Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231041 10 危険 TestLink Development Team - TestLink における脆弱性 CWE-287
不適切な認証 		CVE-2007-6006 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231042 4.3 警告 webex communications - WebEx の GpcContainer.GpcContainer.1 ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6005 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231043 7.5 危険 toko - Toko Instan の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6004 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231044 4.3 警告 Thomson - Thomson SpeedTouch 716 の cgi/b/ic/connect におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6003 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231045 7.5 危険 SoftbizScripts - Softbiz Auctions Script の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5999 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231046 4.3 警告 Trolltech - Trolltech Qt の QSslSocket における偽装サービスの無効なサーバ証明書を承認するようにユーザを騙す脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5965 2012-12-20 18:33 2008-01-7 Show GitHub Exploit DB Packet Storm
231047 4.3 警告 レッドハット - RHN および Red Hat Network Satellite で使用されている Red Hat Network チャンネル検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5961 2012-12-20 18:33 2008-05-20 Show GitHub Exploit DB Packet Storm
231048 6.5 警告 SoftbizScripts - Softbiz Ad Management plus Script の ads.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5998 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231049 6.5 警告 SoftbizScripts - Softbiz Banner Exchange Network Script の campaign_stats.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5997 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
231050 7.5 危険 SoftbizScripts - Softbiz Link Directory Script の searchresult.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5996 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197211 5.7 MEDIUM
Network 		glpi-project glpi GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI version 9.5.3, it was possible to switch ent… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-21255 2024-11-21 14:47 2021-03-3 Show GitHub Exploit DB Packet Storm
197212 8.8 HIGH
Network 		redislabs redis Redis is an open-source, in-memory database that persists on disk. In affected versions of Redis an integer overflow bug in 32-bit Redis version 4.0 or newer could be exploited to corrupt the heap an… - CVE-2021-21309 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197213 9.1 CRITICAL
Network 		prestashop prestashop PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 the soft logout system is not complete and an attacker is able to foreign request and executes custo… - CVE-2021-21308 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197214 7.2 HIGH
Network 		prestashop prestashop PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 there is a CSV Injection vulnerability possible by using shop search keywords via the admin panel. T… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2021-21302 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197215 6.5 MEDIUM
Network 		matrix
fedoraproject 		synapse
fedora 		Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, a mal… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-21274 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197216 6.1 MEDIUM
Network 		matrix
fedoraproject 		synapse
fedora 		Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.25.0, reque… CWE-601
Open Redirect 		CVE-2021-21273 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197217 6.5 MEDIUM
Network 		nodered node-red Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier has a vulnerability which allows arbitrary path traversal via the Projects API. If the … - CVE-2021-21298 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197218 6.5 MEDIUM
Network 		nodered node-red Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier contains a Prototype Pollution vulnerability in the admin API. A badly formed request c… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2021-21297 2024-11-21 14:47 2021-02-27 Show GitHub Exploit DB Packet Storm
197219 7.8 HIGH
Local 		adobe bridge Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user. Ex… - CVE-2021-21066 2024-11-21 14:47 2021-02-25 Show GitHub Exploit DB Packet Storm
197220 7.8 HIGH
Local 		adobe bridge Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user. Ex… - CVE-2021-21065 2024-11-21 14:47 2021-02-25 Show GitHub Exploit DB Packet Storm