Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228021 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4318 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228022 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4317 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228023 4.3 警告 ZyXEL - Zyxel Zywall 2 上で稼動する ZyNOS の管理インターフェースにおける管理アクションを実行される脆弱性 - CVE-2007-4316 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228024 6.8 警告 pixlie - Pixlie の pixlie.php におけるリモートディレクトリツリーのファイルを読み込まれる脆弱性 - CVE-2007-4314 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228025 4.3 警告 サン・マイクロシステムズ - Sun Solaris の finger デーモン における特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性 - CVE-2007-4310 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228026 4.3 警告 Lamp Design - Storesprite におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4307 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228027 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4306 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228028 6.2 警告 systrace
Todd C. Miller
sysjail		 - NetBSD および OpenBSD 上で稼動している Systrace の Sudo monitor mode などにおけるシステムコール割り込みを無効にされる脆弱性 - CVE-2007-4305 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228029 6.8 警告 サン・マイクロシステムズ - Sun Java System Portal Server における任意の Java メソッドを実行される脆弱性 - CVE-2007-4289 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
228030 5 警告 s9y - Serendipity の entryproperties プラグインにおけるパスワード保護を回避される脆弱性 - CVE-2007-4282 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223541 6.1 MEDIUM
Network 		cisco prime_infrastructure A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of th… CWE-79
Cross-site Scripting 		CVE-2019-12713 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223542 7.5 HIGH
Network 		cisco firepower Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file ty… NVD-CWE-Other
CVE-2019-12697 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223543 7.5 HIGH
Network 		cisco firepower Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file ty… NVD-CWE-Other
CVE-2019-12696 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223544 8.8 HIGH
Network 		cisco firepower_management_center A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is du… CWE-20
 Improper Input Validation  		CVE-2019-12688 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223545 6.1 MEDIUM
Network 		cisco prime_infrastructure A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of th… CWE-79
Cross-site Scripting 		CVE-2019-12712 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223546 6.5 MEDIUM
Network 		cisco unified_communications_manager A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote att… CWE-611
XXE 		CVE-2019-12711 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223547 4.9 MEDIUM
Network 		cisco unified_communications_manager A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an authenticated, remote attac… CWE-89
SQL Injection 		CVE-2019-12710 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223548 6.1 MEDIUM
Network 		cisco unified_communications_manager
unified_communications_manager_im_and_presence_service
unity_connection 		A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a u… CWE-79
Cross-site Scripting 		CVE-2019-12707 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223549 7.5 HIGH
Network 		cisco email_security_appliance_firmware A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the con… CWE-20
 Improper Input Validation  		CVE-2019-12706 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm
223550 8.8 HIGH
Network 		cisco firepower_management_center A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is du… CWE-20
 Improper Input Validation  		CVE-2019-12687 2024-11-21 13:23 2019-10-3 Show GitHub Exploit DB Packet Storm