Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230411 5 警告 WordPress.org - WordPress 用の PictPress プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6369 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
230412 4.3 警告 sinecms - SineCMS の guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6367 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
230413 7.5 危険 sinecms - SineCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6366 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
230414 7.8 危険 サン・マイクロシステムズ - Sun XSCF XCP におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6360 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
230415 8.5 危険 scponly - scponly におけるコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6350 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
230416 6.8 警告 SquirrelMail Project - SquirrelMail における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6348 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
230417 6.8 警告 prowizard - prowiz におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6510 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
230418 7.5 危険 xecms - xeCMS の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6508 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
230419 10 危険 トレンドマイクロ - Windows 用の Trend Micro ServerProtect における "ファイルシステムの全アクセス権限" を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6507 2012-12-20 18:34 2007-07-27 Show GitHub Exploit DB Packet Storm
230420 4.9 警告 plain black - Plain Black WebGUI における管理アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6487 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197031 7.8 HIGH
Local 		google android In appendEventsToCacheLocked of SensorEventConnection.cpp, there is a possible out of bounds write due to a use-after-free. This could lead to local escalation of privilege with no additional executi… CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2021-0318 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197032 7.8 HIGH
Local 		google android In createOrUpdate of Permission.java and related code, there is possible permission escalation due to a logic error. This could lead to local escalation of privilege with no additional execution priv… CWE-863
 Incorrect Authorization 		CVE-2021-0317 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197033 7.3 HIGH
Local 		google android In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. Thi… CWE-863
 Incorrect Authorization 		CVE-2021-0319 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197034 9.8 CRITICAL
Network 		google android In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution… CWE-787
 Out-of-bounds Write 		CVE-2021-0316 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197035 7.3 HIGH
Local 		google android In onCreate of GrantCredentialsPermissionActivity.java, there is a possible way to convince the user to grant an app access to an account due to a tapjacking/overlay attack. This could lead to local … CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0315 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197036 7.5 HIGH
Network 		google android In isWordBreakAfter of LayoutUtils.cpp, there is a possible way to slow or crash a TextView due to improper input validation. This could lead to remote denial of service with no additional execution … CWE-20
 Improper Input Validation  		CVE-2021-0313 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197037 6.5 MEDIUM
Network 		google android In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges ne… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2021-0312 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197038 6.5 MEDIUM
Network 		google android In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no addit… CWE-787
 Out-of-bounds Write 		CVE-2021-0311 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197039 7.8 HIGH
Local 		google android In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privi… CWE-416
 Use After Free 		CVE-2021-0310 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm
197040 5.5 MEDIUM
Local 		google android In onCreate of grantCredentialsPermissionActivity, there is a confused deputy. This could lead to local information disclosure and account access with no additional execution privileges needed. User … NVD-CWE-Other
CVE-2021-0309 2024-11-21 14:42 2021-01-12 Show GitHub Exploit DB Packet Storm