Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 6.8 警告 PHPKIT - PHPKIT におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7193 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226112 6.8 警告 woltlab - wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7192 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226113 5 警告 pps.jussieu - Polipo におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-7191 2012-12-20 19:10 2009-09-9 Show GitHub Exploit DB Packet Storm
226114 5 警告 rittwick banerjee - Telephone Directory 2008 の del_query1.php における任意の連絡先を削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7180 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226115 7.5 危険 XOOPS - XOOPS 用の Uploader モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7178 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226116 7.5 危険 yanick bourbeau - LNP における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7172 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226117 4.3 警告 yanick bourbeau - LNP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7171 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226118 9.3 危険 uusee - UUSee UUUpgrade ActiveX コントロールにおける任意のファイルを強制的にダウンロードされる脆弱性 CWE-Other
その他 		CVE-2008-7168 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226119 7.5 危険 sami ekblad - Page Manager の upload.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7167 2012-12-20 19:10 2009-09-8 Show GitHub Exploit DB Packet Storm
226120 10 危険 ryo-oh-ki - Shareaza における脆弱性 CWE-noinfo
情報不足 		CVE-2008-7164 2012-12-20 19:10 2009-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198281 7.0 HIGH
Local 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8098_firmware
ipq8074_firmware
kamorta_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware 		u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… CWE-787
CWE-367
 Out-of-bounds Write
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-3619 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
198282 7.8 HIGH
Local 		qualcomm apq8098_firmware
kamorta_firmware
msm8998_firmware
qcs404_firmware
qcs605_firmware
sda660_firmware
sda845_firmware
sdm630_firmware
sdm636_firmware
sdm660_firmware
sdm670… 		u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, … NVD-CWE-noinfo
CVE-2020-3611 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
198283 6.5 MEDIUM
Network 		cisco jabber A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An… CWE-20
 Improper Input Validation  		CVE-2020-3498 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198284 6.8 MEDIUM
Adjacent 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3453 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198285 4.7 MEDIUM
Network 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3451 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198286 6.5 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-3547 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198287 5.3 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive informatio… CWE-20
 Improper Input Validation  		CVE-2020-3546 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198288 6.7 MEDIUM
Local 		cisco firepower_extensible_operating_system A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds … CWE-787
 Out-of-bounds Write 		CVE-2020-3545 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198289 5.3 MEDIUM
Network 		cisco webex_training A vulnerability in Cisco Webex Training could allow an authenticated, remote attacker to join a password-protected meeting without providing the meeting password. The vulnerability is due to improper… CWE-20
 Improper Input Validation  		CVE-2020-3542 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
198290 4.4 MEDIUM
Local 		cisco webex_meetings
webex_teams 		A vulnerability in the media engine component of Cisco Webex Meetings Client for Windows, Cisco Webex Meetings Desktop App for Windows, and Cisco Webex Teams for Windows could allow an authenticated,… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-3541 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm