Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248691 7.5 危険 deonixscripts - Web Template Management System の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5233 2012-06-26 15:54 2007-10-5 Show GitHub Exploit DB Packet Storm
248692 6.4 警告 feedburner - WordPress 用 FeedBurner FeedSmith プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5229 2012-06-26 15:54 2007-10-5 Show GitHub Exploit DB Packet Storm
248693 3.5 注意 Drupal - Drupal 用の Project issue tradcking モジュールの subscription 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5228 2012-06-26 15:54 2007-09-27 Show GitHub Exploit DB Packet Storm
248694 4.3 警告 Blackboard, Inc. - BlackBoard Academic Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5227 2012-06-26 15:54 2007-10-5 Show GitHub Exploit DB Packet Storm
248695 5 警告 dircproxy - dircproxy の irc_server.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5226 2012-06-26 15:54 2007-10-5 Show GitHub Exploit DB Packet Storm
248696 6.8 警告 AlstraSoft - AlstraSoft Affiliate Network Pro におけるローカルファイルをインクルードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5223 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
248697 7.5 危険 asp product catalog - ASP Product Catalog の catalog.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5220 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
248698 6.4 警告 サイバーリンク株式会社 - CyberLink PowerDVD の CLAVSetting モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5219 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
248699 4.3 警告 don barnes - Don Barnes DRBGuestbook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5218 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
248700 6.8 警告 altnet
kazaa
grokster		 - Kazaa などで使用される Altnet Download Manager の adm4.dll の ADM4 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5217 2012-06-26 15:54 2007-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201361 7.5 HIGH
Network 		ibm security_guardium IBM Security Guardium 11.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196280. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2021-20419 2024-11-21 14:46 2021-05-24 Show GitHub Exploit DB Packet Storm
201362 7.8 HIGH
Local 		ibm security_guardium IBM Security Guardium 11.2 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 195770. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20389 2024-11-21 14:46 2021-05-24 Show GitHub Exploit DB Packet Storm
201363 6.1 MEDIUM
Network 		ibm security_guardium IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially… CWE-79
Cross-site Scripting 		CVE-2021-20386 2024-11-21 14:46 2021-05-24 Show GitHub Exploit DB Packet Storm
201364 7.2 HIGH
Network 		ibm security_guardium IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerabilit… NVD-CWE-noinfo
CVE-2021-20385 2024-11-21 14:46 2021-05-24 Show GitHub Exploit DB Packet Storm
201365 5.3 MEDIUM
Network 		ibm control_center IBM Control Center 6.2.0.0 could allow a user to obtain sensitive version information that could be used in further attacks against the system. IBM X-Force ID: 198763. NVD-CWE-noinfo
CVE-2021-20529 2024-11-21 14:46 2021-05-20 Show GitHub Exploit DB Packet Storm
201366 5.4 MEDIUM
Network 		ibm control_center IBM Control Center 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially… CWE-79
Cross-site Scripting 		CVE-2021-20528 2024-11-21 14:46 2021-05-20 Show GitHub Exploit DB Packet Storm
201367 5.4 MEDIUM
Network 		ibm maximo_asset_management IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f… CWE-79
Cross-site Scripting 		CVE-2021-20374 2024-11-21 14:46 2021-05-20 Show GitHub Exploit DB Packet Storm
201368 7.5 HIGH
Network 		mitsubishi gt27_firmware
gt25_firmware
gt23_firmware
gt21_firmware
gs21_firmware
gt_softgot2000_firmware 		Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 thro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-20589 2024-11-21 14:46 2021-05-19 Show GitHub Exploit DB Packet Storm
201369 5.3 MEDIUM
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an u… NVD-CWE-Other
CVE-2021-20565 2024-11-21 14:46 2021-05-15 Show GitHub Exploit DB Packet Storm
201370 5.9 MEDIUM
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict T… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-20564 2024-11-21 14:46 2021-05-15 Show GitHub Exploit DB Packet Storm