Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228241 5 警告 WeBid Support - WeBid auction script における SQL クエリログを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7118 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228242 5 警告 WeBid Support - WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7117 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228243 7.5 危険 WeBid Support - WeBid auction script の admin panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7116 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228244 4.3 警告 phpcart - Carmosa phpCart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7108 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228245 5 警告 ソフォス - Microsoft Exchange 用の Sophos PureMessage におけるスキャン保護のリモート回避をされる脆弱性 CWE-Other
その他 		CVE-2008-7106 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
228246 5 警告 ソフォス - Microsoft Exchange 用の Sophos PureMessage におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7105 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
228247 5 警告 ソフォス - Microsoft Exchange 用の PureMessage におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7104 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
228248 6.8 警告 qsoft-inc - Qsoft K-Rate Premium の Manage Templates 機能における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7099 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
228249 4.3 警告 qsoft-inc - Qsoft K-Rate Premium におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7098 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
228250 7.5 危険 qsoft-inc - Qsoft K-Rate Premium における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7097 2012-12-20 19:10 2009-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195411 6.1 MEDIUM
Network 		cisco unified_communications_manager Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&… CWE-79
Cross-site Scripting 		CVE-2021-1407 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195412 4.9 MEDIUM
Network 		cisco unified_communications_manager A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker… CWE-200
Information Exposure 		CVE-2021-1406 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195413 4.3 MEDIUM
Network 		cisco unified_communications_manager A vulnerability in the Self Care Portal of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authen… - CVE-2021-1399 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195414 7.8 HIGH
Local 		cisco immunet
clamav
advanced_malware_protection_for_endpoints 		A vulnerability in the dynamic link library (DLL) loading mechanism in Cisco Advanced Malware Protection (AMP) for Endpoints Windows Connector, ClamAV for Windows, and Immunet could allow an authenti… - CVE-2021-1386 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195415 6.1 MEDIUM
Network 		cisco unified_communications_manager_im_\&_presence_service
unified_communications_manager
unity_connection 		Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&… CWE-79
Cross-site Scripting 		CVE-2021-1380 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195416 8.8 HIGH
Network 		cisco unified_communications_manager
prime_license_manager
unified_communications_manager_im_\&_presence_service
unity_connection 		A vulnerability in the SOAP API endpoint of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presen… - CVE-2021-1362 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195417 8.8 HIGH
Adjacent 		cisco rv132w_firmware
rv134w_firmware
rv160_firmware
rv160w_firmware
rv260_firmware
rv260p_firmware
rv260w_firmware
rv340_firmware
rv340w_firmware
rv345_firmware
rv345p_firmwa… 		Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary cod… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-1309 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195418 7.4 HIGH
Adjacent 		cisco rv132w_firmware
rv134w_firmware
rv160_firmware
rv160w_firmware
rv260_firmware
rv260p_firmware
rv260w_firmware
rv340_firmware
rv340w_firmware
rv345_firmware
rv345p_firmwa… 		Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary cod… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-1308 2024-11-21 14:44 2021-04-8 Show GitHub Exploit DB Packet Storm
195419 6.1 MEDIUM
Network 		tableau tableau_server Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users. CWE-601
Open Redirect 		CVE-2021-1629 2024-11-21 14:44 2021-03-27 Show GitHub Exploit DB Packet Storm
195420 9.8 CRITICAL
Network 		salesforce mule MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Affected versions: Mule 4… CWE-611
XXE 		CVE-2021-1628 2024-11-21 14:44 2021-03-27 Show GitHub Exploit DB Packet Storm