Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229581 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
229582 6.8 警告 zanfi solutions - Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4158 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
229583 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4157 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
229584 7.5 危険 razorecommerce - RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4143 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
229585 7.5 危険 x10media - x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4141 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
229586 10 危険 technote - Technote の skin_shop/standard/3_plugin_twindow/twindow_notice.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4138 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
229587 7.8 危険 s60 - Nokia E90 Communicator および Nseries N82 上で稼動している Symbian OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4135 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
229588 7.5 危険 phprealty - phpRealty の manager/static/view.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4134 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
229589 5 警告 phpBB - phpBB の search 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4125 2012-12-20 18:52 2008-09-18 Show GitHub Exploit DB Packet Storm
229590 7.8 危険 サン・マイクロシステムズ - SunMC の PRM モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4117 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195941 6.8 MEDIUM
Physics 		cisco ios_xe A vulnerability in the boot logic of Cisco IOS XE Software could allow an authenticated, local attacker with level 15 privileges or an unauthenticated attacker with physical access to execute arbitra… - CVE-2021-1398 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195942 5.3 MEDIUM
Network 		cisco ios_xe A vulnerability in the ingress traffic manager of Cisco IOS XE Software for Cisco Network Convergence System (NCS) 520 Routers could allow an unauthenticated, remote attacker to cause a denial of ser… NVD-CWE-noinfo
CVE-2021-1394 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195943 7.8 HIGH
Local 		cisco ios
ios_xe 		A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and th… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-1392 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195944 6.7 MEDIUM
Local 		cisco ios_xe
ios 		A vulnerability in the dragonite debugger of Cisco IOS XE Software could allow an authenticated, local attacker to escalate from privilege level 15 to root privilege. The vulnerability is due to the … - CVE-2021-1391 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195945 6.7 MEDIUM
Local 		cisco ios_xe A vulnerability in one of the diagnostic test CLI commands of Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code on an affected device. To exploit this vulne… - CVE-2021-1390 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195946 6.5 MEDIUM
Network 		cisco ios_xe
ios 		A vulnerability in the Cisco IOx application hosting environment of multiple Cisco platforms could allow an authenticated, remote attacker to conduct directory traversal attacks and read and write fi… CWE-22
Path Traversal 		CVE-2021-1385 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195947 7.2 HIGH
Network 		cisco ios_xe A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands into the underlying operating system as the root… CWE-78
OS Command  		CVE-2021-1384 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195948 6.7 MEDIUM
Local 		cisco ios_xe
ios_xe_sd-wan 		Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system with root privileges. These vulnerabilities … CWE-88
Argument Injection 		CVE-2021-1383 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195949 6.7 MEDIUM
Local 		cisco ios_xe A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root privileges on the underlying operating sy… CWE-78
OS Command  		CVE-2021-1382 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm
195950 5.8 MEDIUM
Network 		cisco ios
ios_xe 		A vulnerability in Address Resolution Protocol (ARP) management of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent an affected device from reso… NVD-CWE-noinfo
CVE-2021-1377 2024-11-21 14:44 2021-03-25 Show GitHub Exploit DB Packet Storm