Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230071 4 警告 phpizabi - PHPizabi の template.class.php の AssignUser 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2018 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230072 9.3 危険 watchfire - WatchFire AppScan の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2015 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230073 6.8 警告 pnflashgames - PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2013 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230074 7.5 危険 postnuke software foundation - PostNuke 用の PostSchedule モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2012 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230075 7.5 危険 サン・マイクロシステムズ - Sun Java System Directory Proxy Server におけるサーバに対するアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1995 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230076 4.3 警告 pixel motion - Blog Pixel Motion の liste_article.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1986 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
230077 8.5 危険 サン・マイクロシステムズ - Sun Ray Kiosk Mode におけるルートの権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-2112 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
230078 9.3 危険 Yahoo! - Yahoo! Assistant の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2111 2012-12-20 18:52 2008-05-7 Show GitHub Exploit DB Packet Storm
230079 7.5 危険 qto - QTOFileManager の qtofm.php における任意の PHP コードをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2110 2012-12-20 18:52 2008-05-7 Show GitHub Exploit DB Packet Storm
230080 7.5 危険 phpforge - PHP Forge の admin/news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2088 2012-12-20 18:52 2008-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223951 4.9 MEDIUM
Network 		cisco telepresence_video_communication_server A vulnerability in the XML API of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to cause the CPU to increase to 100% ut… CWE-20
 Improper Input Validation  		CVE-2019-1720 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223952 5.4 MEDIUM
Network 		cisco identity_services_engine A vulnerability in the web-based guest portal of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of th… CWE-79
Cross-site Scripting 		CVE-2019-1719 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223953 7.5 HIGH
Network 		cisco identity_services_engine A vulnerability in the web interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to trigger high CPU usage, resulting in a denial of service (DoS) conditio… NVD-CWE-noinfo
CVE-2019-1718 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223954 7.5 HIGH
Network 		cisco ios_xr A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the PIM process to restart, resulting in a denial… CWE-20
 Improper Input Validation  		CVE-2019-1712 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223955 7.5 HIGH
Network 		cisco ios_xr A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected devi… CWE-20
 Improper Input Validation  		CVE-2019-1711 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223956 9.8 CRITICAL
Network 		cisco ios_xr A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to acce… CWE-20
 Improper Input Validation  		CVE-2019-1710 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223957 8.6 HIGH
Network 		cisco ios_xr A vulnerability in the TCP flags inspection feature for access control lists (ACLs) on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass pro… NVD-CWE-Other
CVE-2019-1686 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223958 7.8 HIGH
Local 		cisco ap-cos A vulnerability in the development shell (devshell) authentication for Cisco Aironet Series Access Points (APs) running the Cisco AP-COS operating system could allow an authenticated, local attacker … CWE-306
Missing Authentication for Critical Function 		CVE-2019-1654 2024-11-21 13:37 2019-04-18 Show GitHub Exploit DB Packet Storm
223959 5.5 MEDIUM
Local 		clamav clamav A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a d… CWE-125
Out-of-bounds Read 		CVE-2019-1798 2024-11-21 13:37 2019-04-9 Show GitHub Exploit DB Packet Storm
223960 5.5 MEDIUM
Local 		clamav
opensuse
debian 		clamav
leap
debian_linux 		A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to … CWE-787
 Out-of-bounds Write 		CVE-2019-1788 2024-11-21 13:37 2019-04-9 Show GitHub Exploit DB Packet Storm