Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231671	9.3	危険	迅雷	-	xunlei Web Thunderbolt の ThunderServer.webThunder.1 ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性	-	CVE-2007-3296	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

231672	6.5	警告	yabb	-	YaBB におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3295	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

231673	7.5	危険	XOOPS	-	XOOPS 用の WiwiMod モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3289	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

231674	4.3	警告	skeltoac	-	WordPress 用の Automattic Stats プラグインにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3288	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

231675	6.8	警告	サン・マイクロシステムズ	-	Sun Solaris の GNOME XScreenSaver におけるコンソールへアクセスされる脆弱性	-	CVE-2007-3283	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231676	9	危険	PostgreSQL.org	-	PostgreSQL の dblink における全てのライブラリから関数をマッピングおよび実行される脆弱性	-	CVE-2007-3280	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231677	10	危険	PostgreSQL.org	-	PostgreSQL における関数を作成および実行される脆弱性	-	CVE-2007-3279	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231678	10	危険	Wikindx project	-	WIKINDX 用の localization モジュールにおける特定の管理者機能にアクセスされる脆弱性	-	CVE-2007-3277	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231679	4.3	警告	siteatschool	-	S@S の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3276	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231680	7.5	危険	yourfreescreamer	-	YourFreeScreamer の templates/2blue/bodyTemplate.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3271	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197791	7.8	HIGH Local	linux netapp	linux_kernel cloud_backup	A use-after-free flaw was found in the io_uring in Linux kernel, where a local attacker with a user privilege could cause a denial of service problem on the system The issue results from the lack of …	-	CVE-2021-20226	2024-11-21 14:46	2021-02-24	Show	GitHub Exploit DB Packet Storm

197792	9.8	CRITICAL Network	mitsubishielectric	melfa-works rt_toolbox2 ezsocket fr_configurator fr_configurator_sw3 gx_configurator-dp gx_configurator-qp gx_explorer gx_iec_developer gx_works2 gx_works3 m_commdtm-…	Improper handling of length parameter inconsistency vulnerability in Mitsubishi Electric FA Engineering Software(CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-20588	2024-11-21 14:46	2021-02-20	Show	GitHub Exploit DB Packet Storm

197793	9.8	CRITICAL Network	mitsubishielectric	melfa-works rt_toolbox2 ezsocket fr_configurator fr_configurator_sw3 gx_configurator-dp gx_configurator-qp gx_explorer gx_iec_developer gx_works2 gx_works3 m_commdtm-…	Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Da…	CWE-787 Out-of-bounds Write	CVE-2021-20587	2024-11-21 14:46	2021-02-20	Show	GitHub Exploit DB Packet Storm

197794	5.4	MEDIUM Network	ibm	maximo_for_civil_infrastructure	IBM Maximo for Civil Infrastructure 7.6.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional…	CWE-79 Cross-site Scripting	CVE-2021-20446	2024-11-21 14:46	2021-02-19	Show	GitHub Exploit DB Packet Storm

197795	6.5	MEDIUM Network	ibm	maximo_for_civil_infrastructure	IBM Maximo for Civil Infrastructure 7.6.2 could allow a user to obtain sensitive information due to insecure storeage of authentication credentials. IBM X-Force ID: 196621.	CWE-522 Insufficiently Protected Credentials	CVE-2021-20445	2024-11-21 14:46	2021-02-19	Show	GitHub Exploit DB Packet Storm

197796	6.1	MEDIUM Network	ibm	maximo_for_civil_infrastructure	IBM Maximo for Civil Infrastructure 7.6.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional…	CWE-79 Cross-site Scripting	CVE-2021-20444	2024-11-21 14:46	2021-02-19	Show	GitHub Exploit DB Packet Storm

197797	8.8	HIGH Network	ibm	maximo_for_civil_infrastructure	IBM Maximo for Civil Infrastructure 7.6.2 includes executable functionality (such as a library) from a source that is outside of the intended control sphere. IBM X-Force ID: 196619.	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2021-20443	2024-11-21 14:46	2021-02-19	Show	GitHub Exploit DB Packet Storm

197798	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) …	CWE-22 Path Traversal	CVE-2021-20354	2024-11-21 14:46	2021-02-19	Show	GitHub Exploit DB Packet Storm

197799	7.2	HIGH Network	soliton	filezen	FileZen (V3.0.0 to V4.2.7 and V5.0.0 to V5.0.2) allows a remote attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2021-20655	2024-11-21 14:46	2021-02-17	Show	GitHub Exploit DB Packet Storm

197800	5.3	MEDIUM Network	nec	csdj-b_firmware csdj-h_firmware csdj-d_firmware csdj-a_firmware	Calsos CSDJ (CSDJ-B 01.08.00 and earlier, CSDJ-H 01.08.00 and earlier, CSDJ-D 01.08.00 and earlier, and CSDJ-A 03.08.00 and earlier) allows remote attackers to bypass access restriction and to obtain…	CWE-276 Incorrect Default Permissions	CVE-2021-20653	2024-11-21 14:46	2021-02-17	Show	GitHub Exploit DB Packet Storm