Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229891	7.5	危険	sharecms	-	ShareCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2870	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

229892	6.8	警告	webchamado	-	WebChamado の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2858	2012-12-20 18:52	2008-06-25	Show	GitHub Exploit DB Packet Storm

229893	7.5	危険	softdivision	-	Maxtrade AIO の Trade モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2847	2012-12-20 18:52	2008-06-25	Show	GitHub Exploit DB Packet Storm

229894	4.3	警告	traindepot	-	Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2839	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229895	5	警告	traindepot	-	Traindepot の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2838	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229896	7.5	危険	sidb	-	Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2834	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229897	10	危険	worldlevel	-	le.cms の admin/upload.php における管理者の認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2833	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229898	10	危険	tmsnc	-	tmsnc におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2828	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

229899	4.3	警告	Xerox	-	Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2825	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229900	10	危険	Xerox	-	Xerox WorkCentre 7655 などの Web Services における変更を設定される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2824	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222561	6.7	MEDIUM Local	cisco	asa_5500_firmware firepower_2100_firmware firepower_4000_firmware firepower_9000_firmware ons_15454_mstp_firmware analog_voice_network_interface_modules_firmware integrated_services…	A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local attacker to write a mo…	CWE-667 Improper Locking	CVE-2019-1649	2024-11-21 13:37	2019-05-14	Show	GitHub Exploit DB Packet Storm

222562	10.0	CRITICAL Network	cisco	elastic_services_controller	A vulnerability in the REST API of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to bypass authentication on the REST API. The vulnerability is due to improp…	CWE-287 Improper Authentication	CVE-2019-1867	2024-11-21 13:37	2019-05-10	Show	GitHub Exploit DB Packet Storm

222563	7.8	HIGH Local	cisco	firepower_threat_defense firepower_management_center	A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficien…	CWE-78 OS Command	CVE-2019-1709	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222564	7.5	HIGH Network	cisco	firepower_threat_defense	Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent or remote …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-1704	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222565	7.8	HIGH Local	cisco	firepower_management_center	A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficien…	CWE-78 OS Command	CVE-2019-1699	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222566	7.2	HIGH Network	cisco	sg200-50_firmware sg200-50p_firmware sg200-50fp_firmware sg200-26_firmware sg200-26p_firmware sg200-26fp_firmware sg200-18_firmware sg200-10fp_firmware sg200-08_firmware sg…	A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to passw…	CWE-295 Improper Certificate Validation	CVE-2019-1859	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222567	8.8	HIGH Network	cisco	hx220c_m5_firmware hx240c_m5_firmware hx240c_large_form_factor_firmware hx220c_all_nvme_m5_firmware hx220c_af_m5_firmware hx240c_af_m5_firmware hx220c_edge_m5_firmware ucs_b200_m…	A vulnerability in the web-based management interface of Cisco HyperFlex HX-Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform ar…	CWE-352 Origin Validation Error	CVE-2019-1857	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222568	7.4	HIGH Adjacent	cisco	firepower_management_center firepower_threat_defense	Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent or remote …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-1696	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222569	6.1	MEDIUM Network	cisco	prime_collaboration_assurance	A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance (PCA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack again…	CWE-79 Cross-site Scripting	CVE-2019-1856	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

222570	4.3	MEDIUM Network	cisco	telepresence_video_communication_server	A vulnerability in the management web interface of Cisco Expressway Series could allow an authenticated, remote attacker to perform a directory traversal attack against an affected device. The vulner…	CWE-22 Path Traversal	CVE-2019-1854	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm