Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227911	7.5	危険	vbzoom	-	VBZooM の reply.php における SQL インジェクションの脆弱性	-	CVE-2007-3588	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

227912	7.5	危険	postnuke software foundation	-	PNphpBB2 の viewforum.php における SQL インジェクションの脆弱性	-	CVE-2007-3584	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

227913	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3580	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

227914	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3579	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

227915	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3578	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

227916	4.3	警告	PHPIDS	-	PHP iCalendar の print.php における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3577	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

227917	9.3	危険	yoggie	-	Yoggie Pico and Pico Pro 上の Web インターフェースにおける任意のコマンドを実行される脆弱性	-	CVE-2007-3572	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

227918	4.3	警告	softlink europe	-	Oliver Library Management System におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3569	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

227919	4.3	警告	webixir	-	Efendy Blog の ara.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3561	2012-12-20 18:19	2007-07-4	Show	GitHub Exploit DB Packet Storm

227920	3.5	注意	PHP-Fusion	-	PHP-Fusion の infusions/shoutbox_panel/shoutbox_panel.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3559	2012-12-20 18:19	2007-07-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223221	6.5	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to access sensitive information on an affec…	CWE-200 Information Exposure	CVE-2019-12708	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223222	6.1	MEDIUM Network	cisco	telepresence_video_communication_server	A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct a c…	CWE-79 Cross-site Scripting	CVE-2019-12705	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223223	6.1	MEDIUM Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a …	CWE-79 Cross-site Scripting	CVE-2019-12718	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223224	6.5	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to view the contents of arbitrary files on …	CWE-22 Path Traversal	CVE-2019-12704	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223225	5.2	MEDIUM Adjacent	cisco	spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA122 ATA with Router Devices could allow an unauthenticated, adjacent attacker to conduct cross-site scripting attacks. The vulnerabil…	CWE-79 Cross-site Scripting	CVE-2019-12703	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223226	5.4	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to conduct cross-site scripting attacks. Th…	CWE-79 Cross-site Scripting	CVE-2019-12702	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223227	5.4	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use…	CWE-79 Cross-site Scripting	CVE-2019-12638	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223228	5.4	MEDIUM Network	cisco	identity_services_engine	Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks agai…	CWE-79 Cross-site Scripting	CVE-2019-12637	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223229	8.8	HIGH Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF)…	CWE-352 Origin Validation Error	CVE-2019-12636	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223230	7.5	HIGH Network	gluehome	glue_smart_lock_firmware	Glue Smart Lock 2.7.8 devices do not properly block guest access in certain situations where the network connection is unavailable.	CWE-862 Missing Authorization	CVE-2019-12944	2024-11-21 13:23	2019-10-15	Show	GitHub Exploit DB Packet Storm