Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252141	7.5	危険	WebManager Pro	-	CMS WebManager-Pro の c.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4899	2012-01-19 11:42	2011-10-8	Show	GitHub Exploit DB Packet Storm

252142	7.5	危険	Gantry framework	-	Joomla! 用 Gantry における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4898	2012-01-19 11:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

252143	7.5	危険	BlueCms	-	BlueCMS の comment.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4897	2012-01-19 11:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

252144	4.3	警告	Expinion.net	-	Member Management System の admin/index.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4896	2012-01-19 11:39	2011-10-8	Show	GitHub Exploit DB Packet Storm

252145	4.3	警告	chillyCMS	-	chillyCMS の core/showsite.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4895	2012-01-19 11:38	2011-10-8	Show	GitHub Exploit DB Packet Storm

252146	7.5	危険	chillyCMS	-	chillyCMS の core/showsite.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4894	2012-01-19 11:37	2011-10-8	Show	GitHub Exploit DB Packet Storm

252147	4.3	警告	Skypanther Studios	-	FestOS の foodvendors.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4893	2012-01-19 11:23	2011-10-8	Show	GitHub Exploit DB Packet Storm

252148	4.3	警告	Alex Kellner	-	TYPO3 用の powermail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4892	2012-01-19 11:20	2010-10-26	Show	GitHub Exploit DB Packet Storm

252149	7.5	危険	Andreas Kiefer	-	TYPO3 用の Yet Another Calendar における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4891	2012-01-19 11:20	2010-09-2	Show	GitHub Exploit DB Packet Storm

252150	4.3	警告	Andreas Kiefer	-	TYPO3 用の Yet Another Calendar におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4890	2012-01-19 11:19	2010-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246891	7.5	HIGH Network	cisco	wireless_lan_controller_software	A vulnerability in the session identification management functionality of the web-based interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to hi…	CWE-287 Improper Authentication	CVE-2018-0382	2024-11-21 12:38	2019-04-18	Show	GitHub Exploit DB Packet Storm

246892	7.5	HIGH Network	cisco	spa514g_firmware	A vulnerability in the implementation of Session Initiation Protocol (SIP) processing in Cisco Small Business SPA514G IP Phones could allow an unauthenticated, remote attacker to cause an affected de…	NVD-CWE-noinfo	CVE-2018-0389	2024-11-21 12:38	2019-03-14	Show	GitHub Exploit DB Packet Storm

246893	7.5	HIGH Network	osstech	openam	OpenAM (Open Source Edition) 13.0 and later does not properly manage sessions, which allows remote authenticated attackers to change the security questions and reset the login password via unspecifie…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2018-0696	2024-11-21 12:38	2019-02-14	Show	GitHub Exploit DB Packet Storm

246894	7.5	HIGH Network	qnap	photo_station	Path Traversal vulnerability in Photo Station versions: 5.7.2 and earlier in QTS 4.3.4, 5.4.4 and earlier in QTS 4.3.3, 5.2.8 and earlier in QTS 4.2.6 could allow remote attackers to access sensitive…	CWE-22 Path Traversal	CVE-2018-0722	2024-11-21 12:38	2019-02-2	Show	GitHub Exploit DB Packet Storm

246895	6.5	MEDIUM Network	cisco	ios	A vulnerability in the access control logic of the Secure Shell (SSH) server of Cisco IOS and IOS XE Software may allow connections sourced from a virtual routing and forwarding (VRF) instance despit…	NVD-CWE-noinfo	CVE-2018-0484	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm

246896	5.4	MEDIUM Network	cisco	jabber	A vulnerability in Cisco Jabber Client Framework (JCF) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected system. The vulnerabi…	CWE-79 Cross-site Scripting	CVE-2018-0483	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm

246897	5.4	MEDIUM Network	cisco	prime_infrastructure	A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against…	CWE-79 Cross-site Scripting	CVE-2018-0482	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm

246898	8.8	HIGH Network	cisco	unified_communications_manager	A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view digest credentials in clear text. The vulnerability…	CWE-522 Insufficiently Protected Credentials	CVE-2018-0474	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm

246899	8.8	HIGH Network	cisco	ip_phone_8800_series_firmware	A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote attacker to conduct an arbitrary script injection attack on an affected device. The vulnerability exi…	CWE-94 Code Injection	CVE-2018-0461	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm

246900	4.2	MEDIUM Local	cisco	jabber	A vulnerability in the Cisco Jabber Client Framework (JCF) software, installed as part of the Cisco Jabber for Mac client, could allow an authenticated, local attacker to corrupt arbitrary files on a…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-0449	2024-11-21 12:38	2019-01-11	Show	GitHub Exploit DB Packet Storm