Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231611 7.5 危険 weblogicnet - Weblogicnet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4715 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231612 7.5 危険 yvora - Yvora の error_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4714 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231613 4.3 警告 roi revolution - Urchin の urchin.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4713 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231614 4.3 警告 www.toms-seiten.at - Toms Gaestebuch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4711 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231615 7.5 危険 phpBB - phpBB 用の Links MOD における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4653 2012-12-20 18:33 2007-09-4 Show GitHub Exploit DB Packet Storm
231616 6.4 警告 xgb - xGB の xGB.php における不特定の変更を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4637 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231617 7.5 危険 phpbg - phpBG における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4636 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231618 5 警告 Yahoo! - Yahoo! Messenger におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
CWE-20
CVE-2007-4635 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231619 6.9 警告 qgit - QGit の dataloader.cpp における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-4631 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231620 4.3 警告 xigla - Absolute Poll Manager XE の xlaapmview.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4630 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197991 5.4 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2021-20448 2024-11-21 14:46 2021-04-28 Show GitHub Exploit DB Packet Storm
197992 5.5 MEDIUM
Local 		ibm spectrum_protect_client
spectrum_protect_for_space_management 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the applica… CWE-787
 Out-of-bounds Write 		CVE-2021-20546 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197993 6.2 MEDIUM
Local 		ibm spectrum_protect_plus IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 198836. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-20536 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197994 7.8 HIGH
Local 		ibm spectrum_protect_backup-archive_client
spectrum_protect_for_virtual_environments 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 19… CWE-276
Incorrect Default Permissions  		CVE-2021-20532 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197995 6.5 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domai… NVD-CWE-Other
CVE-2021-20432 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197996 6.1 MEDIUM
Network 		nec aterm_wg1900hp2_firmware
aterm_wg1900hp_firmware
aterm_wg1800hp4_firmware
aterm_wg1800hp3_firmware
aterm_wg1200hs3_firmware
aterm_wg1200hs2_firmware
aterm_wg1200hp3_firmware
ater… 		Cross-site scripting vulnerability in NEC Aterm devices (Aterm WG1900HP2 firmware Ver.1.3.1 and earlier, Aterm WG1900HP firmware Ver.2.5.1 and earlier, Aterm WG1800HP4 firmware Ver.1.3.1 and earlier,… CWE-79
Cross-site Scripting 		CVE-2021-20680 2024-11-21 14:46 2021-04-26 Show GitHub Exploit DB Packet Storm
197997 8.2 HIGH
Network 		ibm i IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could e… NVD-CWE-noinfo
CVE-2021-20501 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
197998 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to e… CWE-611
XXE 		CVE-2021-20454 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
197999 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose… CWE-611
XXE 		CVE-2021-20453 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm
198000 6.1 MEDIUM
Local 		samba
redhat
fedoraproject 		cifs-utils
enterprise_linux
fedora 		A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vul… CWE-269
 Improper Privilege Management 		CVE-2021-20208 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm