Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227751 10 危険 forkosh - mathTex の mathtex.cgi における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-1383 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
227752 4.3 警告 レッドハット - Red Hat JBoss Enterprise Application Platform の JBossAs におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1380 2012-12-20 19:10 2009-12-9 Show GitHub Exploit DB Packet Storm
227753 9.3 危険 xilisoft - Xilisoft Video Converter の ape_plugin.plg におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1370 2012-12-20 19:10 2009-04-22 Show GitHub Exploit DB Packet Storm
227754 4.9 警告 サン・マイクロシステムズ - Sun OpenSolaris の SCTP におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1359 2012-12-20 19:10 2009-04-19 Show GitHub Exploit DB Packet Storm
227755 6.8 警告 サン・マイクロシステムズ - Sun Java System Delegated Administrator の da/DA/Login における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1357 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
227756 4 警告 sergey lyubka - Mongoose におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1354 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
227757 5 警告 sebastian fernandez - Zervit Webserver の libz/misc.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1353 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
227758 4.3 警告 レッドハット - C2Net Stronghold におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1349 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
227759 6 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1339 2012-12-20 19:10 2009-04-5 Show GitHub Exploit DB Packet Storm
227760 5 警告 サン・マイクロシステムズ - Sun Java System Directory Server および Enterprise Edition の Online Help 機能におけるファイルの一部のコンテンツを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1332 2012-12-20 19:10 2009-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224921 7.5 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16021 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224922 8.6 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16019 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224923 6.8 MEDIUM
Network 		cisco unified_customer_voice_portal A vulnerability in the Operations, Administration, Maintenance and Provisioning (OAMP) OpsConsole Server for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remote attacker to… CWE-20
 Improper Input Validation  		CVE-2019-16017 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224924 8.8 HIGH
Network 		cisco ios
ios_xe 		A vulnerability in the web UI of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The v… CWE-352
 Origin Validation Error 		CVE-2019-16009 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224925 7.1 HIGH
Local 		cisco anyconnect_secure_mobility_client A vulnerability in the inter-service communication of Cisco AnyConnect Secure Mobility Client for Android could allow an unauthenticated, local attacker to perform a service hijack attack on an affec… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-16007 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224926 4.4 MEDIUM
Local 		cisco umbrella_roaming_client A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted d… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-16000 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224927 7.2 HIGH
Network 		cisco adaptive_security_appliance
adaptive_security_appliance_software
firepower_management_center
firepower_threat_defense 		A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authentica… CWE-787
 Out-of-bounds Write 		CVE-2019-15992 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224928 5.3 MEDIUM
Network 		cisco sg250x-24_firmware
sg250x-24p_firmware
sg250x-48_firmware
sg250x-48p_firmware
sg250-08_firmware
sg250-08hp_firmware
sg250-10p_firmware
sg250-18_firmware
sg250-26_firmware
s… 		A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to access sensitive device information. The vulnerability exists because the software la… CWE-287
Improper Authentication 		CVE-2019-15993 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224929 6.1 MEDIUM
Network 		cisco managed_services_accelerator A vulnerability in the web interface of Cisco Managed Services Accelerator (MSX) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due t… CWE-20
 Improper Input Validation  		CVE-2019-15974 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
224930 6.1 MEDIUM
Network 		cisco web_security_appliance A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use… CWE-79
Cross-site Scripting 		CVE-2019-15969 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm