Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230251	7.5	危険	phpraider	-	Simple Machines phpRaider の authentication/smf/smf.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2769	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230252	3.5	注意	xigla	-	Xigla Poll Manager XE の admin/search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2768	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230253	6.5	警告	xigla	-	Xigla Poll Manager XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2767	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230254	4.3	警告	xigla	-	Xigla Absolute Image Gallery XE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2766	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230255	7.5	危険	xigla	-	Xigla Absolute Image Gallery XE の gallery.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2765	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230256	3.5	注意	xigla	-	Xigla Absolute Live Support XE の admin/search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2764	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230257	6.5	警告	xigla	-	Xigla Absolute Live Support XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2763	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230258	6.5	警告	xigla	-	Xigla Absolute Form Processor XE の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2762	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230259	3.5	注意	xigla	-	Xigla Absolute Banner Manager XE におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2761	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230260	6.5	警告	xigla	-	Xigla Absolute Banner Manager XE の searchbanners.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2760	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223071	5.5	MEDIUM Local	google	android	In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. …	CWE-908 Use of Uninitialized Resource	CVE-2019-2118	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223072	5.5	MEDIUM Local	google	android	In checkQueryPermission of TelephonyProvider.java, there is a possible disclosure of secure data due to a missing permission check. This could lead to local information disclosure about carrier syste…	CWE-862 Missing Authorization	CVE-2019-2117	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223073	7.5	HIGH Network	google	android	In save_attr_seq of sdp_discovery.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges nee…	CWE-125 Out-of-bounds Read	CVE-2019-2116	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223074	5.5	MEDIUM Local	google	android	In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not need…	NVD-CWE-noinfo	CVE-2019-2113	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223075	7.8	HIGH Local	google	android	In several functions of alarm.cc, there is possible memory corruption due to a use after free. This could lead to local code execution with no additional execution privileges needed. User interaction…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2019-2112	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223076	9.8	CRITICAL Network	google	android	In loop of DnsTlsSocket.cpp, there is a possible heap memory corruption due to a use after free. This could lead to remote code execution in the netd server with no additional execution privileges ne…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2019-2111	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223077	8.8	HIGH Network	google	android	In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution…	CWE-787 Out-of-bounds Write	CVE-2019-2109	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223078	8.8	HIGH Network	google	android	In ihevcd_parse_pps of ihevcd_parse_headers.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges …	CWE-787 Out-of-bounds Write	CVE-2019-2107	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223079	8.8	HIGH Network	google	android	In ihevcd_sao_shift_ctb of ihevcd_sao.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed…	CWE-787 Out-of-bounds Write	CVE-2019-2106	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm

223080	8.8	HIGH Network	google	android	In FileInputStream::Read of file_input_stream.cc, there is a possible memory corruption due to uninitialized data. This could lead to remote code execution in an unprivileged process with no addition…	CWE-908 Use of Uninitialized Resource	CVE-2019-2105	2024-11-21 13:40	2019-07-9	Show	GitHub Exploit DB Packet Storm