Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228621	7.5	危険	ryan haudenschilt	-	PHP の Ryan Haudenschilt Battle.net Clan Script における SQL インジェクションの脆弱性	-	CVE-2007-1909	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

228622	4.3	警告	pineapple technologies	-	Pineapple Technologies QuizShock の auth.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1905	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

228623	2.6	注意	sonicbb	-	SonicBB の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1903	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228624	6.8	警告	sonicbb	-	SonicBB における SQL インジェクションの脆弱性	-	CVE-2007-1902	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228625	4.3	警告	sonicbb	-	SonicBB における重要な情報を取得される脆弱性	-	CVE-2007-1901	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228626	6.5	警告	WordPress.org	-	WordPress の xmlrpc における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1897	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

228627	5.8	警告	sky gunning	-	Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1896	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

228628	6.8	警告	sky gunning	-	Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1895	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

228629	4.3	警告	WordPress.org	-	WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1894	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228630	4.9	警告	WordPress.org	-	WordPress の xmlrpc におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-1893	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197421	6.0	MEDIUM Local	cisco	ios	A vulnerability in the CLI implementation of a specific command of Cisco IOS XE Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying host file system. …	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-3476	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197422	6.5	MEDIUM Adjacent	cisco	ios_xe	A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause…	CWE-20 Improper Input Validation	CVE-2020-3429	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197423	6.5	MEDIUM Adjacent	cisco	ios_xe	A vulnerability in the WLAN Local Profiling feature of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause a denial…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-3428	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197424	9.1	CRITICAL Network	cisco	ios	A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 S…	CWE-20 Improper Input Validation	CVE-2020-3426	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197425	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in the implementation of the Lua interpreter that is integrated in Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code with root privileges on…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-3423	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197426	7.5	HIGH Network	cisco	ios_xe	A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing p…	NVD-CWE-noinfo	CVE-2020-3422	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197427	7.5	HIGH Network	cisco	ios_xe	Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through t…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-3421	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197428	4.7	MEDIUM Adjacent	cisco	ios_xe	A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being …	NVD-CWE-Other	CVE-2020-3418	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197429	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and break the chain of trust. This vulnerability is due to incorrect vali…	CWE-78 OS Command	CVE-2020-3417	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

197430	6.7	MEDIUM Local	cisco	ios_xe	Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 …	CWE-94 Code Injection	CVE-2020-3416	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm