Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228681 7.5 危険 Simple Machines - SMF におけるメッセージの作成時に任意の PHP コードを実行され脆弱性 - CVE-2007-3309 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228682 7.5 危険 Simple Machines - SMF における CAPTCHA テストを通過される脆弱性 - CVE-2007-3308 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228683 7.5 危険 solar empire - Solar Empire の game_listing.php における SQL インジェクションの脆弱性 - CVE-2007-3307 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228684 7.5 危険 ultrize - MiniBill の crontab/run_billing.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3306 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228685 7.5 危険 spey - Spey における SQL インジェクションの脆弱性 - CVE-2007-3298 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228686 9.3 危険 迅雷 - xunlei Web Thunderbolt の ThunderServer.webThunder.1 ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 - CVE-2007-3296 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228687 6.5 警告 yabb - YaBB におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3295 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228688 7.5 危険 XOOPS - XOOPS 用の WiwiMod モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3289 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228689 4.3 警告 skeltoac - WordPress 用の Automattic Stats プラグインにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3288 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
228690 6.8 警告 サン・マイクロシステムズ - Sun Solaris の GNOME XScreenSaver におけるコンソールへアクセスされる脆弱性 - CVE-2007-3283 2012-12-20 18:19 2007-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222371 9.1 CRITICAL
Network 		cisco smart_software_manager_on-prem A vulnerability in the application programming interface (API) of Cisco Smart Software Manager On-Prem could allow an unauthenticated, remote attacker to change user account information which can pre… CWE-20
 Improper Input Validation  		CVE-2019-16029 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222372 6.5 MEDIUM
Network 		cisco ios_xr A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an authenticated,… CWE-20
 Improper Input Validation  		CVE-2019-16027 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222373 5.9 MEDIUM
Network 		cisco staros A vulnerability in the implementation of the Stream Control Transmission Protocol (SCTP) on Cisco Mobility Management Entity (MME) could allow an unauthenticated, remote attacker to cause a denial of… CWE-20
 Improper Input Validation  		CVE-2019-16026 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222374 6.1 MEDIUM
Network 		cisco crosswork_change_automation
crosswork_network_automation 		A vulnerability in the web-based management interface of Cisco Crosswork Change Automation could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a use… CWE-79
Cross-site Scripting 		CVE-2019-16024 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222375 8.6 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-16022 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222376 8.6 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-16020 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222377 6.5 MEDIUM
Network 		cisco ios_xr A vulnerability in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-16018 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222378 6.1 MEDIUM
Network 		cisco data_center_analytics_framework A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site script… CWE-79
Cross-site Scripting 		CVE-2019-16015 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222379 5.4 MEDIUM
Network 		cisco ip_phone_6841_firmware
ip_phone_6851_firmware
ip_phone_6825_firmware
ip_phone_6861_firmware
ip_phone_6871_firmware
ip_phone_6821_firmware
ip_phone_7811_firmware
ip_phone_7821_fir… 		A vulnerability in the web-based GUI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at… CWE-79
Cross-site Scripting 		CVE-2019-16008 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm
222380 7.2 HIGH
Network 		cisco collaboration_meeting_rooms
webex_video_mesh 		A vulnerability in the web-based management interface of Cisco Webex Video Mesh could allow an authenticated, remote attacker to execute arbitrary commands on the affected system. The vulnerability i… CWE-20
 Improper Input Validation  		CVE-2019-16005 2024-11-21 13:29 2020-01-26 Show GitHub Exploit DB Packet Storm