Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
243221 4.3 警告 Novell - Novell GroupWise WebAccess の webacc サーブレットにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4557 2012-09-25 16:59 2007-08-27 Show GitHub Exploit DB Packet Storm
243222 6.8 警告 opensymphony - OpenSymphony XWork の Struts サポートにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-4556 2012-09-25 16:59 2007-08-27 Show GitHub Exploit DB Packet Storm
243223 4.3 警告 Ipswitch, Inc. - Ipswitch WS_FTP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4555 2012-09-25 16:59 2007-08-27 Show GitHub Exploit DB Packet Storm
243224 4.3 警告 Mozilla Foundation - Bugzilla の enter_bug.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4543 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
243225 4.3 警告 olate - od におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2007-4541 2012-09-25 16:59 2007-08-27 Show GitHub Exploit DB Packet Storm
243226 7.5 危険 olate - Olate Download (od) の download.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4540 2012-09-25 16:59 2007-08-27 Show GitHub Exploit DB Packet Storm
243227 5 警告 Mozilla Foundation - Bugzilla の XML-RPC インターフェースにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-4539 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
243228 5 警告 Mozilla Foundation - Bugzilla の email_in.pl における任意のコマンドを実行される脆弱性 - CVE-2007-4538 2012-09-25 16:59 2007-08-23 Show GitHub Exploit DB Packet Storm
243229 7.8 危険 michal marcinkowski - Soldat game server などにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4532 2012-09-25 16:59 2007-08-24 Show GitHub Exploit DB Packet Storm
243230 5 警告 michal marcinkowski - Soldat game server などにおけるクライアントサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4531 2012-09-25 16:59 2007-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267421 7.8 HIGH
Local
hashicorp vagrant_vmware_fusion An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 4.0.24 and earlier allows a non-root user to obtain a root shell. CWE-427
 Uncontrolled Search Path Element
CVE-2017-12579 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267422 8.8 HIGH
Network
cisco spa300_firmware
spa500_firmware
A vulnerability in Cisco SPA300 and SPA500 Series IP Phones could allow an unauthenticated, remote attacker to execute unwanted actions on an affected device. The vulnerability is due to a lack of cr… CWE-352
 Origin Validation Error
CVE-2017-12271 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267423 6.7 MEDIUM
Local
cisco nx-os A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and gain unauthorized access to the underlying opera… CWE-20
 Improper Input Validation 
CVE-2017-12301 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267424 6.1 MEDIUM
Network
cisco webex_meeting_center A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected system. The vulnerability is… CWE-79
Cross-site Scripting
CVE-2017-12298 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267425 6.1 MEDIUM
Network
cisco webex_meetings_server A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the affected system. The vulnerability … CWE-79
Cross-site Scripting
CVE-2017-12296 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267426 8.6 HIGH
Network
cisco webex_meetings_server A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient limitations on th… CWE-119
CWE-400
Incorrect Access of Indexable Resource ('Range Error') 
 Uncontrolled Resource Consumption
CVE-2017-12293 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267427 4.4 MEDIUM
Local
cisco ios A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local attacker to display sensitive IPsec information in the system … CWE-200
Information Exposure
CVE-2017-12289 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267428 6.1 MEDIUM
Network
cisco finesse A vulnerability in the web-based management interface of Cisco Unified Contact Center Express could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a … CWE-79
Cross-site Scripting
CVE-2017-12288 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267429 4.3 MEDIUM
Network
cisco expressway
telepresence_video_communication_server
telepresence_conductor
A vulnerability in the cluster database (CDB) management component of Cisco Expressway Series Software and Cisco TelePresence Video Communication Server (VCS) Software could allow an authenticated, r… CWE-20
 Improper Input Validation 
CVE-2017-12287 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm
267430 5.5 MEDIUM
Local
cisco webex_meeting_center
jabber
A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure o… CWE-20
 Improper Input Validation 
CVE-2017-12286 2024-11-21 12:09 2017-10-19 Show GitHub Exploit DB Packet Storm