Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248361	7.5	危険	fullaspsite	-	Fullaspsite ASP ホスティングサイトの listmain.asp における SQL インジェクションの脆弱性	-	CVE-2007-0951	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248362	6.8	警告	fullaspsite	-	Fullaspsite ASP ホスティングサイトの listmain.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0950	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248363	7.5	危険	アルバネットワークス株式会社 Alcatel-Lucent	-	Aruba Mobility Controllers における管理用インターフェースまたは WLAN へアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-0932	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248364	7.5	危険	アルバネットワークス株式会社 Alcatel-Lucent	-	Aruba Mobility Controllers の管理インターフェースにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-0931	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248365	7.5	危険	apache stats	-	Apache Stats における任意の変数を変更される脆弱性	-	CVE-2007-0930	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248366	4.3	警告	communityserver.org	-	Community Server の search/SearchResults.aspx におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0925	2012-06-26 15:46	2007-02-14	Show	GitHub Exploit DB Packet Storm

248367	4.3	警告	cPanel	-	cPanel WHM の scripts/passwdmysql におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0890	2012-06-26 15:46	2007-02-12	Show	GitHub Exploit DB Packet Storm

248368	7.8	危険	Gecad Technologies	-	axigen におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0887	2012-06-26 15:46	2007-02-12	Show	GitHub Exploit DB Packet Storm

248369	10	危険	Gecad Technologies	-	axigen におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0886	2012-06-26 15:46	2007-02-12	Show	GitHub Exploit DB Packet Storm

248370	7.8	危険	capital request forms	-	Capital Request Forms におけるデータベースの資格情報を取得される脆弱性	-	CVE-2007-0880	2012-06-26 15:46	2007-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197891	9.1	CRITICAL Network	jenkins	jenkins	Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allows any agent to read and write the contents of any build directory stored in Jenkins with very few restrictions.	NVD-CWE-Other	CVE-2021-21697	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197892	9.8	CRITICAL Network	jenkins	jenkins	Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control o…	NVD-CWE-Other	CVE-2021-21696	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197893	8.8	HIGH Network	jenkins	jenkins	FilePath#listFiles lists files outside directories that agents are allowed to access when following symbolic links in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-59 Link Following	CVE-2021-21695	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197894	9.8	CRITICAL Network	jenkins	jenkins	FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-862 Missing Authorization	CVE-2021-21694	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197895	9.8	CRITICAL Network	jenkins	jenkins	When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-863 Incorrect Authorization	CVE-2021-21693	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197896	9.8	CRITICAL Network	jenkins	jenkins	FilePath#renameTo and FilePath#moveAllChildrenTo in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'.	CWE-22 Path Traversal	CVE-2021-21692	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197897	9.8	CRITICAL Network	jenkins	jenkins	Creating symbolic links is possible without the 'symlink' agent-to-controller access control permission in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-59 Link Following	CVE-2021-21691	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197898	9.8	CRITICAL Network	jenkins	jenkins	Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-22 Path Traversal	CVE-2021-21690	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197899	9.1	CRITICAL Network	jenkins	jenkins	FilePath#unzip and FilePath#untar were not subject to any agent-to-controller access control in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	NVD-CWE-Other	CVE-2021-21689	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

197900	7.5	HIGH Network	jenkins	jenkins	The agent-to-controller security check FilePath#reading(FileVisitor) in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read acc…	CWE-862 Missing Authorization	CVE-2021-21688	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm