Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253761	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253762	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253763	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

253764	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

253765	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280441	-	cisco	nx-os	Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via an SSH …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2200	2024-11-21 11:05	2014-05-26	Show	GitHub Exploit DB Packet Storm

280442	-	cisco	wide_area_application_services	Cisco Wide Area Application Services (WAAS) 5.1.1 before 5.1.1e, when SharePoint prefetch optimization is enabled, allows remote SharePoint servers to execute arbitrary code via a malformed response,…	CWE-94 Code Injection	CVE-2014-2196	2024-11-21 11:05	2014-05-26	Show	GitHub Exploit DB Packet Storm

280443	-	microsoft	internet_explorer	Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript code that interacts improperly with a CollectGarbage …	CWE-399 Resource Management Errors	CVE-2014-1770	2024-11-21 11:05	2014-05-22	Show	GitHub Exploit DB Packet Storm

280444	-	seopanel	seo_panel	Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel before 3.5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) capcheck parameter to directories.php or (2) ke…	CWE-79 Cross-site Scripting	CVE-2014-1855	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280445	-	cisco	webex_business_suite webex_training_center webex_meeting_center webex_sales_center webex_event_center webex_meetings_server	meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27…	CWE-200 Information Exposure	CVE-2014-2199	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280446	-	cisco	asyncos content_security_management_appliance email_security_appliance_firmware	Cisco AsyncOS on Email Security Appliance (ESA) and Content Security Management Appliance (SMA) devices, when Active Directory is enabled, does not properly handle group names, which allows remote at…	CWE-20 Improper Input Validation	CVE-2014-2195	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280447	-	cisco	unified_web_and_e-mail_interaction_manager	system/egain/chat/entrypoint in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to have an unspecified impact by injecting a spoofed XML external entity.	CWE-20 Improper Input Validation	CVE-2014-2194	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280448	-	cisco	unified_web_and_e-mail_interaction_manager	Cisco Unified Web and E-Mail Interaction Manager places session identifiers in GET requests, which allows remote attackers to inject conversation text by obtaining a valid identifier, aka Bug ID CSCu…	CWE-20 Improper Input Validation	CVE-2014-2193	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280449	-	cisco	unified_web_and_e-mail_interaction_manager	Cross-site scripting (XSS) vulnerability in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bu…	CWE-79 Cross-site Scripting	CVE-2014-2192	2024-11-21 11:05	2014-05-20	Show	GitHub Exploit DB Packet Storm

280450	-	skyboxsecurity	skybox_view_appliance_iso skybox_view_appliance	Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain s…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2084	2024-11-21 11:05	2014-05-18	Show	GitHub Exploit DB Packet Storm