Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252331	4.3	警告	The Tor Project	-	Tor における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4896	2011-12-27 11:13	2011-12-23	Show	GitHub Exploit DB Packet Storm

252332	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4895	2011-12-27 11:10	2011-12-23	Show	GitHub Exploit DB Packet Storm

252333	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4894	2011-12-27 11:06	2011-12-23	Show	GitHub Exploit DB Packet Storm

252334	7.6	危険	The Tor Project	-	Tor におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2778	2011-12-27 11:04	2011-12-16	Show	GitHub Exploit DB Packet Storm

252335	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-2769	2011-12-27 11:01	2011-10-27	Show	GitHub Exploit DB Packet Storm

252336	5.8	警告	The Tor Project	-	Tor における匿名化のためのプロパティを無効にされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2768	2011-12-27 10:54	2011-10-27	Show	GitHub Exploit DB Packet Storm

252337	7.5	危険	PmWiki	-	PmWiki の PageListSort 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4453	2011-12-27 10:46	2011-11-11	Show	GitHub Exploit DB Packet Storm

252338	-	-	The Support Incident Tracker Project	-	Support Incident Tracker に複数の脆弱性	-	CVE-2011-3831 CVE-2011-3833 CVE-2011-5067 CVE-2011-5068 CVE-2011-5069 CVE-2011-5070	2011-12-27 09:42	2011-12-5	Show	GitHub Exploit DB Packet Storm

252339	9.3	危険	Sielco Sistemi	-	Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4037	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

252340	5	警告	Moodle	-	Moodle の calendar/set.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4203	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247061	6.7	MEDIUM Local	cisco	web_security_appliance	A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate wi…	CWE-269 Improper Privilege Management	CVE-2018-0428	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247062	8.8	HIGH Network	cisco	application_policy_infrastructure_controller_enterprise_module	A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability …	CWE-78 OS Command	CVE-2018-0427	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247063	7.5	HIGH Network	cisco	email_security_appliance	A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass the filtering functionality of an affecte…	CWE-20 Improper Input Validation	CVE-2018-0419	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247064	8.6	HIGH Network	cisco	ios_xr	A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software could allow an unauthenticated, remote attacker to cause a deni…	CWE-20 Improper Input Validation	CVE-2018-0418	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247065	6.8	MEDIUM Adjacent	cisco	wap121_firmware wap125_firmware wap131_firmware wap150_firmware wap321_firmware wap351_firmware wap361_firmware wap371_firmware	A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie…	CWE-388 7PK - Errors	CVE-2018-0415	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247066	5.3	MEDIUM Adjacent	cisco	wap121_firmware wap125_firmware wap131_firmware wap150_firmware wap321_firmware wap351_firmware wap361_firmware wap371_firmware	A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie…	NVD-CWE-noinfo	CVE-2018-0412	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247067	8.6	HIGH Network	cisco	web_security_appliance	A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-0410	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247068	7.5	HIGH Network	cisco	telepresence_video_communication_server unified_communications_manager_im_and_presence_service	A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway coul…	CWE-125 Out-of-bounds Read	CVE-2018-0409	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247069	6.1	MEDIUM Network	cisco	unified_communications_domain_manager hosted_collaboration_solution	A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on an affected system. The vulne…	CWE-79 Cross-site Scripting	CVE-2018-0386	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247070	5.4	MEDIUM Network	cisco	registered_envelope_service	A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a u…	CWE-79 Cross-site Scripting	CVE-2018-0367	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm