Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252481	7.5	危険	osCommerce	-	osCommerce における複数のディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4543	2011-12-6 16:33	2011-12-5	Show	GitHub Exploit DB Packet Storm

252482	7.5	危険	Zabbix	-	Zabbix の popup.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4674	2011-12-6 16:27	2011-11-24	Show	GitHub Exploit DB Packet Storm

252483	7.5	危険	Automattic Inc.	-	WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4673	2011-12-6 16:26	2011-12-2	Show	GitHub Exploit DB Packet Storm

252484	7.5	危険	Valid	-	Valid tiny-erp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4672	2011-12-6 16:25	2011-12-2	Show	GitHub Exploit DB Packet Storm

252485	7.5	危険	AdRotate Plugin	-	WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4671	2011-12-6 16:24	2011-12-2	Show	GitHub Exploit DB Packet Storm

252486	10	危険	Iron Mountain	-	Iron Mountain Connected Backup の Agent service における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2397	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

252487	6.4	警告	Widelands	-	Widelands の io/filesystem/filesystem.cc におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1932	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

252488	4.3	警告	Etomite Project	-	Etomite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4264	2011-12-6 12:01	2011-12-6	Show	GitHub Exploit DB Packet Storm

252489	7.5	危険	jonkemp	-	WordPress 用 WordPress Users プラグインの wp-users.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4669	2011-12-5 16:08	2011-12-2	Show	GitHub Exploit DB Packet Storm

252490	7.5	危険	IBM	-	IBM Tivoli Netcool/Reporter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4668	2011-12-5 16:07	2011-12-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246841	7.5	HIGH Network	cisco	ip_phone_8800_firmware ip_phone_7800_firmware	A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 7800 Series phones and Cisco IP Phone 8800 Series phones could allow an unauthenticated, remote …	CWE-20 Improper Input Validation	CVE-2018-0325	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246842	6.7	MEDIUM Local	cisco	network_functions_virtualization_infrastructure	A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, high-privileged, local attacker to perform a command injection attack. The vulnerabili…	CWE-78 OS Command	CVE-2018-0324	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246843	6.5	MEDIUM Network	cisco	network_functions_virtualization_infrastructure	A vulnerability in the web management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a path traversal attack on a targeted …	CWE-22 Path Traversal	CVE-2018-0323	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246844	5.8	MEDIUM Network	cisco	firepower_threat_defense	A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC…	CWE-693 Protection Mechanism Failure	CVE-2018-0297	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246845	5.3	MEDIUM Network	cisco	socialminer	A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the notification system. The vulnerability is due…	NVD-CWE-noinfo	CVE-2018-0290	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246846	6.1	MEDIUM Network	cisco	identity_services_engine_software	A vulnerability in the logs component of Cisco Identity Services Engine could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper v…	CWE-79 Cross-site Scripting	CVE-2018-0289	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246847	7.5	HIGH Network	cisco	meeting_server	A vulnerability in the Real-Time Transport Protocol (RTP) bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition…	CWE-20 Improper Input Validation	CVE-2018-0280	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246848	8.8	HIGH Network	cisco	enterprise_nfv_infrastructure_software	A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to access the shell of the underlying Li…	CWE-78 OS Command	CVE-2018-0279	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246849	8.6	HIGH Network	cisco	identity_services_engine	A vulnerability in the Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) certificate validation during EAP authentication for the Cisco Identity Services Engine (ISE) could allow …	CWE-295 Improper Certificate Validation	CVE-2018-0277	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm

246850	9.8	CRITICAL Network	cisco	digital_network_architecture_center	A vulnerability in the API gateway of the Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. The vu…	CWE-287 Improper Authentication	CVE-2018-0271	2024-11-21 12:37	2018-05-17	Show	GitHub Exploit DB Packet Storm