Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228411	7.5	危険	yarck	-	SH-News の action.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6664	2012-12-20 19:10	2009-04-8	Show	GitHub Exploit DB Packet Storm

228412	7.5	危険	phpauctions	-	PHPAuctions.info PHPAuctions の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6663	2012-12-20 19:10	2009-04-8	Show	GitHub Exploit DB Packet Storm

228413	4.3	警告	structum	-	InfoBiz Server の search_results.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6654	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

228414	7.5	危険	wh-com	-	Joomla! および Mambo 用の webhosting.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6653	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

228415	8.8	危険	versalsoft	-	Versalsoft HTTP Image Uploader ActiveX コントロールにおける任意のファイルを削除される脆弱性	CWE-16 環境設定	CVE-2008-6638	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

228416	7.8	危険	TYPO3 Association	-	TYPO3 用の wt_gallery エクステンションにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6630	2012-12-20 19:10	2009-04-7	Show	GitHub Exploit DB Packet Storm

228417	4.3	警告	webbdomain	-	WEBBDOMAIN Multi Languages WebShop Online の detail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6629	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

228418	7.5	危険	webbdomain	-	WEBBDOMAIN WebShop の getin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6627	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

228419	7.5	危険	webbdomain	-	WEBBDOMAIN Quiz の getin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6626	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

228420	7.5	危険	webbdomain	-	WEBBDOMAIN Polls の getin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6625	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195371	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1426	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195372	7.8	HIGH Local	cisco	enterprise_nfv_infrastructure_software	A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to perform a command injection attack on an affected device. The vulnerability is …	-	CVE-2021-1421	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195373	6.1	MEDIUM Network	cisco	ucs_manager integrated_management_controller encs_5100_firmware encs_5400_firmware c220_m6_firmware c225_m6_firmware c240_m6_firmware c245_m6_firmware c125_m5_firmware c220…	A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web pa…	-	CVE-2021-1397	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195374	8.1	HIGH Network	cisco	unified_communications_manager_im_and_presence_service	Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service could allow an authenticated, remote attacker to conduct SQL injection…	CWE-89 SQL Injection	CVE-2021-1365	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195375	8.1	HIGH Network	cisco	unified_communications_manager_im_and_presence_service	Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service could allow an authenticated, remote attacker to conduct SQL injection…	-	CVE-2021-1363	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195376	8.8	HIGH Adjacent	cisco	sd-wan_vmanage catalyst_sd-wan_manager	A vulnerability in the web-based messaging service interface of Cisco SD-WAN vManage Software could allow an unauthenticated, adjacent attacker to bypass authentication and authorization and modify t…	NVD-CWE-Other	CVE-2021-1284	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

195377	7.5	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (…	-	CVE-2021-1504	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

195378	7.5	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	A vulnerability in the SIP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to c…	NVD-CWE-noinfo	CVE-2021-1501	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

195379	5.3	MEDIUM Network	cisco snort	firepower_threat_defense ios_xe snort	Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerabili…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-1495	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

195380	7.1	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to ca…	-	CVE-2021-1493	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm