Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228341 6 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1339 2012-12-20 19:10 2009-04-5 Show GitHub Exploit DB Packet Storm
228342 5 警告 サン・マイクロシステムズ - Sun Java System Directory Server および Enterprise Edition の Online Help 機能におけるファイルの一部のコンテンツを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1332 2012-12-20 19:10 2009-04-15 Show GitHub Exploit DB Packet Storm
228343 7.5 危険 webfileexplorer - Web File Explorer の body.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1323 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
228344 4.3 警告 zazzle - Zazzle Store Builder の include/zstore.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1320 2012-12-20 19:10 2009-04-17 Show GitHub Exploit DB Packet Storm
228345 10 危険 webfileexplorer - Web File Explorer の body.asp における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1314 2012-12-20 19:10 2009-04-16 Show GitHub Exploit DB Packet Storm
228346 5 警告 Rapid Leech - Rapidleech の upload.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1089 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
228347 9.3 危険 pplive - PPLive の PPLive.exe における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1087 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
228348 5 警告 Piwik - Piwik における API 鍵を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1085 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
228349 6.4 警告 サン・マイクロシステムズ - Sun Java System IdM における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1084 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
228350 6.9 警告 PulseAudio - PulseAudio の core-util.c における任意のファイルのパーミッションを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-1299 2012-12-20 19:10 2010-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225591 7.5 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16021 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225592 8.6 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16019 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225593 6.8 MEDIUM
Network 		cisco unified_customer_voice_portal A vulnerability in the Operations, Administration, Maintenance and Provisioning (OAMP) OpsConsole Server for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remote attacker to… CWE-20
 Improper Input Validation  		CVE-2019-16017 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225594 8.8 HIGH
Network 		cisco ios
ios_xe 		A vulnerability in the web UI of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The v… CWE-352
 Origin Validation Error 		CVE-2019-16009 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225595 7.1 HIGH
Local 		cisco anyconnect_secure_mobility_client A vulnerability in the inter-service communication of Cisco AnyConnect Secure Mobility Client for Android could allow an unauthenticated, local attacker to perform a service hijack attack on an affec… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-16007 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225596 4.4 MEDIUM
Local 		cisco umbrella_roaming_client A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted d… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-16000 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225597 7.2 HIGH
Network 		cisco adaptive_security_appliance
adaptive_security_appliance_software
firepower_management_center
firepower_threat_defense 		A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authentica… CWE-787
 Out-of-bounds Write 		CVE-2019-15992 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225598 5.3 MEDIUM
Network 		cisco sg250x-24_firmware
sg250x-24p_firmware
sg250x-48_firmware
sg250x-48p_firmware
sg250-08_firmware
sg250-08hp_firmware
sg250-10p_firmware
sg250-18_firmware
sg250-26_firmware
s… 		A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to access sensitive device information. The vulnerability exists because the software la… CWE-287
Improper Authentication 		CVE-2019-15993 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225599 6.1 MEDIUM
Network 		cisco managed_services_accelerator A vulnerability in the web interface of Cisco Managed Services Accelerator (MSX) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due t… CWE-20
 Improper Input Validation  		CVE-2019-15974 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
225600 6.1 MEDIUM
Network 		cisco web_security_appliance A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use… CWE-79
Cross-site Scripting 		CVE-2019-15969 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm