Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248241	6.6	警告	Debian	-	Apache HTTP Server における tty 端末への権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-7098	2012-06-26 15:38	2006-03-18	Show	GitHub Exploit DB Packet Storm

248242	8.5	危険	Gentoo Linux Debian	-	Gentoo などで使用される ftpd における gid 0 の権限を持つ任意のディレクトリを一覧にされる脆弱性	-	CVE-2006-7094	2012-06-26 15:38	2006-11-15	Show	GitHub Exploit DB Packet Storm

248243	7.5	危険	cliserv	-	CliServ Web Community における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7068	2012-06-26 15:38	2007-03-2	Show	GitHub Exploit DB Packet Storm

248244	6.8	警告	dreamcost	-	DreamCost HostAdmin における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7056	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248245	7.5	危険	Claroline Consortium	-	Claroline における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7048	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248246	9.3	危険	clan manager pro	-	CMPRO 用 cmpro.intern/login.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7046	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248247	7.5	危険	cmpro team	-	CMPRO における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7045	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248248	7.5	危険	cmpro team	-	CMPRO の comment.core.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7044	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248249	3.5	注意	Chipmunk Scripts	-	Chipmunk Blogger におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7043	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

248250	6.8	警告	Chipmunk Scripts	-	Chipmunk ディレクトリの directory/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7042	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197781	7.8	HIGH Local	exiftool_project debian fedoraproject	exiftool debian_linux fedora	Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image	CWE-94 Code Injection	CVE-2021-22204	2024-11-21 14:49	2021-04-24	Show	GitHub Exploit DB Packet Storm

197782	5.4	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used.	CWE-79 Cross-site Scripting	CVE-2021-22199	2024-11-21 14:49	2021-04-23	Show	GitHub Exploit DB Packet Storm

197783	7.8	HIGH Local	vmware	nsx-t_data_center	VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based access control) role assignment. Successful exploitation of this issue may allow attackers with local …	CWE-269 Improper Privilege Management	CVE-2021-21981	2024-11-21 14:49	2021-04-20	Show	GitHub Exploit DB Packet Storm

197784	6.5	MEDIUM Network	gitlab	gitlab	A path traversal vulnerability via the GitLab Workhorse in all versions of GitLab could result in the leakage of a JWT token	CWE-22 Path Traversal	CVE-2021-22190	2024-11-21 14:49	2021-04-13	Show	GitHub Exploit DB Packet Storm

197785	6.5	MEDIUM Network	cloudfoundry	capi-release cf-deployment	Cloud Controller API versions prior to 1.106.0 logs service broker credentials if the default value of db logging config field is changed. CAPI database logs service broker password in plain text whe…	CWE-522 Insufficiently Protected Credentials	CVE-2021-22115	2024-11-21 14:49	2021-04-9	Show	GitHub Exploit DB Packet Storm

197786	6.5	MEDIUM Network	huawei	ips_module_firmware ngfw_module_firmware secospace_usg6300_firmware secospace_usg6500_firmware secospace_usg6600_firmware usg9500_firmware nip6300_firmware nip6600_firmware ni…	There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release t…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-22312	2024-11-21 14:49	2021-04-9	Show	GitHub Exploit DB Packet Storm

197787	7.2	HIGH Network	proofpoint	insider_threat_management	The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges a…	CWE-611 XXE	CVE-2021-22158	2024-11-21 14:49	2021-04-7	Show	GitHub Exploit DB Packet Storm

197788	6.1	MEDIUM Network	proofpoint	insider_threat_management	Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.11.1 allows stored XSS.	CWE-79 Cross-site Scripting	CVE-2021-22157	2024-11-21 14:49	2021-04-7	Show	GitHub Exploit DB Packet Storm

197789	9.8	CRITICAL Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8.7, all versions starting from 13.9 before 13.9.5, and all versions starting from 13.10 before 13.1…	NVD-CWE-noinfo	CVE-2021-22203	2024-11-21 14:49	2021-04-3	Show	GitHub Exploit DB Packet Storm

197790	4.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all previous versions. If the victim is an admin, it was possible to issue a CSRF in System hooks through the API.	CWE-352 Origin Validation Error	CVE-2021-22202	2024-11-21 14:49	2021-04-3	Show	GitHub Exploit DB Packet Storm