Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228571 5 警告 EFS Software - EFS Web Server の thumbnail.ghp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4809 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228572 6.8 警告 will kraft - EZ-Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4805 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228573 7.5 危険 will kraft - EZ-Blog における任意の投稿を作成される脆弱性 CWE-287
不適切な認証 		CVE-2009-4801 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228574 4 警告 Codeorigin - Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4800 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228575 6.8 警告 xlightftpd - Xlight FTP Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4795 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228576 7.5 危険 ryan haudenschilt - Family Connections における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4791 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228577 5 警告 XOOPS - XOOPS の Profiles モジュールにおける管理者による承認を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4851 2012-12-20 19:28 2009-11-11 Show GitHub Exploit DB Packet Storm
228578 7.5 危険 phplivesupport - PHP Live! における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4749 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
228579 7.5 危険 Tecnick.com - AIOCP の public/code/cp_html2xhtmlbasic.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4747 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
228580 10 危険 Skype Technologies S.A. - Windows 上で稼動する Skype の Extras Manager における脆弱性 CWE-noinfo
情報不足 		CVE-2009-4741 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
226311 6.7 MEDIUM
Local 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability the Cisco Enterprise NFV Infrastructure Software (NFVIS) restricted CLI could allow an authenticated, local attacker with valid administrator-level credentials to elevate privileges a… NVD-CWE-Other
CVE-2019-1972 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226312 9.8 CRITICAL
Network 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability in the web portal of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote attacker to perform a command injection attack and execute arbitrary c… CWE-20
 Improper Input Validation  		CVE-2019-1971 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226313 4.4 MEDIUM
Local 		cisco enterprise_network_function_virtualization_infrastructure Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to read arbitrary files on the underlying operating system (OS) of an aff… CWE-78
OS Command  		CVE-2019-1960 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226314 4.4 MEDIUM
Local 		cisco enterprise_network_function_virtualization_infrastructure Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to read arbitrary files on the underlying operating system (OS) of an aff… CWE-78
OS Command  		CVE-2019-1959 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226315 7.5 HIGH
Network 		cisco firepower_management_center
firepower_threat_defense 		A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote att… CWE-693
 Protection Mechanism Failure 		CVE-2019-1970 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226316 4.9 MEDIUM
Network 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system (OS) of an affected de… CWE-20
 Improper Input Validation  		CVE-2019-1961 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226317 8.8 HIGH
Network 		cisco hyperflex_hx_data_platform A vulnerability in the web-based management interface of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected … CWE-352
 Origin Validation Error 		CVE-2019-1958 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226318 7.5 HIGH
Network 		cisco iot_field_network_director A vulnerability in the web interface of Cisco IoT Field Network Director could allow an unauthenticated, remote attacker to trigger high CPU usage, resulting in a denial of service (DoS) condition on… NVD-CWE-noinfo
CVE-2019-1957 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226319 4.8 MEDIUM
Network 		cisco spa112_2-port_phone_adapter_firmware A vulnerability in the web-based interface of the Cisco SPA112 2-Port Phone Adapter could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against another user o… CWE-79
Cross-site Scripting 		CVE-2019-1956 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
226320 7.5 HIGH
Network 		cisco email_security_appliance_firmware A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass config… CWE-20
 Improper Input Validation  		CVE-2019-1955 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm