Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241741	6.8	警告	Creative Digital Resources	-	SocketMail Pro の home/secretqtn.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4059	2012-07-30 11:24	2012-07-25	Show	GitHub Exploit DB Packet Storm

241742	4.3	警告	Creative Digital Resources	-	SocketMail Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4058	2012-07-30 11:21	2012-07-25	Show	GitHub Exploit DB Packet Storm

241743	9.3	危険	TWD Industries	-	Remote-Anything の Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4057	2012-07-30 11:20	2012-07-25	Show	GitHub Exploit DB Packet Storm

241744	7.5	危険	Uiga	-	Uiga Personal Portal の index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4056	2012-07-30 11:11	2012-07-25	Show	GitHub Exploit DB Packet Storm

241745	7.5	危険	Uiga	-	Uiga FanClub の index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4055	2012-07-30 11:09	2012-07-25	Show	GitHub Exploit DB Packet Storm

241746	6.9	警告	CPE17	-	CPE17 Autorun Killer の readfile 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4054	2012-07-30 11:04	2012-07-25	Show	GitHub Exploit DB Packet Storm

241747	3.5	注意	Oleg Kovalchuk	-	Drupal 用の cctags モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2310	2012-07-30 11:03	2012-05-2	Show	GitHub Exploit DB Packet Storm

241748	3.5	注意	Propeople	-	Drupal 用の Glossify Internal Links Auto SEO モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2309	2012-07-30 11:03	2012-05-2	Show	GitHub Exploit DB Packet Storm

241749	3.5	注意	tahiticlic	-	Drupal 用の Taxonomy Grid : Catalog モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2308	2012-07-30 11:01	2012-05-2	Show	GitHub Exploit DB Packet Storm

241750	6.8	警告	Willem Van Der Plaat	-	Drupal 用の Addressbook モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2307	2012-07-30 11:00	2012-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266401	5.5	MEDIUM Local	google	android	Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows attackers to cause a denial of service (loss of locked-screen 911 TTY functionalit…	CWE-284 Improper Access Control	CVE-2016-3898	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266402	5.5	MEDIUM Local	google	android	The WifiEnterpriseConfig class in net/wifi/WifiEnterpriseConfig.java in Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 includes a password in the…	CWE-200 Information Exposure	CVE-2016-3897	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266403	5.5	MEDIUM Local	google	android	AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 allows attackers to obtain sensitive EmailAccountCacheProvider information via a crafted appli…	CWE-200 Information Exposure	CVE-2016-3896	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266404	5.5	MEDIUM Local	google	android	Integer overflow in the Region::unflatten function in libs/ui/Region.cpp in mediaserver in Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows attackers to obtain sensitive information via…	CWE-200 CWE-190 Information Exposure Integer Overflow or Wraparound	CVE-2016-3895	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266405	5.5	MEDIUM Local	google	android	The Qualcomm DMA component in Android before 2016-09-05 on Nexus 6 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 29618014 and Qualcomm i…	CWE-200 Information Exposure	CVE-2016-3894	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266406	5.5	MEDIUM Local	google	android	The wcdcal_hwdep_ioctl_shared function in sound/soc/codecs/wcdcal-hwdep.c in the Qualcomm sound codec in Android before 2016-09-05 on Nexus 6P devices does not properly copy firmware data, which allo…	CWE-200 Information Exposure	CVE-2016-3893	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266407	5.5	MEDIUM Local	google	android	The Qualcomm SPMI driver in Android before 2016-09-05 on Nexus 5, 5X, 6, and 6P devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28760543 a…	CWE-200 Information Exposure	CVE-2016-3892	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266408	7.0	HIGH Local	google	android	The Java Debug Wire Protocol (JDWP) implementation in adb/sockets.cpp in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 mishandles socket close operations…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3890	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266409	6.8	MEDIUM Physics	google	android	Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism by accessing (1) an external tile from a syst…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3889	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm

266410	2.1	LOW Physics	google	android	internal/telephony/SMSDispatcher.java in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows physically proximate attackers to by…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3888	2024-11-21 11:50	2016-09-12	Show	GitHub Exploit DB Packet Storm