Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228831	9.3	危険	Yahoo!	-	Yahoo! Assistant の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-2111	2012-12-20 18:52	2008-05-7	Show	GitHub Exploit DB Packet Storm

228832	7.5	危険	qto	-	QTOFileManager の qtofm.php における任意の PHP コードをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-2110	2012-12-20 18:52	2008-05-7	Show	GitHub Exploit DB Packet Storm

228833	7.5	危険	phpforge	-	PHP Forge の admin/news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2088	2012-12-20 18:52	2008-05-6	Show	GitHub Exploit DB Packet Storm

228834	6.8	警告	softbiz	-	Softbiz Web Host Directory Script の search_result.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2087	2012-12-20 18:52	2008-05-6	Show	GitHub Exploit DB Packet Storm

228835	6.8	警告	prozilla	-	Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2083	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228836	4.3	警告	siteman	-	Siteman の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2082	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228837	9	危険	siteman	-	Siteman の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2081	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228838	7.5	危険	robocode	-	Robocode における "Robocode ゲーム内部にアクセスされる" 脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2078	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228839	10	危険	plain black	-	Plain Black WebGUI における脆弱性	CWE-noinfo 情報不足	CVE-2008-2077	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228840	7.5	危険	successkid	-	Harris Yusuf Arifin Harris Wap Chat における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2074	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195701	4.3	MEDIUM Network	cisco	firepower_management_center	A vulnerability in the dashboard widget of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected d…	CWE-776 XML Entity Expansion	CVE-2021-1267	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195702	5.5	MEDIUM Local	cisco mcafee	anyconnect_secure_mobility_client agent_epolicy_orchestrator_extension	A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operatin…	CWE-269 Improper Privilege Management	CVE-2021-1258	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195703	6.1	MEDIUM Network	cisco	finesse	Cisco Finesse, Cisco Virtualized Voice Browser, and Cisco Unified CVP OpenSocial Gadget Editor Unauthenticated Access Vulnerability A vulnerability in the web management interface of Cisco Finesse…	CWE-79 Cross-site Scripting	CVE-2021-1246	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195704	6.1	MEDIUM Network	cisco	finesse	Cisco Finesse and Cisco Unified CVP OpenSocial Gadget Editor Cross-Site Scripting Vulnerability A vulnerability in the web-based management interface of Cisco Finesse and Cisco Unified CVP could a…	CWE-79 Cross-site Scripting	CVE-2021-1245	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195705	4.3	MEDIUM Network	cisco	webex_teams	A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. The vulnerability exists because the affected software mi…	NVD-CWE-noinfo	CVE-2021-1242	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195706	7.3	HIGH Local	cisco	proximity	A vulnerability in the loading process of specific DLLs in Cisco Proximity Desktop for Windows could allow an authenticated, local attacker to load a malicious library. To exploit this vulnerability,…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1240	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195707	4.8	MEDIUM Network	cisco	firepower_management_center	Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) …	CWE-79 Cross-site Scripting	CVE-2021-1239	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195708	4.8	MEDIUM Network	cisco	firepower_management_center	Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) …	CWE-79 Cross-site Scripting	CVE-2021-1238	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195709	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	A vulnerability in the Network Access Manager and Web Security Agent components of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL in…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1237	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm

195710	5.3	MEDIUM Network	cisco snort	ios_xe firepower_management_center firepower_threat_defense snort	Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected…	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2021-1236	2024-11-21 14:43	2021-01-14	Show	GitHub Exploit DB Packet Storm