Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229941 7.5 危険 realm project - Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2679 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229942 7.5 危険 telephone - Telephone Directory 2008 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2678 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229943 4.3 警告 telephone - Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2677 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229944 4.3 警告 softcomplex - PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2675 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229945 7.5 危険 Powie - Powie pNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2673 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229946 7.5 危険 y-blog - yBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2669 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229947 4.3 警告 y-blog - yBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2668 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229948 7.5 危険 smeweb - SMEWeb の catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2652 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229949 4.3 警告 smeweb - SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2644 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229950 7.5 危険 theflashblog - FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2572 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224441 5.5 MEDIUM
Local 		cisco integrated_management_controller
unified_computing_system 		A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condi… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-1628 2024-11-21 13:36 2019-06-20 Show GitHub Exploit DB Packet Storm
224442 6.5 MEDIUM
Network 		cisco integrated_management_controller
unified_computing_system 		A vulnerability in the Server Utilities of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to gain unauthorized access to sensitive user information from th… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2019-1627 2024-11-21 13:36 2019-06-20 Show GitHub Exploit DB Packet Storm
224443 8.8 HIGH
Network 		cisco sd-wan_firmware A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected vManage device. The vulnerab… CWE-863
 Incorrect Authorization 		CVE-2019-1626 2024-11-21 13:36 2019-06-20 Show GitHub Exploit DB Packet Storm
224444 7.8 HIGH
Local 		cisco sd-wan_firmware A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to … NVD-CWE-Other
CVE-2019-1625 2024-11-21 13:36 2019-06-20 Show GitHub Exploit DB Packet Storm
224445 6.7 MEDIUM
Local 		cisco meeting_server A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insuffic… CWE-78
OS Command  		CVE-2019-1623 2024-11-21 13:36 2019-06-20 Show GitHub Exploit DB Packet Storm
224446 6.1 MEDIUM
Network 		paloaltonetworks demisto Cross-site scripting (XSS) vulnerability in Palo Alto Networks Demisto 4.5 build 40249 may allow an unauthenticated attacker to run arbitrary JavaScript or HTML. CWE-79
Cross-site Scripting 		CVE-2019-1568 2024-11-21 13:36 2019-05-10 Show GitHub Exploit DB Packet Storm
224447 7.5 HIGH
Network 		cisco ip_conference_phone_7832_firmware
ip_conference_phone_8832_firmware
ip_phone_7811_firmware
ip_phone_7821_firmware
ip_phone_7841_firmware
ip_phone_7861_firmware
ip_phone_8811_firmwar… 		A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to caus… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-1635 2024-11-21 13:36 2019-05-4 Show GitHub Exploit DB Packet Storm
224448 7.8 HIGH
Local 		cisco nx-os A vulnerability in the background operations functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker to gai… CWE-20
 Improper Input Validation  		CVE-2019-1592 2024-11-21 13:36 2019-05-4 Show GitHub Exploit DB Packet Storm
224449 8.1 HIGH
Network 		cisco nx-os A vulnerability in the Transport Layer Security (TLS) certificate validation functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unau… CWE-295
Improper Certificate Validation  		CVE-2019-1590 2024-11-21 13:36 2019-05-4 Show GitHub Exploit DB Packet Storm
224450 4.6 MEDIUM
Physics 		cisco nx-os A vulnerability in the Trusted Platform Module (TPM) functionality of software for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthentica… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-1589 2024-11-21 13:36 2019-05-4 Show GitHub Exploit DB Packet Storm