Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226521 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
226522 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
226523 6.8 警告 zanfi solutions - Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4158 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
226524 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4157 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
226525 7.5 危険 razorecommerce - RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4143 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
226526 7.5 危険 x10media - x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4141 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
226527 10 危険 technote - Technote の skin_shop/standard/3_plugin_twindow/twindow_notice.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4138 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
226528 7.8 危険 s60 - Nokia E90 Communicator および Nseries N82 上で稼動している Symbian OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4135 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
226529 7.5 危険 phprealty - phpRealty の manager/static/view.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4134 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
226530 5 警告 phpBB - phpBB の search 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4125 2012-12-20 18:52 2008-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197781 4.8 MEDIUM
Network 		cisco data_center_network_manager A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack… CWE-79
Cross-site Scripting 		CVE-2020-3439 2024-11-21 14:31 2020-08-27 Show GitHub Exploit DB Packet Storm
197782 4.1 MEDIUM
Network 		cisco webex_meetings_server
webex_meetings 		Multiple vulnerabilities in the user interface of Cisco Webex Meetings Desktop App could allow an authenticated, remote attacker to obtain restricted information from other Webex users. These vulnera… CWE-20
 Improper Input Validation  		CVE-2020-3502 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197783 4.1 MEDIUM
Network 		cisco webex_meetings_server
webex_meetings 		Multiple vulnerabilities in the user interface of Cisco Webex Meetings Desktop App could allow an authenticated, remote attacker to obtain restricted information from other Webex users. These vulnera… CWE-20
 Improper Input Validation  		CVE-2020-3501 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197784 8.6 HIGH
Network 		cisco staros A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-3500 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197785 5.0 MEDIUM
Network 		cisco webex_meetings_online A vulnerability in the contacts feature of Cisco Webex Meetings could allow an authenticated, remote attacker with a legitimate user account to access sensitive information. The vulnerability is due … CWE-863
 Incorrect Authorization 		CVE-2020-3472 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197786 4.8 MEDIUM
Network 		cisco ucs_director A vulnerability in the web-based management interface of Cisco UCS Director could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attac… CWE-79
Cross-site Scripting 		CVE-2020-3464 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197787 6.1 MEDIUM
Network 		cisco webex_meetings_online A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-… CWE-79
Cross-site Scripting 		CVE-2020-3463 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197788 4.3 MEDIUM
Network 		cisco ios_xr A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent authorized users from monitoring the … CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-3449 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197789 5.8 MEDIUM
Network 		cisco cyber_vision_center A vulnerability in an access control mechanism of Cisco Cyber Vision Center Software could allow an unauthenticated, remote attacker to bypass authentication and access internal services that are run… CWE-306
Missing Authentication for Critical Function 		CVE-2020-3448 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm
197790 6.5 MEDIUM
Network 		cisco content_security_management_appliance
email_security_appliance 		A vulnerability in the CLI of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attac… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-3447 2024-11-21 14:31 2020-08-18 Show GitHub Exploit DB Packet Storm