Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248851	7.5	危険	alexscriptengine	-	Picture-Engine の wall.php における SQL インジェクションの脆弱性	-	CVE-2007-1791	2012-06-26 15:46	2007-03-31	Show	GitHub Exploit DB Packet Storm

248852	6.8	警告	Flyspray	-	Flyspray における重要な情報 (プライベートプロジェクトの概要) を取得される脆弱性	-	CVE-2007-1789	2012-06-26 15:46	2007-03-31	Show	GitHub Exploit DB Packet Storm

248853	6.8	警告	Flyspray	-	Flyspray における認証を回避される脆弱性	-	CVE-2007-1788	2012-06-26 15:46	2007-03-16	Show	GitHub Exploit DB Packet Storm

248854	7.1	危険	CA Technologies	-	CA BrightStor ARCserve Backup の RPC サービスにおける任意のコードを実行される脆弱性	-	CVE-2007-1785	2012-06-26 15:46	2007-03-30	Show	GitHub Exploit DB Packet Storm

248855	7.5	危険	advanced website creator	-	AWC の MySQL バックエンドにおける SQL インジェクションの脆弱性	-	CVE-2007-1779	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

248856	10	危険	eve-nuke	-	PHP-Nuke のEN-Forums モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1778	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

248857	6.8	警告	designforjoomla	-	Joomla! 用の DesignForJoomla.com D4J eZine コンポーネントの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1776	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

248858	9.3	危険	ay system solutions	-	Ay System Solutions WCS の manage/javascript/formjavascript.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1771	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

248859	10	危険	Esri	-	ESRI ArcGIS の giomgr におけるバッファオーバーフローの脆弱性	-	CVE-2007-1770	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

248860	7.8	危険	AOL	-	AOL の Deskbar.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1767	2012-06-26 15:46	2007-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196891	5.5	MEDIUM Local	trendmicro	serverprotect	A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The speci…	CWE-400 Uncontrolled Resource Consumption	CVE-2021-25224	2024-11-21 14:54	2021-01-28	Show	GitHub Exploit DB Packet Storm

196892	8.8	HIGH Network	wisc	htcondor	HTCondor before 8.9.11 allows a user to submit a job as another user on the system, because of a flaw in the IDTOKENS authentication method.	CWE-306 Missing Authentication for Critical Function	CVE-2021-25312	2024-11-21 14:54	2021-01-28	Show	GitHub Exploit DB Packet Storm

196893	9.9	CRITICAL Network	wisc	htcondor	condor_credd in HTCondor before 8.9.11 allows Directory Traversal outside the SEC_CREDENTIAL_DIRECTORY_OAUTH directory, as demonstrated by creating a file under /etc that will later be executed by ro…	CWE-22 Path Traversal	CVE-2021-25311	2024-11-21 14:54	2021-01-28	Show	GitHub Exploit DB Packet Storm

196894	6.1	MEDIUM Network	misp	misp	MISP 2.4.136 has XSS via galaxy cluster element values to app/View/GalaxyElements/ajax/index.ctp. Reference types could contain javascript: URLs.	CWE-79 Cross-site Scripting	CVE-2021-25325	2024-11-21 14:54	2021-01-20	Show	GitHub Exploit DB Packet Storm

196895	6.1	MEDIUM Network	misp	misp	MISP 2.4.136 has Stored XSS in the galaxy cluster view via a cluster name to app/View/GalaxyClusters/view.ctp.	CWE-79 Cross-site Scripting	CVE-2021-25324	2024-11-21 14:54	2021-01-20	Show	GitHub Exploit DB Packet Storm

196896	9.1	CRITICAL Network	misp	misp	The default setting of MISP 2.4.136 did not enable the requirements (aka require_password_confirmation) to provide the previous password when changing a password.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2021-25323	2024-11-21 14:54	2021-01-20	Show	GitHub Exploit DB Packet Storm

196897	7.8	HIGH Local	opendesign siemens	drawings_software_development_kit jt2go teamcenter_visualization comos	An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. T…	CWE-787 Out-of-bounds Write	CVE-2021-25178	2024-11-21 14:54	2021-01-18	Show	GitHub Exploit DB Packet Storm

196898	7.8	HIGH Local	opendesign siemens	drawings_software_development_kit jt2go teamcenter_visualization comos	An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Confusion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, pot…	CWE-843 Type Confusion	CVE-2021-25177	2024-11-21 14:54	2021-01-18	Show	GitHub Exploit DB Packet Storm

196899	7.8	HIGH Local	opendesign siemens	drawings_software_development_kit jt2go teamcenter_visualization comos	An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash,…	CWE-476 NULL Pointer Dereference	CVE-2021-25176	2024-11-21 14:54	2021-01-18	Show	GitHub Exploit DB Packet Storm

196900	7.8	HIGH Local	opendesign siemens	drawings_software_development_kit jt2go teamcenter_visualization comos	An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, po…	CWE-704 Incorrect Type Conversion or Cast	CVE-2021-25175	2024-11-21 14:54	2021-01-18	Show	GitHub Exploit DB Packet Storm