Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254961 7.5 危険 シスコシステムズ - Cisco Content Services Switch における HTTP Request Smuggling 攻撃の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1576 2010-07-27 17:29 2010-07-2 Show GitHub Exploit DB Packet Storm
254962 7.5 危険 シスコシステムズ - Cisco Content Services Switch における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1575 2010-07-27 17:28 2010-07-2 Show GitHub Exploit DB Packet Storm
254963 6.8 警告 サイバートラスト株式会社
The Perl Foundation
レッドハット		 - Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4829 2010-07-26 18:29 2007-11-2 Show GitHub Exploit DB Packet Storm
254964 9.3 危険 マイクロソフト - Microsoft Windows Help and Support Center に脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-1885 2010-07-23 18:55 2010-06-10 Show GitHub Exploit DB Packet Storm
254965 4.9 警告 マイクロソフト - Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2009-3678 2010-07-23 18:55 2010-05-14 Show GitHub Exploit DB Packet Storm
254966 9.3 危険 サン・マイクロシステムズ
レッドハット
リアルネットワークス		 - Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性 CWE-119
バッファエラー 		CVE-2009-4247 2010-07-23 18:55 2010-01-19 Show GitHub Exploit DB Packet Storm
254967 10 危険 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-4548 2010-07-22 20:51 2007-08-13 Show GitHub Exploit DB Packet Storm
254968 5 警告 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の management EJB における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5085 2010-07-22 20:51 2007-09-6 Show GitHub Exploit DB Packet Storm
254969 7.5 危険 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の SQLLoginModule における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5797 2010-07-22 20:51 2007-10-22 Show GitHub Exploit DB Packet Storm
254970 6.8 警告 InterSect Alliance International Pty - Snare Agent の Web インターフェースにクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2594 2010-07-22 20:51 2010-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289211 - cisco adaptive_security_appliance_software
adaptive_security_appliance 		Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to inject arbitrary web script or HTML via a craft… CWE-79
Cross-site Scripting 		CVE-2013-3414 2024-11-21 10:53 2013-07-26 Show GitHub Exploit DB Packet Storm
289212 - cisco unified_meetingplace_web_conferencing The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, ak… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3438 2024-11-21 10:53 2013-07-24 Show GitHub Exploit DB Packet Storm
289213 - cisco unified_operations_manager Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain i… CWE-79
Cross-site Scripting 		CVE-2013-3440 2024-11-21 10:53 2013-07-24 Show GitHub Exploit DB Packet Storm
289214 - cisco unified_operations_manager Cross-site scripting (XSS) vulnerability in Cisco Unified Operations Manager allows remote attackers to inject arbitrary web script or HTML via a crafted URL in an unspecified HTTP header field, aka … CWE-79
Cross-site Scripting 		CVE-2013-3439 2024-11-21 10:53 2013-07-24 Show GitHub Exploit DB Packet Storm
289215 - cisco aironet_3600e
aironet_3600
aironet_3600p
aironet_3600i 		Cisco Aironet 3600 access points allow remote attackers to cause a denial of service (memory corruption and device crash) by disrupting Cisco Wireless LAN Controller communication and consequently fo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3441 2024-11-21 10:53 2013-07-23 Show GitHub Exploit DB Packet Storm
289216 - cisco unified_operations_manager SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud8… CWE-89
SQL Injection 		CVE-2013-3437 2024-11-21 10:53 2013-07-23 Show GitHub Exploit DB Packet Storm
289217 - cisco unified_ip_conference_station_7937g_firmware
unified_ip_conference_station_7937g 		The Cisco Unified IP Conference Station 7937G allows remote attackers to cause a denial of service (networking outage) via a flood of TCP packets, aka Bug ID CSCuh42052. CWE-399
 Resource Management Errors 		CVE-2013-3435 2024-11-21 10:53 2013-07-23 Show GitHub Exploit DB Packet Storm
289218 - cisco ios The default configuration of the Group Encrypted Transport VPN (GET VPN) feature on Cisco IOS uses an improper mechanism for enabling Group Domain of Interpretation (GDOI) traffic flow, which allows … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3436 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm
289219 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obt… CWE-20
 Improper Input Validation  		CVE-2013-3275 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm
289220 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authen… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3274 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm