Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251571 7.5 危険 Category-System - TYPO3 用 Category-System エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1072 2012-02-17 14:31 2012-02-14 Show GitHub Exploit DB Packet Storm
251572 7.5 危険 Mathieu Vidal - TYPO3 用 Kitchen recipe エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1071 2012-02-17 14:29 2012-02-14 Show GitHub Exploit DB Packet Storm
251573 4.3 警告 Netcreators - TYPO3 用 Modern FAQ エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1070 2012-02-17 14:29 2012-02-14 Show GitHub Exploit DB Packet Storm
251574 4.3 警告 Juergen Furrer - TYPO3 用 Additional TCA Forms エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5080 2012-02-17 14:27 2012-02-14 Show GitHub Exploit DB Packet Storm
251575 5 警告 NetSarang - NetSarang の Xlpd および Xmanager Enterprise におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1009 2012-02-17 11:54 2012-02-14 Show GitHub Exploit DB Packet Storm
251576 4.3 警告 Instant Php - lknSupport の module/kb/search_word におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1069 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
251577 4.3 警告 mg12 - WordPress 用 WP-RecentComments プラグインの rc_ajax 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1068 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
251578 7.5 危険 mg12 - WordPress 用 WP-RecentComments プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1067 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
251579 4.3 警告 SmartyCMS - SmartyCMS の template モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1066 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
251580 4.3 警告 2X Software - 2X ApplicationServer の TuxScripting.dll における任意のファイルを作成される脆弱性 CWE-Other
その他 		CVE-2012-1065 2012-02-17 11:00 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201811 8.6 HIGH
Network 		cisco firepower_threat_defense
adaptive_security_appliance
adaptive_security_appliance_software 		A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to upload ar… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-3436 2024-11-21 14:31 2020-10-22 Show GitHub Exploit DB Packet Storm
201812 6.3 MEDIUM
Local 		cisco duo_network_gateway Duo has identified and fixed an issue with the Duo Network Gateway (DNG) product in which some customer-provided SSL certificates and private keys were not excluded from logging. This issue resulted … CWE-522
 Insufficiently Protected Credentials 		CVE-2020-3483 2024-11-21 14:31 2020-10-15 Show GitHub Exploit DB Packet Storm
201813 7.8 HIGH
Local 		cisco duo_authentication_for_windows_logon_and_rdp The Windows Logon installer prior to 4.1.2 did not properly validate file installation paths. This allows an attacker with local user privileges to coerce the installer to write to arbitrary privileg… NVD-CWE-noinfo
CVE-2020-3427 2024-11-21 14:31 2020-10-15 Show GitHub Exploit DB Packet Storm
201814 6.7 MEDIUM
Local 		cisco staros A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerabili… CWE-78
OS Command  		CVE-2020-3602 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201815 6.7 MEDIUM
Local 		cisco staros A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerabili… CWE-78
OS Command  		CVE-2020-3601 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201816 6.5 MEDIUM
Network 		cisco vision_dynamic_signage_director A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to access confidential information or make configuration… CWE-306
Missing Authentication for Critical Function 		CVE-2020-3598 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201817 5.4 MEDIUM
Network 		cisco nexus_data_broker A vulnerability in the configuration restore feature of Cisco Nexus Data Broker software could allow an unauthenticated, remote attacker to perform a directory traversal attack on an affected device.… CWE-22
Path Traversal 		CVE-2020-3597 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201818 7.5 HIGH
Network 		cisco expressway
telepresence_video_communication_server 		A vulnerability in the Session Initiation Protocol (SIP) of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to cause a … CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2020-3596 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201819 4.8 MEDIUM
Network 		cisco identity_services_engine A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross… CWE-79
Cross-site Scripting 		CVE-2020-3589 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm
201820 5.8 MEDIUM
Network 		cisco asyncos A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation f… CWE-20
 Improper Input Validation  		CVE-2020-3568 2024-11-21 14:31 2020-10-8 Show GitHub Exploit DB Packet Storm