Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248091 5 警告 CA Technologies - CA eTrust ITM におけるユーザ情報を取得される脆弱性 CWE-200
CWE-264
CVE-2007-5439 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248092 5.8 警告 CA Technologies - CA eTrust ITM の Web コンソールにおける任意の Web サイトにユーザをリダイレクトされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-5437 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248093 7.6 危険 G Data Software - G DATA Antivirus の特定の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5436 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248094 4.3 警告 CA Technologies - CA ERwin Process Modeler におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-5435 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248095 2.6 注意 3com - 3Com 3CRWER100-75 ルータにおけるルータの存在および製品詳細情報を取得される脆弱性 CWE-16
CWE-200
CVE-2007-5420 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248096 10 危険 3com - 3Com 3CRWER100-75 ルータにおける Web 管理インターフェースにアクセスされる脆弱性 CWE-16
環境設定 		CVE-2007-5419 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248097 7.5 危険 care2x - CARE2X 2G における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5418 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248098 5 警告 boastmachine - boastMachine の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5417 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248099 6.8 警告 Drupal - Drupal における任意の PHP コードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2007-5416 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
248100 6.4 警告 creamotion - CMS Creamotion における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5298 2012-06-26 15:54 2007-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199791 8.8 HIGH
Network 		pluginus wordpress_meta_data_and_taxonomies_filter Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authent… CWE-352
 Origin Validation Error 		CVE-2021-20781 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
199792 7.5 HIGH
Network 		retty retty Retty App for Android versions prior to 4.8.13 and Retty App for iOS versions prior to 4.11.14 uses a hard-coded API key for an external service. By exploiting this vulnerability, API key for an exte… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-20748 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
199793 4.3 MEDIUM
Network 		retty retty Improper authorization in handler for custom URL scheme vulnerability in Retty App for Android versions prior to 4.8.13 and Retty App for iOS versions prior to 4.11.14 allows a remote attacker to lea… CWE-862
 Missing Authorization 		CVE-2021-20747 2024-11-21 14:47 2021-07-14 Show GitHub Exploit DB Packet Storm
199794 8.8 HIGH
Network 		wp-currency wordpress_currency_switcher Cross-site request forgery (CSRF) vulnerability in WPCS - WordPress Currency Switcher 1.1.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2021-20780 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199795 8.8 HIGH
Network 		codemiq wordpress_email_template_designer Cross-site request forgery (CSRF) vulnerability in WordPress Email Template Designer - WP HTML Mail versions prior to 3.0.8 allows remote attackers to hijack the authentication of administrators via … CWE-352
 Origin Validation Error 		CVE-2021-20779 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199796 4.3 MEDIUM
Network 		gu-global gu Improper authorization in handler for custom URL scheme vulnerability in GU App for Android versions from 4.8.0 to 5.0.2 allows a remote attacker to lead a user to access an arbitrary website via the… CWE-862
 Missing Authorization 		CVE-2021-20777 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199797 9.8 CRITICAL
Network 		a-stage-inc at-40cm01sr_firmware
sct-40cm01sr_firmware 		Improper authentication vulnerability in SCT-40CM01SR and AT-40CM01SR allows an attacker to bypass access restriction and execute an arbitrary command via telnet. CWE-287
Improper Authentication 		CVE-2021-20776 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199798 6.5 MEDIUM
Adjacent 		elecom wrc-1167fs-w_firmware
wrc-1167fs-b_firmware
wrc-1167fsa_firmware 		WRC-1167FS-W, WRC-1167FS-B, and WRC-1167FSA all versions allow an unauthenticated network-adjacent attacker to obtain sensitive information via unspecified vectors. NVD-CWE-noinfo
CVE-2021-20738 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199799 8.8 HIGH
Adjacent 		elecom wrc-300febk_firmware
wrc-f300nf_firmware
wrc-733febk_firmware
wrh-300rd_firmware
wrh-300bk_firmware
wrh-300sv_firmware
wrh-300wh_firmware
wrh-h300wh_firmware
wrh-h300bk_firmwa… 		WRC-300FEBK, WRC-F300NF, WRC-733FEBK, WRH-300RD, WRH-300BK, WRH-300SV, WRH-300WH, WRH-H300WH, WRH-H300BK, WRH-300BK-S, and WRH-300WH-S all versions allows an unauthenticated network-adjacent attacker… CWE-78
OS Command  		CVE-2021-20739 2024-11-21 14:47 2021-07-7 Show GitHub Exploit DB Packet Storm
199800 7.5 HIGH
Network 		ec-cube ec-cube Improper access control vulnerability in EC-CUBE 4.0.6 (EC-CUBE 4 series) allows a remote attacker to bypass access restriction and obtain sensitive information via unspecified vectors. NVD-CWE-Other
CVE-2021-20778 2024-11-21 14:47 2021-07-1 Show GitHub Exploit DB Packet Storm