Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227941	6.4	警告	qt-cute	-	QuickTalk フォーラムにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3505	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

227942	10	危険	xeforum	-	Xeweb XEForum における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3500	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

227943	6.4	警告	slackroll	-	SlackRoll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3499	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

227944	4.3	警告	SAP	-	SAP NetWeaver Nw04 の BC-WD-JAV におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3496	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

227945	4.3	警告	SAP	-	SAP Basis コンポーネントの BC-MID-ICF におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3495	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

227946	7.5	危険	Progress Software Corporation	-	Progress Software OpenEdge の _mprosrv におけるバッファオーバーフローの脆弱性	-	CVE-2007-3491	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

227947	4.3	警告	Yandex	-	Yandex Server におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3485	2012-12-20 18:19	2007-06-28	Show	GitHub Exploit DB Packet Storm

227948	10	危険	BlackBerry	-	Research in Motion BlackBerry Enterprise Server におけるマルウェアを読み込む脆弱性	-	CVE-2007-3483	2012-12-20 18:19	2007-06-28	Show	GitHub Exploit DB Packet Storm

227949	7.8	危険	VideoLAN	-	VideoLAN VLC Media Player の input.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3468	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

227950	7.8	危険	VideoLAN	-	VideoLAN VLC Media Player の stats.c における整数オーバーフローの脆弱性	-	CVE-2007-3467	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223271	8.2	HIGH Local	cisco	firepower_threat_defense firepower_9300_firmware firepower_4115_firmware firepower_4125_firmware firepower_4145_firmware firepower_4110_firmware firepower_4120_firmware firepower…	Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and…	CWE-116 Improper Encoding or Escaping of Output	CVE-2019-12674	2024-11-21 13:23	2019-10-3	Show	GitHub Exploit DB Packet Storm

223272	7.5	HIGH Network	cisco	adaptive_security_appliance adaptive_security_appliance_software firepower_threat_defense	A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a den…	CWE-20 Improper Input Validation	CVE-2019-12673	2024-11-21 13:23	2019-10-3	Show	GitHub Exploit DB Packet Storm

223273	6.1	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based guest portal of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of …	CWE-79 Cross-site Scripting	CVE-2019-12631	2024-11-21 13:23	2019-10-3	Show	GitHub Exploit DB Packet Storm

223274	9.8	CRITICAL Network	cisco	security_manager	A vulnerability in the Java deserialization function used by Cisco Security Manager could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerabil…	CWE-502 Deserialization of Untrusted Data	CVE-2019-12630	2024-11-21 13:23	2019-10-3	Show	GitHub Exploit DB Packet Storm

223275	6.1	MEDIUM Network	dnnsoftware	dotnetnuke	Stored Cross-Site Scripting in DotNetNuke (DNN) Version before 9.4.0 allows remote attackers to store and embed the malicious script into the admin notification page. The exploit could be used to per…	CWE-79 Cross-site Scripting	CVE-2019-12562	2024-11-21 13:23	2019-09-27	Show	GitHub Exploit DB Packet Storm

223276	2.7	LOW Network	silverstripe	silverstripe	In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution.	NVD-CWE-noinfo	CVE-2019-12617	2024-11-21 13:23	2019-09-26	Show	GitHub Exploit DB Packet Storm

223277	7.8	HIGH Local	cisco	nx-os	A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linu…	CWE-78 OS Command	CVE-2019-12717	2024-11-21 13:23	2019-09-26	Show	GitHub Exploit DB Packet Storm

223278	6.7	MEDIUM Local	cisco	ios_xr	A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an authenticated, local attac…	CWE-78 OS Command	CVE-2019-12709	2024-11-21 13:23	2019-09-26	Show	GitHub Exploit DB Packet Storm

223279	6.8	MEDIUM Physics	cisco	ios	A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker with physical access to an affected device to execute arbitrary code on the underlying operatin…	CWE-59 Link Following	CVE-2019-12672	2024-11-21 13:23	2019-09-26	Show	GitHub Exploit DB Packet Storm

223280	7.8	HIGH Local	cisco	ios_xe	A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands on the underlying operating system (OS…	CWE-863 Incorrect Authorization	CVE-2019-12671	2024-11-21 13:23	2019-09-26	Show	GitHub Exploit DB Packet Storm