Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226891 7.5 危険 YABSoft - YABSoft AIH Script の out.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2536 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226892 7.5 危険 quickupcms - Concepts & Solutions QuickUpCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2530 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226893 4.3 警告 TYPO3 Association - TYPO3 用の WT Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2526 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226894 4.3 警告 TYPO3 Association - TYPO3 用の Event Database エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2525 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226895 7.5 危険 raknet - RakNet の Autopatcher サーバプラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2523 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226896 6.5 警告 YABSoft - YABSoft Mega File Hosting Script の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2521 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226897 2.1 注意 sarab - SaraB の sarab.sh スクリプトにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2517 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
226898 5 警告 シマンテック - Symantec Backup Exec System Recovery Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2512 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
226899 7.5 危険 WordPress.org - WordPress 用 Upload File プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2510 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
226900 4.3 警告 tr script news - Tr Script News の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2508 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197891 4.8 MEDIUM
Network 		cisco identity_services_engine Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross… CWE-79
Cross-site Scripting 		CVE-2020-3340 2024-11-21 14:30 2020-07-2 Show GitHub Exploit DB Packet Storm
197892 9.8 CRITICAL
Network 		cisco sg250x-24_firmware
sg250x-24p_firmware
sg250x-48_firmware
sg250x-48p_firmware
sg250-08_firmware
sg250-08hp_firmware
sg250-10p_firmware
sg250-18_firmware
sg250-26_firmware
s… 		A vulnerability in session management for the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to defeat authentication protectio… CWE-287
Improper Authentication 		CVE-2020-3297 2024-11-21 14:30 2020-07-2 Show GitHub Exploit DB Packet Storm
197893 5.8 MEDIUM
Network 		cisco asyncos A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation f… CWE-20
 Improper Input Validation  		CVE-2020-3368 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197894 5.3 MEDIUM
Network 		cisco ios_xr A vulnerability in the access control list (ACL) functionality of the standby route processor management interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to reach th… CWE-863
 Incorrect Authorization 		CVE-2020-3364 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197895 4.7 MEDIUM
Local 		cisco network_services_orchestrator A vulnerability in the CLI of Cisco Network Services Orchestrator (NSO) could allow an authenticated, local attacker to access confidential information on an affected device. The vulnerability is due… NVD-CWE-noinfo
CVE-2020-3362 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197896 9.8 CRITICAL
Network 		cisco webex_meetings_server
webex_meetings 		A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to gain unauthorized access to a vulnerable Webex site. The vulnerability is du… CWE-287
Improper Authentication 		CVE-2020-3361 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197897 5.3 MEDIUM
Network 		cisco unified_ip_phone_6901_firmware
unified_ip_phone_6961_firmware
unified_ip_phone_6945_firmware
unified_ip_phone_6941_firmware
unified_ip_phone_6921_firmware
unified_ip_phone_6911_firmwar… 		A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow an unauthenticated, remote attacker to view sensitive information on an affected device. The vulne… CWE-863
 Incorrect Authorization 		CVE-2020-3360 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197898 7.2 HIGH
Network 		cisco rv110w_firmware
rv130_firmware
rv130w_firmware
rv215w_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker with administrative privileges t… CWE-787
 Out-of-bounds Write 		CVE-2020-3269 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197899 7.2 HIGH
Network 		cisco rv110w_firmware
rv130_firmware
rv130w_firmware
rv215w_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker with administrative privileges t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-3268 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm
197900 6.1 MEDIUM
Network 		cisco data_center_network_manager A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack agains… CWE-79
Cross-site Scripting 		CVE-2020-3356 2024-11-21 14:30 2020-06-18 Show GitHub Exploit DB Packet Storm