Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230911	9.3	危険	stonetrip	-	StoneTrip Ston3D StandalonePlayer および WebPlayer の system.openURL 関数における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-1792	2012-12-20 19:10	2009-05-29	Show	GitHub Exploit DB Packet Storm

230912	7.5	危険	phpdirsubmit	-	PHP Dir Submit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1787	2012-12-20 19:10	2009-05-26	Show	GitHub Exploit DB Packet Storm

230913	4.3	警告	ulteo	-	Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1785	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230914	6.8	警告	roboform	-	Frax.dk Php Recommend の admin.php における phpre_config.php へ任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1781	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230915	7.5	危険	roboform	-	Frax.dk Php Recommend の admin.php における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1780	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230916	6.8	警告	roboform	-	Frax.dk Php Recommend の admin.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-1779	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230917	4.3	警告	ulteo	-	Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1775	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230918	9.3	危険	strawberry	-	Strawberry の plugins/ddb/foot.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1774	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230919	5	警告	ramazeiten	-	Rama Zaiten CMS の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1768	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

230920	6.4	警告	teozkr	-	LightOpenCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1766	2012-12-20 19:10	2009-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201951	7.5	HIGH Network	google	android	The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt on the heap, fills the contents of the buffer via TLServerDiscoverStreamsKM, and then copies the buffer to userspace. The method TLSer…	CWE-909 Missing Initialization of Resource	CVE-2021-0947	2024-11-21 14:43	2022-08-24	Show	GitHub Exploit DB Packet Storm

201952	7.5	HIGH Network	google	android	The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameInt on the heap, fills the contents of the buffer via PMR_PDumpSymbolicAddr, and then copies the buffer to userspace. The method P…	CWE-909 Missing Initialization of Resource	CVE-2021-0946	2024-11-21 14:43	2022-08-24	Show	GitHub Exploit DB Packet Storm

201953	7.5	HIGH Network	google	android	An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490	CWE-269 Improper Privilege Management	CVE-2021-0891	2024-11-21 14:43	2022-08-24	Show	GitHub Exploit DB Packet Storm

201954	5.5	MEDIUM Local	google	android	In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privilege…	CWE-908 Use of Uninitialized Resource	CVE-2021-0887	2024-11-21 14:43	2022-08-24	Show	GitHub Exploit DB Packet Storm

201955	5.5	MEDIUM Local	google	android	In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privileges n…	CWE-908 Use of Uninitialized Resource	CVE-2021-0698	2024-11-21 14:43	2022-08-24	Show	GitHub Exploit DB Packet Storm

201956	5.5	MEDIUM Local	google	android	In USB Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosur…	CWE-203 Information Exposure Through Discrepancy	CVE-2021-0975	2024-11-21 14:43	2022-08-12	Show	GitHub Exploit DB Packet Storm

201957	5.5	MEDIUM Local	google	android	In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local inform…	CWE-862 Missing Authorization	CVE-2021-0735	2024-11-21 14:43	2022-08-12	Show	GitHub Exploit DB Packet Storm

201958	5.5	MEDIUM Local	google	android	In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-0734	2024-11-21 14:43	2022-08-12	Show	GitHub Exploit DB Packet Storm

201959	7.8	HIGH Local	google	android	In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User i…	CWE-416 Use After Free	CVE-2021-0707	2024-11-21 14:43	2022-04-13	Show	GitHub Exploit DB Packet Storm

201960	7.8	HIGH Local	google	android	In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This coul…	CWE-863 Incorrect Authorization	CVE-2021-0694	2024-11-21 14:43	2022-04-13	Show	GitHub Exploit DB Packet Storm