Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230111 6.8 警告 snarky - VisualPic の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1876 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230112 7.5 危険 terong - Terong PHP Photo Gallery の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1875 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230113 6.5 警告 xpoze - Xpoze Pro の account/user/mail.html における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1874 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230114 4.3 警告 tru-zone - Nuke ET のプライベートメッセージ機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1873 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230115 6.5 警告 scriptsagent - Scriptsagent.com Links Directory の links.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1871 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230116 7.5 危険 site sift media - Site Sift Listings における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1869 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230117 7.5 危険 pixel motion - Blog Pixel Motion の admin/sauvBase.php における重要な情報を含む blogPM.sql ファイルの結果を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-1868 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230118 7.5 危険 pixel motion - Blog Pixel Motion における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1867 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230119 9 危険 pixel motion - Blog Pixel Motion の admin/modif_config.php における任意の PHP スクリプトをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1866 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
230120 7.5 危険 prozilla - Prozilla Freelancers の project.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1864 2012-12-20 18:52 2008-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196421 5.5 MEDIUM
Local 		google android In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing permission check. This could lead to local information disclosure from locked profiles with no additional… CWE-862
 Missing Authorization 		CVE-2021-0654 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
196422 5.5 MEDIUM
Local 		google android In generateFileInfo of BluetoothOppSendFileInfo.java, there is a possible way to share private files over Bluetooth due to a confused deputy. This could lead to local information disclosure with no a… NVD-CWE-Other
CVE-2021-0604 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
196423 7.8 HIGH
Local 		google android In onCreate of ContactSelectionActivity.java, there is a possible way to get access to contacts without permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0603 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
196424 7.8 HIGH
Local 		google android In onCreateOptionsMenu of WifiNetworkDetailsFragment.java, there is a possible way for guest users to view and modify Wi-Fi settings for all configured APs due to a permissions bypass. This could lea… CWE-200
Information Exposure 		CVE-2021-0602 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
196425 5.5 MEDIUM
Local 		google android In encodeFrames of avc_enc_fuzzer.cpp, there is a possible out of bounds write due to a double free. This could lead to local information disclosure with no additional execution privileges needed. Us… CWE-787
CWE-415
 Out-of-bounds Write
 Double Free 		CVE-2021-0601 2024-11-21 14:43 2021-07-14 Show GitHub Exploit DB Packet Storm
196426 7.4 HIGH
Network 		cisco dna_center A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensiti… CWE-295
Improper Certificate Validation  		CVE-2021-1134 2024-11-21 14:43 2021-06-29 Show GitHub Exploit DB Packet Storm
196427 8.3 HIGH
Network 		nvidia geforce_experience NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a browser, while, at the same time, any other web page is loaded… NVD-CWE-noinfo
CVE-2021-1073 2024-11-21 14:43 2021-06-26 Show GitHub Exploit DB Packet Storm
196428 7.8 HIGH
Local 		google android In handleAppLaunch of AppLaunchActivity.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution pri… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2021-0608 2024-11-21 14:43 2021-06-22 Show GitHub Exploit DB Packet Storm
196429 7.8 HIGH
Local 		google android In iaxxx_calc_i2s_div of iaxxx-codec.c, there is a possible hardware port write with user controlled data due to a missing bounds check. This could lead to local escalation of privilege with no addit… CWE-787
 Out-of-bounds Write 		CVE-2021-0607 2024-11-21 14:43 2021-06-22 Show GitHub Exploit DB Packet Storm
196430 6.7 MEDIUM
Local 		google android In drm_syncobj_handle_to_fd of drm_syncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed… CWE-416
 Use After Free 		CVE-2021-0606 2024-11-21 14:43 2021-06-22 Show GitHub Exploit DB Packet Storm