Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252171 6.6 警告 シスコシステムズ - Cisco Unified IP Phones 7900 における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1603 2011-12-1 11:03 2011-06-1 Show GitHub Exploit DB Packet Storm
252172 6.6 警告 シスコシステムズ - Cisco Unified IP Phone 7900 の su ユーティリティにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1602 2011-12-1 11:03 2011-06-1 Show GitHub Exploit DB Packet Storm
252173 7.8 危険 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1651 2011-12-1 11:02 2011-05-25 Show GitHub Exploit DB Packet Storm
252174 7.8 危険 シスコシステムズ - Cisco Content Delivery System におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1649 2011-12-1 11:01 2011-05-25 Show GitHub Exploit DB Packet Storm
252175 5 警告 シスコシステムズ - Cisco RVS4000 Gigabit Security Router のソフトウェアおよび WRVS4400N Gigabit Security Router のソフトウェアにおける脆弱性 CWE-200
情報漏えい 		CVE-2011-1647 2011-12-1 11:00 2011-05-25 Show GitHub Exploit DB Packet Storm
252176 9 危険 シスコシステムズ - Cisco RVS4000 Gigabit Security Router のソフトウェアおよび WRVS4400N Gigabit Security Router のソフトウェアにおける脆弱性 CWE-94
コード・インジェクション 		CVE-2011-1646 2011-12-1 10:50 2011-05-25 Show GitHub Exploit DB Packet Storm
252177 9.3 危険 シスコシステムズ - Cisco RVS4000 Gigabit Security Router のソフトウェアおよび WRVS4400N Gigabit Security Router のソフトウェアにおける脆弱性 CWE-16
環境設定 		CVE-2011-1645 2011-12-1 10:49 2011-05-25 Show GitHub Exploit DB Packet Storm
252178 7.8 危険 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (ディスク消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0949 2011-12-1 10:48 2011-05-25 Show GitHub Exploit DB Packet Storm
252179 7.8 危険 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0943 2011-12-1 10:48 2011-05-25 Show GitHub Exploit DB Packet Storm
252180 6.8 警告 シスコシステムズ - Cisco CiscoWorks Common Services におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-0966 2011-12-1 10:47 2011-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310541 8.8 HIGH
Network 		esafenet cdg A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the function actionDelNetSecConfig of the file /com/esafenet/servlet/netSec/NetSecConfigService.java. The… CWE-89
SQL Injection 		CVE-2024-10135 2024-10-23 03:09 2024-10-19 Show GitHub Exploit DB Packet Storm
310542 7.2 HIGH
Network 		cisco ata_191_firmware
ata_192_firmware 		A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series Analog Telephone Adapter firmware could allow an authenticated, remote attacker with high privileges to exe… CWE-78
OS Command  		CVE-2024-20459 2024-10-23 03:06 2024-10-17 Show GitHub Exploit DB Packet Storm
310543 8.2 HIGH
Network 		cisco ata_191_firmware
ata_192_firmware 		A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to view or delete the configuration or … CWE-78
OS Command  		CVE-2024-20458 2024-10-23 03:03 2024-10-17 Show GitHub Exploit DB Packet Storm
310544 7.5 HIGH
Network 		didiglobal ddmq A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Console Module. The manipulation with the input… CWE-863
 Incorrect Authorization 		CVE-2024-10173 2024-10-23 02:05 2024-10-20 Show GitHub Exploit DB Packet Storm
310545 5.4 MEDIUM
Network 		k2-service product_customizer_light The Product Customizer Light plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.0 due to insufficient input sanitization … CWE-79
Cross-site Scripting 		CVE-2024-9848 2024-10-23 01:42 2024-10-18 Show GitHub Exploit DB Packet Storm
310546 7.4 HIGH
Network 		bitdefender total_security A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly validate website certificates. Specifically, if a site certificate … CWE-295
Improper Certificate Validation  		CVE-2023-6055 2024-10-23 01:39 2024-10-18 Show GitHub Exploit DB Packet Storm
310547 6.8 MEDIUM
Network 		bitdefender total_security A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning functionality where the product incorrectly checks the site's certificate, which allows an attacker to make MITM S… CWE-295
Improper Certificate Validation  		CVE-2023-49567 2024-10-23 01:39 2024-10-18 Show GitHub Exploit DB Packet Storm
310548 7.4 HIGH
Network 		bitdefender total_security A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of self-signed certificates. The product is found to trust certificat… CWE-295
Improper Certificate Validation  		CVE-2023-6056 2024-10-23 01:38 2024-10-18 Show GitHub Exploit DB Packet Storm
310549 5.4 MEDIUM
Network 		newsignature wp_easy_post_types The WP Easy Post Types plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post meta in versions up to, and including, 1.4.4 due to insufficient input sanitization and output escapi… CWE-79
Cross-site Scripting 		CVE-2024-10080 2024-10-23 01:27 2024-10-18 Show GitHub Exploit DB Packet Storm
310550 8.8 HIGH
Network 		newsignature wp_easy_post_types The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.4.4 via deserialization of untrusted input from the 'text' parameter in the 'ajax… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-10079 2024-10-23 01:27 2024-10-18 Show GitHub Exploit DB Packet Storm