execution… CWE-20
CWE-682
 Improper Input Validation 
 Incorrect Calculation 		CVE-2019-2232 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222844 4.4 MEDIUM
Local 		google android In Blob::Blob of blob.cpp, there is a possible unencrypted master key due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User i… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-2231 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222845 7.5 HIGH
Network 		google android In nfcManager_routeAid and nfcManager_unrouteAid of NativeNfcManager.cpp, there is possible memory reuse due to a use after free. This could lead to remote information disclosure with no additional e… CWE-416
 Use After Free 		CVE-2019-2230 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222846 5.5 MEDIUM
Local 		google android In updateWidget of BaseWidgetProvider.java, there is a possible leak of user data due to a missing permission check. This could lead to local information disclosure with no additional execution privi… CWE-862
 Missing Authorization 		CVE-2019-2229 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222847 5.5 MEDIUM
Local 		google android In array_find of array.c, there is a possible out-of-bounds read due to an incorrect bounds check. This could lead to local information disclosure in the printer spooler with no additional execution … CWE-125
Out-of-bounds Read 		CVE-2019-2228 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222848 6.5 MEDIUM
Adjacent 		google android In DeepCopy of btif_av.cc, there is a possible out of bounds read due to improper casting. This could lead to remote information disclosure over Bluetooth with no additional execution privileges need… CWE-125
Out-of-bounds Read 		CVE-2019-2227 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222849 5.5 MEDIUM
Local 		google android In device_class_to_int of device_class.cc, there is a possible out of bounds read due to improper casting. This could lead to local information disclosure in the Bluetooth server with User execution … CWE-125
Out-of-bounds Read 		CVE-2019-2226 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm
222850 8.8 HIGH
Adjacent 		google android When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to … CWE-269
 Improper Privilege Management 		CVE-2019-2225 2024-11-21 13:40 2019-12-7 Show GitHub Exploit DB Packet Storm