Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228631	7.8	危険	VMware	-	VMware Workstation におけるゲスト OS がサービス運用妨害 (DoS) 状態となる脆弱性	-	CVE-2007-1877	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228632	7.2	危険	VMware	-	VMware Workstation における "仮想マシンに登録されたコンテキストが破損" する脆弱性	-	CVE-2007-1876	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228633	4.3	警告	toenda software development	-	toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1872	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

228634	7.5	危険	webasyst llc	-	Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1855	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

228635	7.5	危険	really simple php and ajax	-	RSPA におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1851	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

228636	7.5	危険	XOOPS	-	XOOPS 用の Repository モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1847	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

228637	7.5	危険	XOOPS	-	Xoops 用の MyAds モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1846	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

228638	7.5	危険	XOOPS	-	Xoops 用の Friendfinder モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1838	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228639	5	警告	web-app.org	-	web-app.org WebAPP における特定のファイルをアップロードされる脆弱性	-	CVE-2007-1832	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228640	6	警告	web-app.org	-	web-app.org WebAPP におけるファイルを開かれる脆弱性	-	CVE-2007-1831	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223811	6.5	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to access sensitive information on an affec…	CWE-200 Information Exposure	CVE-2019-12708	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223812	6.1	MEDIUM Network	cisco	telepresence_video_communication_server	A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct a c…	CWE-79 Cross-site Scripting	CVE-2019-12705	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223813	6.1	MEDIUM Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a …	CWE-79 Cross-site Scripting	CVE-2019-12718	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223814	6.5	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to view the contents of arbitrary files on …	CWE-22 Path Traversal	CVE-2019-12704	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223815	5.2	MEDIUM Adjacent	cisco	spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA122 ATA with Router Devices could allow an unauthenticated, adjacent attacker to conduct cross-site scripting attacks. The vulnerabil…	CWE-79 Cross-site Scripting	CVE-2019-12703	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223816	5.4	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to conduct cross-site scripting attacks. Th…	CWE-79 Cross-site Scripting	CVE-2019-12702	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223817	5.4	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use…	CWE-79 Cross-site Scripting	CVE-2019-12638	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223818	5.4	MEDIUM Network	cisco	identity_services_engine	Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks agai…	CWE-79 Cross-site Scripting	CVE-2019-12637	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223819	8.8	HIGH Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF)…	CWE-352 Origin Validation Error	CVE-2019-12636	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

223820	7.5	HIGH Network	gluehome	glue_smart_lock_firmware	Glue Smart Lock 2.7.8 devices do not properly block guest access in certain situations where the network connection is unavailable.	CWE-862 Missing Authorization	CVE-2019-12944	2024-11-21 13:23	2019-10-15	Show	GitHub Exploit DB Packet Storm