Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230991 7.2 危険 sing - Debian GNU/Linux 上で稼動している sing における任意のファイルを追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6211 2012-12-20 18:34 2007-12-3 Show GitHub Exploit DB Packet Storm
230992 2.1 注意 Zabbix - ZABBIX の zabbix_agentd における権限を取得される脆弱性 CWE-16
環境設定 		CVE-2007-6210 2012-12-20 18:34 2007-11-25 Show GitHub Exploit DB Packet Storm
230993 4.6 警告 zsh - zsh の Util/difflog.pl における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6209 2012-12-20 18:34 2007-12-3 Show GitHub Exploit DB Packet Storm
230994 4.3 警告 s9y - S9Y Serendipity のリモート RSS sidebar プラグイン におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6205 2012-12-20 18:34 2007-12-8 Show GitHub Exploit DB Packet Storm
230995 7.5 危険 wesnoth - Wesnoth におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6201 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
230996 6.8 警告 pmapper - Armin Burger p.mapper における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6191 2012-12-20 18:34 2007-11-29 Show GitHub Exploit DB Packet Storm
230997 7.5 危険 tumusika evolution - TuMusika Evolution におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6188 2012-12-20 18:34 2007-11-29 Show GitHub Exploit DB Packet Storm
230998 10 危険 phpdevshell - PHPDevShell における脆弱性 CWE-noinfo
情報不足 		CVE-2007-6186 2012-12-20 18:34 2007-11-29 Show GitHub Exploit DB Packet Storm
230999 7.5 危険 project alumni - Project Alumni の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6184 2012-12-20 18:34 2007-11-29 Show GitHub Exploit DB Packet Storm
231000 6.8 警告 ruby gnome2 - Ruby-GNOME 2 の gtk/src/rbgtkmessagedialog.c におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-6183 2012-12-20 18:34 2007-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197001 4.3 MEDIUM
Network 		groupsession groupsession_zion
groupsession_bycloud
groupsession 		Cross-site request forgery (CSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to v… CWE-352
 Origin Validation Error 		CVE-2021-20786 2024-11-21 14:47 2021-07-30 Show GitHub Exploit DB Packet Storm
197002 4.8 MEDIUM
Network 		groupsession groupsession_zion
groupsession_bycloud
groupsession 		Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and … CWE-79
Cross-site Scripting 		CVE-2021-20785 2024-11-21 14:47 2021-07-30 Show GitHub Exploit DB Packet Storm
197003 8.8 HIGH
Network 		softbank optical_bb_unit_e-wmta_firmware Cross-site request forgery (CSRF) vulnerability in Optical BB unit E-WMTA2.3 allows a remote attacker to hijack the authentication of administrators via a specially crafted page. CWE-352
 Origin Validation Error 		CVE-2021-20783 2024-11-21 14:47 2021-07-30 Show GitHub Exploit DB Packet Storm
197004 6.1 MEDIUM
Network 		voidtools everything HTTP header injection vulnerability in Everything all versions except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product via unspeci… NVD-CWE-Other
CVE-2021-20784 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
197005 8.8 HIGH
Network 		tipsandtricks-hq software_license_manager Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2021-20782 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
197006 8.8 HIGH
Network 		pluginus wordpress_meta_data_and_taxonomies_filter Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authent… CWE-352
 Origin Validation Error 		CVE-2021-20781 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
197007 7.5 HIGH
Network 		retty retty Retty App for Android versions prior to 4.8.13 and Retty App for iOS versions prior to 4.11.14 uses a hard-coded API key for an external service. By exploiting this vulnerability, API key for an exte… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-20748 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
197008 4.3 MEDIUM
Network 		retty retty Improper authorization in handler for custom URL scheme vulnerability in Retty App for Android versions prior to 4.8.13 and Retty App for iOS versions prior to 4.11.14 allows a remote attacker to lea… CWE-862
 Missing Authorization 		CVE-2021-20747 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
197009 8.8 HIGH
Network 		wp-currency wordpress_currency_switcher Cross-site request forgery (CSRF) vulnerability in WPCS - WordPress Currency Switcher 1.1.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2021-20780 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
197010 8.8 HIGH
Network 		codemiq wordpress_email_template_designer Cross-site request forgery (CSRF) vulnerability in WordPress Email Template Designer - WP HTML Mail versions prior to 3.0.8 allows remote attackers to hijack the authentication of administrators via … CWE-352
 Origin Validation Error 		CVE-2021-20779 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm