Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228521	5	警告	tuxplanet	-	BilboBlog における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3304	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228522	6.8	警告	tuxplanet	-	BilboBlog の admin/login.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3303	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228523	6	警告	tuxplanet	-	BilboBlog の admin/delete.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3302	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228524	3.5	注意	tuxplanet	-	BilboBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3301	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228525	6	警告	socialengine	-	SE における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3298	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228526	7.5	危険	socialengine	-	SE における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3297	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

228527	5	警告	sierra	-	SWAT におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3286	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

228528	5	警告	レッドハット	-	Red Hat Enterprise IPA および FreeIPA のデフォルト設定における Kerberos マスターキーを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3274	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

228529	5	警告	winsoftmagic	-	WinSoftMagic WRPC Lite におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3269	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

228530	7.5	危険	softacid	-	SoftAcid HRS Multi の picture_pic_bv.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3266	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225001	5.3	MEDIUM Network	cisco	webex_meetings_server webex_meetings_online webex_training_center webex_meeting_center webex_event_center webex_support_center	A vulnerability in web interface of the Cisco Webex Event Center, Cisco Webex Meeting Center, Cisco Webex Support Center, and Cisco Webex Training Center could allow an unauthenticated, remote attack…	CWE-287 Improper Authentication	CVE-2019-15987	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225002	6.7	MEDIUM Local	cisco	unity_express	A vulnerability in the CLI of Cisco Unity Express could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. To exploit this vulnerability, an a…	CWE-20 Improper Input Validation	CVE-2019-15986	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225003	8.8	HIGH Network	cisco	unified_communications_manager	A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The…	CWE-89 SQL Injection	CVE-2019-15972	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225004	4.3	MEDIUM Network	cisco	email_security_appliance_firmware	A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-15971	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225005	5.4	MEDIUM Network	cisco	unified_communications_domain_manager hosted_collaboration_solution	A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS…	CWE-79 Cross-site Scripting	CVE-2019-15968	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225006	6.1	MEDIUM Network	cisco	network_level_service industrial_network_director	A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against…	CWE-79 Cross-site Scripting	CVE-2019-15973	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225007	4.4	MEDIUM Local	cisco	telepresence_collaboration_endpoint roomos	A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. …	NVD-CWE-Other	CVE-2019-15967	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225008	5.4	MEDIUM Network	cisco	webex_meetings	A vulnerability in the Webex Network Recording Admin page of Cisco Webex Meetings could allow an authenticated, remote attacker to elevate privileges in the context of the affected page. To exploit t…	NVD-CWE-Other	CVE-2019-15960	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225009	9.8	CRITICAL Network	cisco	prime_infrastructure evolved_programmable_network_manager	A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated remote attacker to execute arbitrary code with …	CWE-20 Improper Input Validation	CVE-2019-15958	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225010	8.8	HIGH Network	cisco	asyncos web_security_appliance	A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform an unauthorized system reset …	NVD-CWE-Other	CVE-2019-15956	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm