Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230741	7.5	危険	PilotCart	-	ASPilot Pilot Cart の pilot.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2688	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

230742	7.5	危険	promanager	-	ProManager の inc/config.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2687	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

230743	7.5	危険	realm project	-	Realm CMS の _RealmAdmin/login.asp における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2682	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230744	5	警告	realm project	-	Realm CMS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2681	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230745	4.3	警告	realm project	-	Realm CMS の _db/compact.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2680	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230746	7.5	危険	realm project	-	Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2679	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230747	7.5	危険	telephone	-	Telephone Directory 2008 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2678	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230748	4.3	警告	telephone	-	Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2677	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230749	4.3	警告	softcomplex	-	PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2675	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

230750	7.5	危険	Powie	-	Powie pNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2673	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209491	6.5	MEDIUM Network	tibco	partnerexpress	The REST API component of TIBCO Software Inc.'s TIBCO PartnerExpress contains a vulnerability that theoretically allows an unauthenticated attacker with network access to obtain an authenticated logi…	NVD-CWE-noinfo	CVE-2020-27147	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209492	9.8	CRITICAL Network	google	android	Product: AndroidVersions: Android kernelAndroid ID: A-127973231References: Upstream kernel	NVD-CWE-noinfo	CVE-2020-27068	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209493	6.4	MEDIUM Local	google	android	In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not ne…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2020-27067	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209494	6.7	MEDIUM Local	google	android	In xfrm6_tunnel_free_spi of net/ipv6/xfrm6_tunnel.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges need…	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-27066	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209495	3.3	LOW Local	google	android	In getGpuStatsGlobalInfo and getGpuStatsAppInfo of GpuService.cpp, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure of gpu stat…	CWE-862 Missing Authorization	CVE-2020-27057	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209496	3.3	LOW Local	google	android	In SELinux policies of mls, there is a missing permission check. This could lead to local information disclosure of package metadata with no additional execution privileges needed. User interaction i…	CWE-862 Missing Authorization	CVE-2020-27056	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209497	7.5	HIGH Network	google	android	In isSubmittable and showWarningMessagesIfAppropriate of WifiConfigController.java and WifiConfigController2.java, there is a possible insecure WiFi configuration due to improper input validation. Th…	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-27055	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209498	7.8	HIGH Local	google	android	In onFactoryReset of BluetoothManagerService.java, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti…	CWE-862 Missing Authorization	CVE-2020-27054	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209499	4.4	MEDIUM Local	google	android	In broadcastWifiCredentialChanged of ClientModeImpl.java, there is a possible location permission bypass due to a missing permission check. This could lead to local information disclosure of the WiFi…	CWE-862 Missing Authorization	CVE-2020-27053	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm

209500	7.8	HIGH Local	google	android	In getLockTaskLaunchMode of ActivityRecord.java, there is a possible way for any app to start in Lock Task Mode due to a permissions bypass. This could lead to local escalation of privilege with no a…	CWE-862 Missing Authorization	CVE-2020-27052	2024-11-21 14:20	2020-12-16	Show	GitHub Exploit DB Packet Storm