Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229081 4.3 警告 Tiki Software Community Association - TikiWiki の tiki-special_chars.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6526 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
229082 7.5 危険 woltlab - wBB Lite の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6518 2012-12-20 18:34 2007-12-24 Show GitHub Exploit DB Packet Storm
229083 6.8 警告 ravware - RavWare Software MAS Flic ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6516 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229084 7.5 危険 sitescape - SiteScape Forum の support/dispatch.cgi における任意の TLC コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6515 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229085 5 警告 ウェブセンス - Websense Enterprise におけるコンテンツのフィルタリングを回避される脆弱性 CWE-DesignError
CVE-2007-6511 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229086 6.4 警告 shttpd - Windows 上で稼動している shttpd における任意の CGI プログラムをダウンロードされる脆弱性 CWE-200
情報漏えい 		CVE-2007-6405 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229087 5 警告 shttp - Windows 上で稼動している shttpd におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6404 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229088 6.8 警告 Winamp - Nullsoft Winamp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6403 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229089 5 警告 poldoc - PolDoc CMS の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6400 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229090 7.5 危険 sh-news - SH-News の patch/comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6391 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201091 9.9 CRITICAL
Network 		cisco sd-wan A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization, enabling them to access sensitive informa… CWE-863
 Incorrect Authorization 		CVE-2020-3374 2024-11-21 14:30 2020-07-31 Show GitHub Exploit DB Packet Storm
201092 7.8 HIGH
Local 		cisco sd-wan_firmware
vbond_orchestrator
vsmart_controller 		A vulnerability in Cisco SD-WAN Solution Software could allow an authenticated, local attacker to elevate privileges to Administrator on the underlying operating system. The vulnerability is due to i… CWE-20
 Improper Input Validation  		CVE-2020-3379 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201093 5.8 MEDIUM
Network 		cisco email_security_appliance A vulnerability in URL filtering of Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability … CWE-20
 Improper Input Validation  		CVE-2020-3370 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201094 5.4 MEDIUM
Network 		cisco sd-wan_firmware A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user … CWE-79
Cross-site Scripting 		CVE-2020-3406 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201095 7.3 HIGH
Network 		cisco sd-wan_firmware A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vul… CWE-611
XXE 		CVE-2020-3405 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201096 6.5 MEDIUM
Network 		cisco sd-wan_firmware A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensit… CWE-22
Path Traversal 		CVE-2020-3401 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201097 7.8 HIGH
Local 		cisco sd-wan_firmware A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due … CWE-287
Improper Authentication 		CVE-2020-3388 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201098 8.8 HIGH
Network 		cisco sd-wan_firmware A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to execute code with root privileges on an affected system. The vulnerability is due to insufficient inp… - CVE-2020-3387 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201099 6.5 MEDIUM
Adjacent 		cisco sd-wan_firmware
vedge_cloud_router 		A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected … NVD-CWE-noinfo
CVE-2020-3385 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm
201100 8.8 HIGH
Network 		cisco sd-wan_firmware A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct directory traversal attacks and obtain read and write access … CWE-22
Path Traversal 		CVE-2020-3381 2024-11-21 14:30 2020-07-17 Show GitHub Exploit DB Packet Storm