Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248071	7.5	危険	aimstats	-	AimStats の process.php における PHP コードを挿入される脆弱性	-	CVE-2007-2167	2012-06-26 15:46	2007-04-22	Show	GitHub Exploit DB Packet Storm

248072	5	警告	アップル	-	Apple Safari におけるサービス運用妨害 (DoS) 状態となる脆弱性	-	CVE-2007-2163	2012-06-26 15:46	2007-04-22	Show	GitHub Exploit DB Packet Storm

248073	7.8	危険	GNU Project Mozilla Foundation	-	Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2162	2012-06-26 15:46	2007-04-22	Show	GitHub Exploit DB Packet Storm

248074	7.5	危険	Drupal	-	Drupal 用の dba モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2160	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

248075	4.3	警告	Drupal	-	Drupal 用の dba モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2159	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

248076	7.5	危険	cabron connector	-	Cabron Connector の services/samples/inclusionService.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2154	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

248077	6.8	警告	atmail pty ltd	-	Atmail の atmail.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2153	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

248078	7.8	危険	bluearc	-	BlueArc Titan デバイスの BlueArc-FTPD における他のサイトへトラフィックをリダイレクトする脆弱性	-	CVE-2007-2150	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

248079	7.5	危険	bonoestente	-	Joomla! の Be2004-2 テンプレートの index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2143	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

248080	7.5	危険	ajportal2php	-	AjPortal2Php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2142	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199481	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon…	CWE-787 Out-of-bounds Write	CVE-2021-1890	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

199482	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr…	CWE-120 Classic Buffer Overflow	CVE-2021-1889	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

199483	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago…	CWE-415 Double Free	CVE-2021-1888	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

199484	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap…	CWE-787 Out-of-bounds Write	CVE-2021-1886	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

199485	8.1	HIGH Adjacent	sonicwall	switch	Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an attacker to cause a system instability or potentially read sensitive information from the memory loc…	CWE-125 Out-of-bounds Read	CVE-2021-20024	2024-11-21 14:45	2021-07-10	Show	GitHub Exploit DB Packet Storm

199486	5.4	MEDIUM Adjacent	sloan	optima_eaf-100_firmware optima_eaf-150_firmware optima_eaf-200_firmware optima_eaf-225_firmware optima_eaf-250_firmware optima_eaf-275_firmware optima_eaf-350_firmware optima_eaf…	There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kin…	CWE-306 Missing Authentication for Critical Function	CVE-2021-20107	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

199487	6.7	MEDIUM Local	tenable	nessus	Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaini…	NVD-CWE-noinfo	CVE-2021-20079	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

199488	6.1	MEDIUM Network	machform	machform	Machform prior to version 16 is vulnerable to an open redirect in Safari_init.php due to an improperly sanitized 'ref' parameter.	CWE-601 Open Redirect	CVE-2021-20105	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

199489	8.1	HIGH Network	machform	machform	Machform prior to version 16 is vulnerable to unauthenticated remote code execution due to insufficient sanitization of file attachments uploaded with forms through upload.php.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-20104	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

199490	6.1	MEDIUM Network	machform	machform	Machform prior to version 16 is vulnerable to stored cross-site scripting due to insufficient sanitization of file attachments uploaded with forms through upload.php.	CWE-79 Cross-site Scripting	CVE-2021-20103	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed