Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227781 7.5 危険 torrenttrader - TorrentTrader Classic Edition の backend/admin-functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5311 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227782 7.5 危険 yannick tanguy - ELSEIF CMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5307 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227783 5 警告 yannick tanguy - ELSEIF CMS における重要な情報を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5306 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227784 7.5 危険 yannick tanguy - ELSEIF CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5305 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227785 4.3 警告 yannick tanguy - ELSEIF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5304 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227786 4.3 警告 snewscms - SnewsCMS Rus の news_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5303 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227787 4.3 警告 splitside - Directory Image Gallery の photos.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5292 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227788 4.3 警告 zomplog - Zomplog におけるファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5278 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227789 6.8 警告 trionic - Trionic Cite CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5271 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227790 7.5 危険 phpfreelog - phpFreeLog の log.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5258 2012-12-20 18:33 2007-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223861 8.2 HIGH
Local 		cisco firepower_threat_defense
firepower_9300_firmware
firepower_4115_firmware
firepower_4125_firmware
firepower_4145_firmware
firepower_4110_firmware
firepower_4120_firmware
firepower… 		Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2019-12674 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223862 7.5 HIGH
Network 		cisco adaptive_security_appliance
adaptive_security_appliance_software
firepower_threat_defense 		A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a den… CWE-20
 Improper Input Validation  		CVE-2019-12673 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223863 6.1 MEDIUM
Network 		cisco identity_services_engine A vulnerability in the web-based guest portal of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of … CWE-79
Cross-site Scripting 		CVE-2019-12631 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223864 9.8 CRITICAL
Network 		cisco security_manager A vulnerability in the Java deserialization function used by Cisco Security Manager could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerabil… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-12630 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223865 6.1 MEDIUM
Network 		dnnsoftware dotnetnuke Stored Cross-Site Scripting in DotNetNuke (DNN) Version before 9.4.0 allows remote attackers to store and embed the malicious script into the admin notification page. The exploit could be used to per… CWE-79
Cross-site Scripting 		CVE-2019-12562 2024-11-21 13:23 2019-09-27 Show GitHub Exploit DB Packet Storm
223866 2.7 LOW
Network 		silverstripe silverstripe In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution. NVD-CWE-noinfo
CVE-2019-12617 2024-11-21 13:23 2019-09-26 Show GitHub Exploit DB Packet Storm
223867 7.8 HIGH
Local 		cisco nx-os A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linu… CWE-78
OS Command  		CVE-2019-12717 2024-11-21 13:23 2019-09-26 Show GitHub Exploit DB Packet Storm
223868 6.7 MEDIUM
Local 		cisco ios_xr A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an authenticated, local attac… CWE-78
OS Command  		CVE-2019-12709 2024-11-21 13:23 2019-09-26 Show GitHub Exploit DB Packet Storm
223869 6.8 MEDIUM
Physics 		cisco ios A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker with physical access to an affected device to execute arbitrary code on the underlying operatin… CWE-59
Link Following 		CVE-2019-12672 2024-11-21 13:23 2019-09-26 Show GitHub Exploit DB Packet Storm
223870 7.8 HIGH
Local 		cisco ios_xe A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands on the underlying operating system (OS… CWE-863
 Incorrect Authorization 		CVE-2019-12671 2024-11-21 13:23 2019-09-26 Show GitHub Exploit DB Packet Storm