Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252301	5	警告	phpAlbum	-	phpAlbum の main.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4807	2011-12-16 15:23	2011-12-14	Show	GitHub Exploit DB Packet Storm

252302	4.3	警告	phpAlbum	-	phpAlbum の main.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4806	2011-12-16 15:20	2011-12-14	Show	GitHub Exploit DB Packet Storm

252303	4.3	警告	SAP	-	SAP Crystal Report Server の pubDBLogon.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4805	2011-12-16 15:18	2011-12-14	Show	GitHub Exploit DB Packet Storm

252304	7.5	危険	Authenex	-	ASAS Server 上の Authenex Web Management Control における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4801	2011-12-16 15:16	2011-09-16	Show	GitHub Exploit DB Packet Storm

252305	9	危険	Rhino Software	-	Serv-U FTP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4800	2011-12-16 15:15	2011-12-14	Show	GitHub Exploit DB Packet Storm

252306	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer におけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-3404	2011-12-16 11:52	2011-12-13	Show	GitHub Exploit DB Packet Storm

252307	9.3	危険	マイクロソフト	-	Windows 2008 および Windows 7 上で稼働する Microsoft Internet Explorer 9 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2019	2011-12-16 11:50	2011-12-13	Show	GitHub Exploit DB Packet Storm

252308	7.2	危険	マイクロソフト	-	複数の Microsoft Windows のカーネルにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2018	2011-12-16 11:49	2011-12-13	Show	GitHub Exploit DB Packet Storm

252309	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 8 の XSS フィルタにおけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1992	2011-12-16 11:48	2011-12-13	Show	GitHub Exploit DB Packet Storm

252310	9.3	危険	マイクロソフト	-	Microsoft Excel および Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3403	2011-12-16 11:40	2011-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247011	8.8	HIGH Network	cisco	prime_service_catalog	A vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to execute unwanted actions on an affected device. The vulnerability is due to a la…	CWE-352 Origin Validation Error	CVE-2018-0107	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247012	3.3	LOW Local	cisco	elastic_services_controller	A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an unauthenticated, local attacker to access sensitive information on a targeted system. The vulnerabili…	CWE-552 Files or Directories Accessible to External Parties	CVE-2018-0106	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247013	5.3	MEDIUM Network	cisco	unified_communications_manager	A vulnerability in the web framework of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protectio…	CWE-425 Direct Request ('Forced Browsing')	CVE-2018-0105	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247014	5.3	MEDIUM Network	cisco	webex_meetings_server	A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerability to gain inf…	CWE-200 Information Exposure	CVE-2018-0111	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247015	8.1	HIGH Network	cisco	webex_meetings_server	A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to access the remote support account even after it has been disabled via the web application. The vulnerab…	CWE-863 Incorrect Authorization	CVE-2018-0110	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247016	2.7	LOW Network	cisco	webex_meetings_server	A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerability to obtain inf…	CWE-200 Information Exposure	CVE-2018-0109	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247017	5.3	MEDIUM Network	cisco	webex_meetings_server	A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to collect customer files via an out-of-band XML External Entity (XXE) injection. An attacker could expl…	CWE-611 XXE	CVE-2018-0108	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247018	7.4	HIGH Adjacent	cisco	nx-os	A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. T…	CWE-415 Double Free	CVE-2018-0102	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247019	4.4	MEDIUM Local	cisco	anyconnect_secure_mobility_client	A vulnerability in the Profile Editor of the Cisco AnyConnect Secure Mobility Client could allow an unauthenticated, local attacker to have read and write access to information stored in the affected…	CWE-611 XXE	CVE-2018-0100	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm

247020	8.8	HIGH Network	cisco	d9800_firmware	A vulnerability in the web management GUI of the Cisco D9800 Network Transport Receiver could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability is due t…	CWE-78 OS Command	CVE-2018-0099	2024-11-21 12:37	2018-01-18	Show	GitHub Exploit DB Packet Storm