Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229411	7.5	危険	website designs for less	-	Website Designs for Less Inventory Manager の inventory/display/imager.asp における SQL インジェクションの脆弱性	-	CVE-2006-5943	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

229412	6.8	警告	website designs for less	-	Website Designs For Less Inventory Manager の inventory/display/display_results.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5942	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

229413	7.5	危険	sitexpress	-	SiteXpress E-Commerce System の dept.asp における SQL インジェクションの脆弱性	-	CVE-2006-5936	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229414	7.5	危険	shopsystems	-	ShopSystems の index.php における SQL インジェクションの脆弱性	-	CVE-2006-5935	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229415	7.5	危険	ultrasite	-	UltraSite の update.asp における SQL インジェクションの脆弱性	-	CVE-2006-5933	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229416	7.5	危険	phpjobscheduler	-	Phpjobscheduler の firepjs.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5929	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229417	7.5	危険	phpjobscheduler	-	Phpjobscheduler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5928	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229418	7.5	危険	vallheru	-	Vallheru の mail.php における SQL インジェクションの脆弱性	-	CVE-2006-5926	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229419	5	警告	wheatblog	-	wB の index.php における重要な情報を取得される脆弱性	-	CVE-2006-5922	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

229420	5.8	警告	wheatblog	-	wB の add_comment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5921	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197911	7.8	HIGH Local	cisco	ios_xe	A vulnerability in the persistent Telnet/Secure Shell (SSH) CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands o…	CWE-863 Incorrect Authorization	CVE-2020-3404	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197912	7.8	HIGH Local	cisco	ios_xe	A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to inject a command to the underlying operating system that will execute with root privileges upon the…	CWE-78 OS Command	CVE-2020-3403	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197913	8.8	HIGH Network	cisco	ios_xe	A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to utilize parts of the web UI for which they are not authorized.The vulnerability is due …	CWE-862 Missing Authorization	CVE-2020-3400	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197914	8.6	HIGH Network	cisco	ios_xe	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unau…	CWE-125 Out-of-bounds Read	CVE-2020-3399	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197915	7.2	HIGH Physics	cisco	ios_xe	A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive (SSD) for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sens…	CWE-269 Improper Privilege Management	CVE-2020-3396	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197916	7.8	HIGH Local	cisco	ios_xe	A vulnerability in the application-hosting subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to root on an affected device. The attacker could exec…	CWE-20 Improper Input Validation	CVE-2020-3393	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197917	7.4	HIGH Adjacent	cisco	ios_xe	A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of the Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an un…	CWE-20 Improper Input Validation	CVE-2020-3390	2024-11-21 14:30	2020-09-25	Show	GitHub Exploit DB Packet Storm

197918	7.2	HIGH Network	cisco	ex60_firmware ex90_firmware sx10_firmware sx20_firmware sx80_firmware telepresence_codec_c40_firmware telepresence_codec_c60_firmware telepresence_codec_c90_firmware teleprese…	A vulnerability in the video endpoint API (xAPI) of Cisco TelePresence Collaboration Endpoint (CE) Software, Cisco TelePresence Codec (TC) Software, and Cisco RoomOS Software could allow an authentic…	CWE-22 Path Traversal	CVE-2020-3143	2024-11-21 14:30	2020-09-23	Show	GitHub Exploit DB Packet Storm

197919	6.1	MEDIUM Network	cisco	email_security_appliance	A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a …	CWE-79 Cross-site Scripting	CVE-2020-3137	2024-11-21 14:30	2020-09-23	Show	GitHub Exploit DB Packet Storm

197920	8.8	HIGH Network	cisco	unified_communications_manager	A vulnerability in the web-based management interface of Cisco Unified Communications Manager (UCM) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) atta…	CWE-352 Origin Validation Error	CVE-2020-3135	2024-11-21 14:30	2020-09-23	Show	GitHub Exploit DB Packet Storm