Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251851	7.5	危険	Hudong	-	HDWiki の attachement.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5077	2012-02-9 16:01	2012-02-8	Show	GitHub Exploit DB Packet Storm

251852	7.5	危険	Hudong	-	HDWiki の model/comment.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5076	2012-02-9 16:00	2012-02-8	Show	GitHub Exploit DB Packet Storm

251853	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1011	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

251854	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-1010	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

251855	8.5	危険	OpenEMR	-	OpenEMR の interface/fax/fax_dispatch.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0992	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

251856	3.5	注意	OpenEMR	-	OpenEMR におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0991	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

251857	3.5	注意	DClassifieds	-	DClassifieds の admin/settings/update におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0990	2012-02-9 15:56	2012-02-7	Show	GitHub Exploit DB Packet Storm

251858	4.3	警告	Zenphoto	-	Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4907	2012-02-9 11:18	2011-10-8	Show	GitHub Exploit DB Packet Storm

251859	7.5	危険	Zenphoto	-	Zenphoto の zp-core/full-image.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4906	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

251860	7.5	危険	SoftbizScripts	-	Softbiz Article Directory Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4905	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247011	8.8	HIGH Network	cisco	packaged_contact_center_enterprise	A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote attacker to conduct a CSRF attack and perform arbitrary action…	CWE-352 Origin Validation Error	CVE-2018-0445	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247012	6.1	MEDIUM Network	cisco	packaged_contact_center_enterprise	A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote attacker to conduct a stored XSS attack against a user of the …	CWE-79 Cross-site Scripting	CVE-2018-0444	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247013	7.2	HIGH Network	cisco	data_center_network_manager	A vulnerability in the web interface of Cisco Data Center Network Manager could allow an authenticated application administrator to execute commands on the underlying operating system with root-level…	CWE-20 Improper Input Validation	CVE-2018-0440	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247014	8.8	HIGH Network	cisco	meeting_server	A vulnerability in the web-based management interface of Cisco Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitra…	CWE-352 Origin Validation Error	CVE-2018-0439	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247015	7.8	HIGH Local	cisco	umbrella_enterprise_roaming_client	A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker m…	CWE-269 Improper Privilege Management	CVE-2018-0438	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247016	7.8	HIGH Local	cisco	umbrella_enterprise_roaming_client umbrella_roaming_module	A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker m…	CWE-269 Improper Privilege Management	CVE-2018-0437	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247017	8.7	HIGH Network	cisco	webex_teams	A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote attacker to view and modify data for an organization other than their own organization. The vulnerabil…	CWE-269 Improper Privilege Management	CVE-2018-0436	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247018	9.1	CRITICAL Network	cisco	umbrella	A vulnerability in the Cisco Umbrella API could allow an authenticated, remote attacker to view and modify data across their organization and other organizations. The vulnerability is due to insuffic…	CWE-287 Improper Authentication	CVE-2018-0435	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247019	7.4	HIGH Network	cisco	vedge_100_firmware vedge_1000_firmware vedge_2000_firmware vedge_5000_firmware vmanage_network_management_system	A vulnerability in the Zero Touch Provisioning feature of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data by using an invalid c…	CWE-295 Improper Certificate Validation	CVE-2018-0434	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

247020	7.8	HIGH Local	cisco	vedge_100_firmware vedge_1000_firmware vedge_2000_firmware vedge_5000_firmware vbond_orchestrator vsmart_controller vmanage_network_management_system vedge_cloud_router_platform	A vulnerability in the command-line interface (CLI) in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The …	CWE-78 OS Command	CVE-2018-0433	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm