Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231181 6.8 警告 xkiosk - xKiosk WEB の system/funcs/xkurl.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5314 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231182 7.5 危険 script-solution.de - Picturesolution の install/config.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5313 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231183 4.3 警告 torrenttrader - TorrentTrader Classic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5312 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231184 7.5 危険 torrenttrader - TorrentTrader Classic Edition の backend/admin-functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5311 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231185 7.5 危険 yannick tanguy - ELSEIF CMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5307 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231186 5 警告 yannick tanguy - ELSEIF CMS における重要な情報を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5306 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231187 7.5 危険 yannick tanguy - ELSEIF CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5305 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231188 4.3 警告 yannick tanguy - ELSEIF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5304 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231189 4.3 警告 snewscms - SnewsCMS Rus の news_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5303 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
231190 4.3 警告 splitside - Directory Image Gallery の photos.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5292 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197361 4.9 MEDIUM
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 3.0.0.2 could allow a user to bruce force sensitive information due to not properly limiting the number of interactions. IBM X-Force ID: 196216. NVD-CWE-Other
CVE-2021-20414 2024-11-21 14:46 2021-07-13 Show GitHub Exploit DB Packet Storm
197362 7.5 HIGH
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. CWE-306
Missing Authentication for Critical Function 		CVE-2021-20474 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197363 4.3 MEDIUM
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 4.0.0.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be … CWE-209
Information Exposure Through an Error Message 		CVE-2021-20417 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197364 5.3 MEDIUM
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 3.0.0.3 and 4.0.0.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit t… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20416 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197365 7.5 HIGH
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 196217. CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-20415 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197366 7.5 HIGH
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 3.0.0.3 and 4.0.0.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 195711. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2021-20379 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197367 8.8 HIGH
Network 		ibm guardium_data_encryption IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 1957… CWE-613
 Insufficient Session Expiration 		CVE-2021-20378 2024-11-21 14:46 2021-07-8 Show GitHub Exploit DB Packet Storm
197368 6.5 MEDIUM
Network 		ibm
netapp 		cognos_analytics
oncommand_insight 		IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the System Appearance configuration setting. An attacker could potentially bypass business logic to modify the… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-20461 2024-11-21 14:46 2021-06-30 Show GitHub Exploit DB Packet Storm
197369 4.3 MEDIUM
Network 		ibm planning_analytics IBM Planning Analytics 2.0 could be vulnerable to cross-site request forgery (CSRF) which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the websit… CWE-352
 Origin Validation Error 		CVE-2021-20580 2024-11-21 14:46 2021-06-30 Show GitHub Exploit DB Packet Storm
197370 5.5 MEDIUM
Local 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791. CWE-276
Incorrect Default Permissions  		CVE-2021-20490 2024-11-21 14:46 2021-06-30 Show GitHub Exploit DB Packet Storm