Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228721	7.5	危険	simpel side	-	Simpel Side Netbutik における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2504	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

228722	9.3	危険	加藤和良	-	eMule X-Ray の Uploadlist におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2503	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

228723	4.3	警告	quate	-	Quate CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2496	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228724	4.3	警告	TYPO3 Association	-	TYPO3 用の KJ Image Lightbox 2 エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2490	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228725	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2489	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228726	6.8	警告	xomol	-	Xomol CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2484	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228727	6.8	警告	xomol	-	Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2483	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228728	10	危険	phpraider	-	phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2481	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228729	10	危険	plusphp	-	plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2480	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

228730	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin Gold の faq.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2460	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225001	5.3	MEDIUM Network	cisco	webex_meetings_server webex_meetings_online webex_training_center webex_meeting_center webex_event_center webex_support_center	A vulnerability in web interface of the Cisco Webex Event Center, Cisco Webex Meeting Center, Cisco Webex Support Center, and Cisco Webex Training Center could allow an unauthenticated, remote attack…	CWE-287 Improper Authentication	CVE-2019-15987	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225002	6.7	MEDIUM Local	cisco	unity_express	A vulnerability in the CLI of Cisco Unity Express could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. To exploit this vulnerability, an a…	CWE-20 Improper Input Validation	CVE-2019-15986	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225003	8.8	HIGH Network	cisco	unified_communications_manager	A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The…	CWE-89 SQL Injection	CVE-2019-15972	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225004	4.3	MEDIUM Network	cisco	email_security_appliance_firmware	A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-15971	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225005	5.4	MEDIUM Network	cisco	unified_communications_domain_manager hosted_collaboration_solution	A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS…	CWE-79 Cross-site Scripting	CVE-2019-15968	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225006	6.1	MEDIUM Network	cisco	network_level_service industrial_network_director	A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against…	CWE-79 Cross-site Scripting	CVE-2019-15973	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225007	4.4	MEDIUM Local	cisco	telepresence_collaboration_endpoint roomos	A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. …	NVD-CWE-Other	CVE-2019-15967	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225008	5.4	MEDIUM Network	cisco	webex_meetings	A vulnerability in the Webex Network Recording Admin page of Cisco Webex Meetings could allow an authenticated, remote attacker to elevate privileges in the context of the affected page. To exploit t…	NVD-CWE-Other	CVE-2019-15960	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225009	9.8	CRITICAL Network	cisco	prime_infrastructure evolved_programmable_network_manager	A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated remote attacker to execute arbitrary code with …	CWE-20 Improper Input Validation	CVE-2019-15958	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225010	8.8	HIGH Network	cisco	asyncos web_security_appliance	A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform an unauthorized system reset …	NVD-CWE-Other	CVE-2019-15956	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm