Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227381 7.5 危険 toko - Toko Instan の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6004 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227382 4.3 警告 Thomson - Thomson SpeedTouch 716 の cgi/b/ic/connect におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6003 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227383 7.5 危険 SoftbizScripts - Softbiz Auctions Script の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5999 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227384 4.3 警告 Trolltech - Trolltech Qt の QSslSocket における偽装サービスの無効なサーバ証明書を承認するようにユーザを騙す脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5965 2012-12-20 18:33 2008-01-7 Show GitHub Exploit DB Packet Storm
227385 4.3 警告 レッドハット - RHN および Red Hat Network Satellite で使用されている Red Hat Network チャンネル検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5961 2012-12-20 18:33 2008-05-20 Show GitHub Exploit DB Packet Storm
227386 6.5 警告 SoftbizScripts - Softbiz Ad Management plus Script の ads.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5998 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227387 6.5 警告 SoftbizScripts - Softbiz Banner Exchange Network Script の campaign_stats.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5997 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227388 7.5 危険 SoftbizScripts - Softbiz Link Directory Script の searchresult.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5996 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227389 6.8 警告 php-tools - patBBcode の examples/patExampleGen/bbcodeSource.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5995 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
227390 6.8 警告 yappa-ng - Fritz Berger yappa-ng の check_noimage.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5994 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197561 7.3 HIGH
Local 		cisco ucs_director
ucs_director_express_for_big_data 		Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks … CWE-20
 Improper Input Validation  		CVE-2020-3240 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197562 8.8 HIGH
Network 		cisco ucs_director
ucs_director_express_for_big_data 		Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks … CWE-22
Path Traversal 		CVE-2020-3239 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197563 7.5 HIGH
Network 		cisco 5508_wireless_controller_firmware
5520_wireless_controller_firmware 		A vulnerability in the 802.11 Generic Advertisement Service (GAS) frame processing function of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause an… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-3273 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197564 7.5 HIGH
Network 		cisco 5508_wireless_controller_firmware
5520_wireless_controller_firmware 		A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol handler of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to … CWE-20
 Improper Input Validation  		CVE-2020-3262 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197565 6.5 MEDIUM
Network 		cisco aironet_1542i_firmware
aironet_1542d_firmware
aironet_1562i_firmware
aironet_1562e_firmware
aironet_1562d_firmware
aironet_1815_firmware
aironet_1830_firmware
aironet_1840_firmwa… 		A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an af… CWE-352
 Origin Validation Error 		CVE-2020-3261 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197566 6.5 MEDIUM
Adjacent 		cisco aironet_1542i_firmware
aironet_1542d_firmware
aironet_1815_firmware
aironet_1830_firmware
aironet_1840_firmware
aironet_1850_firmware 		A vulnerability in Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability … CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-3260 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197567 7.8 HIGH
Local 		cisco webex_network_recording_player
webex_meetings_server
webex_meetings_online
webex_meetings 		A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The… CWE-20
 Improper Input Validation  		CVE-2020-3194 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197568 7.5 HIGH
Network 		cisco unified_communications_manager
unified_contact_center_express 		A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could all… CWE-22
Path Traversal 		CVE-2020-3177 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197569 7.5 HIGH
Network 		cisco iot_field_network_director A vulnerability in the Constrained Application Protocol (CoAP) implementation of Cisco IoT Field Network Director could allow an unauthenticated remote attacker to cause a denial of service (DoS) con… CWE-20
 Improper Input Validation  		CVE-2020-3162 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm
197570 9.8 CRITICAL
Network 		cisco ip_phone_8865_firmware
ip_phone_8851_firmware
ip_phone_7841_firmware
ip_phone_7821_firmware
ip_phone_8811_firmware
ip_phone_8861_firmware
ip_phone_8845_firmware
ip_phone_7861_fir… 		A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a de… CWE-20
 Improper Input Validation  		CVE-2020-3161 2024-11-21 14:30 2020-04-16 Show GitHub Exploit DB Packet Storm