Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228331 10 危険 phpCollab - phpCollab の general/login.php における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-4304 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228332 6.8 警告 phpCollab - phpCollab における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4303 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228333 6.5 警告 rianxosencabos cms - Rianxosencabos CMS の Admin Control Panel におけるユーザの権限を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4245 2012-12-20 18:52 2008-09-25 Show GitHub Exploit DB Packet Storm
228334 7.5 危険 webcms - webCMS Portal Edition の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4185 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228335 4.3 警告 webcms - webCMS Portal Edition の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4184 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228336 7.5 危険 PreProject.com - Pre Real Estate Listings の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4177 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228337 7.5 危険 proarcadescript - ProArcadeScript における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4173 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228338 7.5 危険 rfaah - Cars & Vehicle の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4172 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228339 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228340 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201571 7.1 HIGH
Network 		cisco unified_contact_center_express A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent. The vulnerabili… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-3267 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201572 8.1 HIGH
Adjacent 		cisco ios Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-3257 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201573 8.1 HIGH
Network 		cisco iox A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, remote attacker to write or modify arbitrary files in the virtual i… CWE-20
 Improper Input Validation  		CVE-2020-3238 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201574 6.3 MEDIUM
Local 		cisco iox A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, local attacker to overwrite arbitrary files in the virtual instance… CWE-59
Link Following 		CVE-2020-3237 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201575 6.7 MEDIUM
Local 		cisco ios_xe A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due t… CWE-20
 Improper Input Validation  		CVE-2020-3215 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201576 6.7 MEDIUM
Local 		cisco ios_xe A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to escalate their privileges to a user with root-level privileges. The vulnerability is due to insufficient valid… CWE-20
 Improper Input Validation  		CVE-2020-3214 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201577 7.7 HIGH
Network 		cisco
oracle 		ios
ios_xe
goldengate_management_pack 		A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an authenticated, remote attack… CWE-20
 Improper Input Validation  		CVE-2020-3235 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201578 8.8 HIGH
Local 		cisco ios A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-3234 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201579 5.4 MEDIUM
Network 		cisco iox A vulnerability in the web-based Local Manager interface of the Cisco IOx Application Framework could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack aga… CWE-79
Cross-site Scripting 		CVE-2020-3233 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm
201580 7.7 HIGH
Network 		cisco ios_xe A vulnerability in the Simple Network Management Protocol (SNMP) implementation in Cisco ASR 920 Series Aggregation Services Router model ASR920-12SZ-IM could allow an authenticated, remote attacker … NVD-CWE-noinfo
CVE-2020-3232 2024-11-21 14:30 2020-06-4 Show GitHub Exploit DB Packet Storm