Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230961	4.3	警告	WordPress.org	-	WordPress の管理者インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2851	2012-12-20 19:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

230962	7.5	危険	webdynamite	-	WebDynamite ProjectButler の pda_projects.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2791	2012-12-20 19:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

230963	7.5	危険	softbiz	-	SoftBiz Dating Script の cat_products.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2790	2012-12-20 19:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

230964	6.8	警告	reputation	-	PunBB 用の Reputation プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2787	2012-12-20 19:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

230965	7.5	危険	reputation	-	PunBB 用の Reputation プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2786	2012-12-20 19:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

230966	4.3	警告	XOOPS	-	XOOPS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2783	2012-12-20 19:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

230967	7.5	危険	sellatsite.com	-	Smart ASP Survey の showresult.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2776	2012-12-20 19:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

230968	7.5	危険	phparcadescript	-	PHP Arcade Script の linkout.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2775	2012-12-20 19:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

230969	7.5	危険	php-paid4mail	-	PHP Paid 4 Mail Script の paidbanner.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2774	2012-12-20 19:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

230970	7.5	危険	shop-020	-	PHP Paid 4 Mail Script の home.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2773	2012-12-20 19:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202071	6.5	MEDIUM Network	cisco	unified_communications_manager hosted_collaboration_mediation_fulfillment	A vulnerability in the Java Management Extensions (JMX) component of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM …	NVD-CWE-Other	CVE-2021-1478	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202072	9.8	CRITICAL Network	cisco	sd-wan_vmanage catalyst_sd-wan_manager	Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated,…	CWE-287 Improper Authentication	CVE-2021-1468	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202073	7.2	HIGH Network	cisco	wap125_firmware wap131_firmware wap150_firmware wap351_firmware wap361_firmware wap581_firmware	Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to obtain …	CWE-78 OS Command	CVE-2021-1401	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202074	8.8	HIGH Network	cisco	wap125_firmware wap131_firmware wap150_firmware wap351_firmware wap361_firmware wap581_firmware	Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to obtain …	-	CVE-2021-1400	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202075	6.7	MEDIUM Local	cisco	content_security_management_appliance	A vulnerability in the user account management system of Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, local attacker to elevate their privileges t…	-	CVE-2021-1447	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202076	5.5	MEDIUM Local	cisco	wide_area_application_services	A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability i…	-	CVE-2021-1438	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202077	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1430	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202078	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1429	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202079	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1428	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202080	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1427	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm