Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251911 5 警告 SmarterTools Inc. - SmarterTools SmarterStats における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4751 2011-12-19 16:17 2011-12-16 Show GitHub Exploit DB Packet Storm
251912 4.3 警告 SmarterTools Inc. - SmarterTools SmarterStats におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4750 2011-12-19 16:16 2011-12-16 Show GitHub Exploit DB Packet Storm
251913 4.6 警告 ヒューレット・パッカード
IBM
オラクル		 - HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4834 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
251914 7.5 危険 SugarCRM - SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4833 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
251915 7.5 危険 Moxiecode Systems AB
phpMyFAQ
PHPletter		 - 複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4825 2011-12-19 15:07 2011-10-25 Show GitHub Exploit DB Packet Storm
251916 7.5 危険 The Cacti Group - Cacti の auth_login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4824 2011-12-19 15:06 2011-09-26 Show GitHub Exploit DB Packet Storm
251917 4.3 警告 Atlassian - Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4822 2011-12-19 15:05 2011-10-24 Show GitHub Exploit DB Packet Storm
251918 3.6 注意 Artsoft Entertainment - Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4606 2011-12-19 15:05 2011-12-15 Show GitHub Exploit DB Packet Storm
251919 4.3 警告 Digium - Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-200
情報漏えい 		CVE-2011-4598 2011-12-19 15:03 2011-11-2 Show GitHub Exploit DB Packet Storm
251920 5 警告 Digium - Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4597 2011-12-19 15:01 2011-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265971 7.8 HIGH
Local 		google android The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3857 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265972 5.5 MEDIUM
Local 		google android Google Play services in Android before 2016-08-05 on Nexus devices allow local users to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3853 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265973 5.5 MEDIUM
Local 		google android The MediaTek Wi-Fi driver in Android before 2016-08-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 29141147 and MediaTe… CWE-200
Information Exposure 		CVE-2016-3852 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265974 8.1 HIGH
Network 		google android The LG Electronics bootloader Android before 2016-08-05 on Nexus 5X devices allows attackers to gain privileges by leveraging access to a privileged process, aka internal bug 29189941. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3851 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265975 7.3 HIGH
Local 		google android Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted header field i… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3850 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265976 7.8 HIGH
Local 		google android The ION driver in Android before 2016-08-05 on Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28939740. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3849 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265977 7.0 HIGH
Local 		google android The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28919417. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3848 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265978 7.8 HIGH
Local 		google android The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28871433. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3847 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265979 7.0 HIGH
Local 		google android The Serial Peripheral Interface driver in Android before 2016-08-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28817378. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3846 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm
265980 7.8 HIGH
Local 		google android The video driver in the kernel in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application, aka internal bug 28399876. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3845 2024-11-21 11:50 2016-08-6 Show GitHub Exploit DB Packet Storm