Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248101 4.3 警告 daniel broadbent - DB Manager の Edit.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5291 2012-06-26 15:54 2007-10-7 Show GitHub Exploit DB Packet Storm
248102 4.3 警告 AfterLogic - 複数の MailBee WebMail 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5290 2012-06-26 15:54 2007-10-9 Show GitHub Exploit DB Packet Storm
248103 4.3 警告 appfuse - AppFuse の messages.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5280 2012-06-26 15:54 2007-09-12 Show GitHub Exploit DB Packet Storm
248104 7.5 危険 furkan tastan blog - Furkan Tastan Blog の kategori.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5272 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
248105 7.5 危険 bendiken - Drupal の Boost モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-noinfo
情報不足 		CVE-2007-5270 2012-06-26 15:54 2007-10-3 Show GitHub Exploit DB Packet Storm
248106 7.5 危険 dawnoftime - Dawn of Time の websrv.cpp におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-5265 2012-06-26 15:54 2007-10-1 Show GitHub Exploit DB Packet Storm
248107 5 警告 battlefront - Battlefront Dropteam におけるアカウント情報を盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2007-5264 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
248108 7.5 危険 battlefront - Battlefront Dropteam におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5263 2012-06-26 15:54 2007-10-8 Show GitHub Exploit DB Packet Storm
248109 7.5 危険 ActivePDF, Inc. - activePDF Server の activePDF Server サービスにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5397 2012-06-26 15:54 2008-02-28 Show GitHub Exploit DB Packet Storm
248110 6.8 警告 cplinks - cpDynaLinks の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5408 2012-06-26 15:54 2007-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199351 5.4 MEDIUM
Network 		gitlab gitlab Improper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and delete impersonation tokens that administrators created for their account NVD-CWE-Other
CVE-2021-22250 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199352 4.3 MEDIUM
Network 		gitlab gitlab Improper authorization in GitLab CE/EE affecting all versions since 13.0 allows guests in private projects to view CI/CD analytics CWE-863
 Incorrect Authorization 		CVE-2021-22247 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199353 2.7 LOW
Network 		gitlab gitlab Improper validation of commit author in GitLab CE/EE affecting all versions allowed an attacker to make several pages in a project impossible to view CWE-20
 Improper Input Validation  		CVE-2021-22245 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199354 6.5 MEDIUM
Network 		gitlab gitlab Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data NVD-CWE-Other
CVE-2021-22244 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199355 4.3 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to use an invite URL meant for another email address to gain access into a group. CWE-863
 Incorrect Authorization 		CVE-2021-22243 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199356 5.4 MEDIUM
Network 		gitlab gitlab Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown CWE-79
Cross-site Scripting 		CVE-2021-22242 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199357 4.9 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab may allow a user with an impersonation token to perform Git actions even if impersonation is disabled. This vulnerability is present in GitLab CE/EE versions befo… CWE-384
 Session Fixation 		CVE-2021-22237 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199358 8.8 HIGH
Network 		gitlab gitlab Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present in GitLab CE/EE since version 14.1. CWE-863
 Incorrect Authorization 		CVE-2021-22236 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199359 7.8 HIGH
Local 		codesys codesys An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-21869 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199360 8.8 HIGH
Network 		gpac
debian 		gpac
debian_linux 		An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an int… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-21850 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm