Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226581	4.3	警告	review-script	-	Five Star Review Script の search/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3779	2012-12-20 18:52	2008-08-26	Show	GitHub Exploit DB Packet Storm

226582	7.5	危険	simasy	-	Simasy CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3774	2012-12-20 18:52	2008-08-22	Show	GitHub Exploit DB Packet Storm

226583	4.3	警告	vBulletin Solutions, Inc.	-	vBulletin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3773	2012-12-20 18:52	2008-08-18	Show	GitHub Exploit DB Packet Storm

226584	7.5	危険	turnkey web tools	-	Turnkey Web Tools SunShop Shopping Cart の class.ajax.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3768	2012-12-20 18:52	2008-08-22	Show	GitHub Exploit DB Packet Storm

226585	7.5	危険	smartisoft	-	phpBazar の classified.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3767	2012-12-20 18:52	2008-08-22	Show	GitHub Exploit DB Packet Storm

226586	5	警告	realtime internet band rehearsal	-	Realtime Internet llcon におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3766	2012-12-20 18:52	2008-08-22	Show	GitHub Exploit DB Packet Storm

226587	7.5	危険	turnkey web tools	-	Turnkey PHP Live Helper の globalsoff.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3764	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

226588	6.8	警告	turnkey web tools	-	Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-3763	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

226589	7.5	危険	turnkey web tools	-	Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3762	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

226590	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Forced Matrix Script の tr1.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3757	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198211	4.8	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) att…	CWE-79 Cross-site Scripting	CVE-2020-3149	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198212	7.5	HIGH Network	clamav canonical	clamav ubuntu_linux	A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service …	CWE-125 Out-of-bounds Read	CVE-2020-3123	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198213	6.5	MEDIUM Adjacent	cisco	firepower_extensible_operating_system fxos ios_xr nx-os ucs_manager	A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a re…	CWE-190 Integer Overflow or Wraparound	CVE-2020-3120	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198214	8.8	HIGH Adjacent	cisco	nx-os ucs_manager	A vulnerability in the Cisco Discovery Protocol implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected de…	CWE-787 Out-of-bounds Write	CVE-2020-3119	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198215	8.8	HIGH Adjacent	cisco	ios_xr	A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected d…	CWE-787 Out-of-bounds Write	CVE-2020-3118	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198216	8.8	HIGH Adjacent	cisco	ip_conference_phone_7832_firmware ip_conference_phone_7832_with_multiplatform_firmware ip_conference_phone_8832_firmware ip_conference_phone_8832_with_multiplatform_firmware ip_phone_6821…	A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent attacker to remotely execute code with root privileges or cause a reload…	CWE-20 Improper Input Validation	CVE-2020-3111	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198217	8.8	HIGH Adjacent	cisco	video_surveillance_8400_ip_camera_firmware video_surveillance_8030_ip_camera_firmware video_surveillance_8020_ip_camera_firmware video_surveillance_8000p_ip_camera_firmware video_surveill…	A vulnerability in the Cisco Discovery Protocol implementation for the Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute code remotely or ca…	CWE-20 Improper Input Validation	CVE-2020-3110	2024-11-21 14:30	2020-02-6	Show	GitHub Exploit DB Packet Storm

198218	7.5	HIGH Network	cisco	sg200-50_firmware sg200-50p_firmware sg200-50fp_firmware sg200-26_firmware sg200-26p_firmware sg200-26fp_firmware sg200-18_firmware sg200-10fp_firmware sg200-08_firmware sg…	A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is…	CWE-20 Improper Input Validation	CVE-2020-3147	2024-11-21 14:30	2020-01-31	Show	GitHub Exploit DB Packet Storm

198219	7.5	HIGH Network	cisco	webex_meetings_online	A vulnerability in Cisco Webex Meetings Suite sites and Cisco Webex Meetings Online sites could allow an unauthenticated, remote attendee to join a password-protected meeting without providing the me…	CWE-306 Missing Authentication for Critical Function	CVE-2020-3142	2024-11-21 14:30	2020-01-26	Show	GitHub Exploit DB Packet Storm

198220	8.8	HIGH Local	cisco	sd-wan_firmware	A vulnerability in the CLI of the Cisco SD-WAN Solution vManage software could allow an authenticated, local attacker to elevate privileges to root-level privileges on the underlying operating system…	CWE-269 Improper Privilege Management	CVE-2020-3115	2024-11-21 14:30	2020-01-26	Show	GitHub Exploit DB Packet Storm