Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227551	7.5	危険	SquirrelMail Project	-	SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2631	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

227552	6.8	警告	WordPress.org	-	WordPress の sidebar.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2627	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227553	7.5	危険	taskdriver	-	TaskDriver における SQL インジェクションの脆弱性	-	CVE-2007-2622	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227554	4.6	警告	シマンテック	-	Symantec pcAnywhere における資格情報を取得される脆弱性	-	CVE-2007-2619	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227555	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の SRS Net Connect Software Proxy Core パッケージにおける任意のファイルの最初の行を読まれる脆弱性	-	CVE-2007-2617	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227556	7.5	危険	phphtmllib	-	phpHtmlLib の examples/widget8.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2614	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227557	8.3	危険	Wikka Development Team	-	WikkaWiki における任意の設定ファイルをアップロードされる脆弱性	-	CVE-2007-2613	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227558	7.5	危険	Wikka Development Team	-	WikkaWiki の libs/Wakka.class.php における SQL インジェクションの脆弱性	-	CVE-2007-2612	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227559	6.8	警告	wavelink media	-	TutorialCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2600	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

227560	7.5	危険	wavelink media	-	TutorialCMS における SQL インジェクションの脆弱性	-	CVE-2007-2599	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197561	7.3	HIGH Local	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-20 Improper Input Validation	CVE-2020-3240	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197562	8.8	HIGH Network	cisco	ucs_director ucs_director_express_for_big_data	Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks …	CWE-22 Path Traversal	CVE-2020-3239	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197563	7.5	HIGH Network	cisco	5508_wireless_controller_firmware 5520_wireless_controller_firmware	A vulnerability in the 802.11 Generic Advertisement Service (GAS) frame processing function of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause an…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-3273	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197564	7.5	HIGH Network	cisco	5508_wireless_controller_firmware 5520_wireless_controller_firmware	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol handler of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to …	CWE-20 Improper Input Validation	CVE-2020-3262	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197565	6.5	MEDIUM Network	cisco	aironet_1542i_firmware aironet_1542d_firmware aironet_1562i_firmware aironet_1562e_firmware aironet_1562d_firmware aironet_1815_firmware aironet_1830_firmware aironet_1840_firmwa…	A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an af…	CWE-352 Origin Validation Error	CVE-2020-3261	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197566	6.5	MEDIUM Adjacent	cisco	aironet_1542i_firmware aironet_1542d_firmware aironet_1815_firmware aironet_1830_firmware aironet_1840_firmware aironet_1850_firmware	A vulnerability in Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability …	CWE-400 Uncontrolled Resource Consumption	CVE-2020-3260	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197567	7.8	HIGH Local	cisco	webex_network_recording_player webex_meetings_server webex_meetings_online webex_meetings	A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The…	CWE-20 Improper Input Validation	CVE-2020-3194	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197568	7.5	HIGH Network	cisco	unified_communications_manager unified_contact_center_express	A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could all…	CWE-22 Path Traversal	CVE-2020-3177	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197569	7.5	HIGH Network	cisco	iot_field_network_director	A vulnerability in the Constrained Application Protocol (CoAP) implementation of Cisco IoT Field Network Director could allow an unauthenticated remote attacker to cause a denial of service (DoS) con…	CWE-20 Improper Input Validation	CVE-2020-3162	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

197570	9.8	CRITICAL Network	cisco	ip_phone_8865_firmware ip_phone_8851_firmware ip_phone_7841_firmware ip_phone_7821_firmware ip_phone_8811_firmware ip_phone_8861_firmware ip_phone_8845_firmware ip_phone_7861_fir…	A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a de…	CWE-20 Improper Input Validation	CVE-2020-3161	2024-11-21 14:30	2020-04-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed