Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231281 2.1 注意 XWiki - XWiki Enterprise の Multiwiki プラグインにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4898 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
231282 4.3 警告 toms-seiten.at - Toms Gaestebuch の admin/header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4896 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
231283 5 警告 sisfo kampus - Semarang 3 の dwoprn.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4895 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
231284 7.5 危険 WordPress.org - Wordpress および MU における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4894 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
231285 4.3 警告 WordPress.org - Wordpress および MU の wp-admin/admin-functions.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-4893 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
231286 7.5 危険 swsoft - Windows 用の SWSoft Plesk における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4892 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
231287 3.5 注意 XWiki - XWiki の "You are not allowed ..." のエラーハンドラにおける任意のドキュメントを読み取られる脆弱性 CWE-DesignError
CVE-2007-4888 2012-12-20 18:33 2007-01-11 Show GitHub Exploit DB Packet Storm
231288 4.3 警告 techexcel inc. - TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4882 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
231289 7.5 危険 psi-labs - psisns の profile/myprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4881 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
231290 5 警告 Simplenews Project - SimpNews における任意の .inc ファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4873 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198281 7.8 HIGH
Local 		google android In PVRSRVBridgePMRPDumpSymbolicAddr of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local … CWE-190
 Integer Overflow or Wraparound 		CVE-2021-0871 2024-11-21 14:43 2022-09-14 Show GitHub Exploit DB Packet Storm
198282 7.0 HIGH
Local 		google android In PVRSRVRGXSubmitTransferKM of rgxtransfer.c, there is a possible user after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges ne… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2021-0697 2024-11-21 14:43 2022-09-14 Show GitHub Exploit DB Packet Storm
198283 7.5 HIGH
Network 		google android The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt on the heap, fills the contents of the buffer via TLServerDiscoverStreamsKM, and then copies the buffer to userspace. The method TLSer… CWE-909
 Missing Initialization of Resource 		CVE-2021-0947 2024-11-21 14:43 2022-08-24 Show GitHub Exploit DB Packet Storm
198284 7.5 HIGH
Network 		google android The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameInt on the heap, fills the contents of the buffer via PMR_PDumpSymbolicAddr, and then copies the buffer to userspace. The method P… CWE-909
 Missing Initialization of Resource 		CVE-2021-0946 2024-11-21 14:43 2022-08-24 Show GitHub Exploit DB Packet Storm
198285 7.5 HIGH
Network 		google android An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490 CWE-269
 Improper Privilege Management 		CVE-2021-0891 2024-11-21 14:43 2022-08-24 Show GitHub Exploit DB Packet Storm
198286 5.5 MEDIUM
Local 		google android In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privilege… CWE-908
 Use of Uninitialized Resource 		CVE-2021-0887 2024-11-21 14:43 2022-08-24 Show GitHub Exploit DB Packet Storm
198287 5.5 MEDIUM
Local 		google android In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privileges n… CWE-908
 Use of Uninitialized Resource 		CVE-2021-0698 2024-11-21 14:43 2022-08-24 Show GitHub Exploit DB Packet Storm
198288 5.5 MEDIUM
Local 		google android In USB Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosur… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-0975 2024-11-21 14:43 2022-08-12 Show GitHub Exploit DB Packet Storm
198289 5.5 MEDIUM
Local 		google android In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local inform… CWE-862
 Missing Authorization 		CVE-2021-0735 2024-11-21 14:43 2022-08-12 Show GitHub Exploit DB Packet Storm
198290 5.5 MEDIUM
Local 		google android In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-0734 2024-11-21 14:43 2022-08-12 Show GitHub Exploit DB Packet Storm