Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230931	5.1	警告	webmedia explorer	-	webmex における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4948	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

230932	6.8	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4935	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

230933	4.6	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4934	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

230934	7.5	危険	shop-script	-	Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2007-4933	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

230935	7.5	危険	shop-script	-	Shop-Script の admin.php における admin パネルへアクセスされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-4932	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

230936	4.3	警告	php-stats	-	PHP-Stats の tracking.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4917	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

230937	9.3	危険	WinSCP	-	WinSCP におけるリモートサーバで任意のファイル転送を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4909	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

230938	7.5	危険	Qualiteam Software Limited	-	X-Cart における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4907	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

230939	4.3	警告	リアルネットワークス	-	RealNetworks RealPlayer および Helix Player におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2007-4904	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

230940	7.5	危険	ultrashareware	-	Ultra Crypto コンポーネントの CryptoX.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4903	2012-12-20 18:33	2007-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197341	9.8	CRITICAL Network	google	android	In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with n…	CWE-787 Out-of-bounds Write	CVE-2021-0515	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

197342	8.1	HIGH Network	google	android	In several functions of the V8 library, there is a possible use after free due to a race condition. This could lead to remote code execution in an unprivileged process with no additional execution pr…	CWE-362 Race Condition	CVE-2021-0514	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

197343	7.8	HIGH Local	google	android	In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execut…	CWE-276 Incorrect Default Permissions	CVE-2021-0486	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

197344	7.3	HIGH Local	google	android	In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. This could lead to local escalation of privilege with no additional execution privileges needed. Use…	CWE-276 Incorrect Default Permissions	CVE-2021-0441	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

197345	6.7	MEDIUM Local	intel	core_i7-6700k xeon_e3-1240_v5 core_i7 core_i5 xeon_e3 core_i9 xeon_d-1649n xeon_d-1633n xeon_d-1637 xeon_d-1627 xeon_d-1623n xeon_d-1622 xeon_d-1653n xeon_d-160…	Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.	CWE-1188 Insecure Default Initialization of Resource	CVE-2021-0144	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

197346	7.3	HIGH Local	google	android	In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…	CWE-74 Injection	CVE-2021-0553	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

197347	5.5	MEDIUM Local	google	android	In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-0552	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

197348	6.5	MEDIUM Network	google	android	In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …	CWE-74 Injection	CVE-2021-0551	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

197349	7.8	HIGH Local	google	android	In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-0550	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

197350	4.4	MEDIUM Local	google	android	In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-0549	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm