Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229811 4.3 警告 SAP - SAP WAS などの Web GUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2421 2012-12-20 18:52 2008-05-23 Show GitHub Exploit DB Packet Storm
229812 6.8 警告 stunnel - stunnel の OCSP 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2420 2012-12-20 18:52 2008-05-23 Show GitHub Exploit DB Packet Storm
229813 6.8 警告 sazcart - SazCart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2411 2012-12-20 18:52 2008-05-22 Show GitHub Exploit DB Packet Storm
229814 7.5 危険 サン・マイクロシステムズ - Sun Java ASP Server の管理アプリケーションサーバにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2406 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
229815 7.5 危険 サン・マイクロシステムズ - Sun Java ASP Server における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2405 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
229816 10 危険 サン・マイクロシステムズ - Sun Java ASP Server のリクエスト処理実装におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2404 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
229817 5 警告 サン・マイクロシステムズ - Sun Java ASP Server の Admin Server におけるパスワードハッシュを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2402 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
229818 7.5 危険 サン・マイクロシステムズ - Sun Java ASP Server の Admin Server における任意の新規ファイルにアペンドされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2401 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
229819 7.2 危険 stunnel - stunnel における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2400 2012-12-20 18:52 2008-05-22 Show GitHub Exploit DB Packet Storm
229820 7.5 危険 wajox software - Wajox Software microSSys CMS の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2396 2012-12-20 18:52 2008-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222401 7.2 HIGH
Network 		cisco unified_computing_system
integrated_management_controller_supervisor 		A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to cause a denial of service (DoS) conditio… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-1871 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222402 8.8 HIGH
Network 		cisco unified_computing_system
integrated_management_controller_supervisor 		A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are exec… CWE-78
OS Command  		CVE-2019-1865 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222403 8.8 HIGH
Network 		cisco unified_computing_system
integrated_management_controller_supervisor 		A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are exec… CWE-78
OS Command  		CVE-2019-1864 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222404 8.1 HIGH
Network 		cisco unified_computing_system
integrated_management_controller_supervisor 		A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to make unauthorized changes to the system… NVD-CWE-Other
CVE-2019-1863 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222405 7.2 HIGH
Network 		cisco unified_computing_system
integrated_management_controller_supervisor 		A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are exec… CWE-78
OS Command  		CVE-2019-1850 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222406 6.7 MEDIUM
Local 		cisco remote_phy_120_firmware
remote_phy_220_firmware
remote_phy_shelf_7200_firmware
cbr-8_firmware 		A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vuln… CWE-78
OS Command  		CVE-2019-1839 2024-11-21 13:37 2019-08-22 Show GitHub Exploit DB Packet Storm
222407 4.8 MEDIUM
Network 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability in the web portal framework of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack agains… CWE-79
Cross-site Scripting 		CVE-2019-1973 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
222408 6.7 MEDIUM
Local 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability the Cisco Enterprise NFV Infrastructure Software (NFVIS) restricted CLI could allow an authenticated, local attacker with valid administrator-level credentials to elevate privileges a… NVD-CWE-Other
CVE-2019-1972 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
222409 9.8 CRITICAL
Network 		cisco enterprise_network_function_virtualization_infrastructure A vulnerability in the web portal of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote attacker to perform a command injection attack and execute arbitrary c… CWE-20
 Improper Input Validation  		CVE-2019-1971 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm
222410 4.4 MEDIUM
Local 		cisco enterprise_network_function_virtualization_infrastructure Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to read arbitrary files on the underlying operating system (OS) of an aff… CWE-78
OS Command  		CVE-2019-1960 2024-11-21 13:37 2019-08-8 Show GitHub Exploit DB Packet Storm