Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248871	5.1	警告	altools	-	ALPass におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2007-4550	2012-06-26 15:54	2007-08-27	Show	GitHub Exploit DB Packet Storm

248872	6.8	警告	altools	-	ALPass におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4549	2012-06-26 15:54	2007-08-27	Show	GitHub Exploit DB Packet Storm

248873	5	警告	Digium	-	Asterisk Open Source におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-4521	2012-06-26 15:54	2007-08-24	Show	GitHub Exploit DB Packet Storm

248874	6.8	警告	american financing	-	American Financing eMail Image Upload の output.php における無制限にファイルをアップロードされる脆弱性	-	CVE-2007-4499	2012-06-26 15:54	2007-08-23	Show	GitHub Exploit DB Packet Storm

248875	7.8	危険	Grandstream Networks	-	Grandstream SIP Phone GXV 3000 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4498	2012-06-26 15:54	2007-08-23	Show	GitHub Exploit DB Packet Storm

248876	5	警告	eZ	-	eZ publish の tipafriend 関数におけるスパム攻撃される脆弱性	-	CVE-2007-4494	2012-06-26 15:54	2007-08-22	Show	GitHub Exploit DB Packet Storm

248877	10	危険	eZ	-	eZ publish における詳細不明な脆弱性	-	CVE-2007-4493	2012-06-26 15:54	2007-08-22	Show	GitHub Exploit DB Packet Storm

248878	6.8	警告	ecentrex	-	eCentrex VOIP Client モジュールの IUAComFormX ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-4489	2012-06-26 15:54	2007-08-22	Show	GitHub Exploit DB Packet Storm

248879	4.3	警告	dscripting.com	-	IPB の D22-Shoutbox におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4487	2012-06-26 15:54	2007-08-22	Show	GitHub Exploit DB Packet Storm

248880	6.8	警告	butterfly	-	Butterfly オンライン訪問者カウンタの visitor.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-4485	2012-06-26 15:54	2007-08-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201171	7.5	HIGH Network	mitsubishielectric	fx3u-enet_firmware fx3u-enet-l_firmware fx3u-enet-p502_firmware	Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version…	NVD-CWE-Other	CVE-2021-20612	2024-11-21 14:46	2022-01-15	Show	GitHub Exploit DB Packet Storm

201172	4.3	MEDIUM Network	zohocorp	manageengine_adselfservice_plus	ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain under the html/ web root with a predictable filename based on the domain name. When ADSSP is configure…	CWE-552 Files or Directories Accessible to External Parties	CVE-2021-20148	2024-11-21 14:46	2022-01-4	Show	GitHub Exploit DB Packet Storm

201173	5.3	MEDIUM Network	zohocorp	manageengine_adselfservice_plus	ManageEngine ADSelfService Plus below build 6116 contains an observable response discrepancy in the UMCP operation of the ChangePasswordAPI. This allows an unauthenticated remote attacker to determin…	CWE-203 Information Exposure Through Discrepancy	CVE-2021-20147	2024-11-21 14:46	2022-01-4	Show	GitHub Exploit DB Packet Storm

201174	7.5	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface. By default, all communication to/from the device's SOAP Interface (port 5000) is sent vi…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-20175	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201175	7.5	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. By default, all communication to/from the device's web interface is sent via HTTP, which …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-20174	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201176	8.8	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. By triggering a system update check via the SOAP interface, the device is s…	CWE-78 OS Command	CVE-2021-20173	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201177	7.8	HIGH Local	netgear	genie_installer	All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. The installer of the macOS version of Netgear Genie handles certain files in an insecur…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-20172	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201178	5.5	MEDIUM Local	netgear	rax43_firmware	Netgear RAX43 version 1.0.3.96 stores sensitive information in plaintext. All usernames and passwords for the device's associated services are stored in plaintext on the device. For example, the admi…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-20171	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201179	8.8	HIGH Network	netgear	rax43_firmware	Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encry…	CWE-798 Use of Hard-coded Credentials	CVE-2021-20170	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

201180	6.8	MEDIUM Physics	netgear	rax43_firmware	Netgear RAX43 version 1.0.3.96 does not utilize secure communications to the web interface. By default, all communication to/from the device is sent via HTTP, which causes potentially sensitive infor…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-20169	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm