Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248251	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7041	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248252	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7040	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248253	5	警告	atrium software	-	MERCUR Messaging 2005 の IMAP4 サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7039	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248254	7.8	危険	atrium software	-	MERCUR Messaging 2005 におけるバッファオーバーフローの脆弱性	-	CVE-2006-7038	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248255	10	危険	andys chat	-	Andys Chat の register.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7036	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248256	6.8	警告	avatic	-	Aardvark Topsites PHP の sources/join.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7026	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

248257	4.3	警告	fx-app	-	fx-APP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7023	2012-06-26 15:38	2007-02-14	Show	GitHub Exploit DB Packet Storm

248258	10	危険	fx-app	-	fx-APP の Tools モジュールにおける Web ページのコンテンツを不正確に表示する脆弱性	-	CVE-2006-7022	2012-06-26 15:38	2007-02-14	Show	GitHub Exploit DB Packet Storm

248259	7.8	危険	arkoon	-	Arkoon FAST360 UTM の DNS モジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7054	2012-06-26 15:38	2006-05-29	Show	GitHub Exploit DB Packet Storm

248260	7.5	危険	arkoon	-	Arkoon FAST360 UTM における IDPS HTTP モジュール内の署名を回避される脆弱性	-	CVE-2006-7053	2012-06-26 15:38	2006-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197811	7.8	HIGH Local	gonitro	nitro_pro	An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a stack variable to go out of scope, res…	NVD-CWE-Other	CVE-2021-21798	2024-11-21 14:48	2021-09-15	Show	GitHub Exploit DB Packet Storm

197812	4.8	MEDIUM Network	sap	netweaver_enterprise_portal	SAP NetWeaver Enterprise Portal versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user related data, resulting in Stored Cross-Site Scripting (XSS) vulnerability. This…	CWE-79 Cross-site Scripting	CVE-2021-21489	2024-11-21 14:48	2021-09-14	Show	GitHub Exploit DB Packet Storm

197813	5.5	MEDIUM Local	jenkins	nomad	Jenkins Nomad Plugin 0.7.4 and earlier stores Docker passwords unencrypted in the global config.xml file on the Jenkins controller where they can be viewed by users with access to the Jenkins control…	CWE-522 Insufficiently Protected Credentials	CVE-2021-21681	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197814	7.1	HIGH Network	jenkins	nested_view	Jenkins Nested View Plugin 1.20 and earlier does not configure its XML transformer to prevent XML external entity (XXE) attacks.	CWE-611 XXE	CVE-2021-21680	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197815	8.8	HIGH Network	jenkins	azure_ad	Jenkins Azure AD Plugin 179.vf6841393099e and earlier allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.	CWE-352 Origin Validation Error	CVE-2021-21679	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197816	8.8	HIGH Network	jenkins	saml	Jenkins SAML Plugin 2.0.7 and earlier allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.	CWE-352 Origin Validation Error	CVE-2021-21678	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197817	8.8	HIGH Network	jenkins	code_coverage_api	Jenkins Code Coverage API Plugin 1.4.0 and earlier does not apply Jenkins JEP-200 deserialization protection to Java objects it deserializes from disk, resulting in a remote code execution vulnerabil…	CWE-502 Deserialization of Untrusted Data	CVE-2021-21677	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197818	9.8	CRITICAL Network	zte	zxv10_m910_firmware	There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands …	CWE-502 Deserialization of Untrusted Data	CVE-2021-21741	2024-11-21 14:48	2021-08-31	Show	GitHub Exploit DB Packet Storm

197819	7.5	HIGH Network	mz-automation	lib60870	A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications.…	CWE-617 Reachable Assertion	CVE-2021-21778	2024-11-21 14:48	2021-08-26	Show	GitHub Exploit DB Packet Storm

197820	3.3	LOW Local	linux oracle	linux_kernel communications_cloud_native_core_binding_support_function communications_cloud_native_core_policy communications_cloud_native_core_network_exposure_function	An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application…	CWE-908 Use of Uninitialized Resource	CVE-2021-21781	2024-11-21 14:48	2021-08-19	Show	GitHub Exploit DB Packet Storm