Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248911 10 危険 アドビシステムズ - Adobe Flash Media Server および Connect Enterprise Server における影響のあるシステムのコントロールを奪取される脆弱性 CWE-DesignError
CVE-2007-6431 2012-06-26 15:54 2008-02-12 Show GitHub Exploit DB Packet Storm
248912 7.8 危険 DELL EMC (旧 EMC Corporation) - EMC RepliStor SP2 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6426 2012-06-26 15:54 2008-02-20 Show GitHub Exploit DB Packet Storm
248913 4.3 警告 Digium - Asterisk Open Source における有効なユーザ名を使用して認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6430 2012-06-26 15:54 2007-12-18 Show GitHub Exploit DB Packet Storm
248914 4.3 警告 Fonality - Fonality Trixbox PBX 製品の registry.pl における任意のコマンド実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6424 2012-06-26 15:54 2007-12-18 Show GitHub Exploit DB Packet Storm
248915 2.1 注意 Debian - Debian GNU/Linux の libdspam7-drv-mysql cron job におけるパスワードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2007-6418 2012-06-26 15:54 2007-10-29 Show GitHub Exploit DB Packet Storm
248916 8.5 危険 Debian - scponly における任意のファイルを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6415 2012-06-26 15:54 2007-08-10 Show GitHub Exploit DB Packet Storm
248917 7.5 危険 adultscript - Adult Script の admin/administrator.php における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-6414 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
248918 6.8 警告 Bitweaver - Bitweaver の wiki/index.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6412 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
248919 4.3 警告 gadu-gadu - Gadu-Gadu の GG Client の HandleEmotsConfig 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6411 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
248920 4.3 警告 gadu-gadu - Gadu-Gadu におけるクロスサイトリクエストフォージェリ攻撃の脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-6410 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196361 7.5 HIGH
Network 		netapp cloud_manager Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability which could allow a remote attacker to cause a Denial of Service (DoS). NVD-CWE-noinfo
CVE-2021-26992 2024-11-21 14:57 2021-03-20 Show GitHub Exploit DB Packet Storm
196362 7.5 HIGH
Network 		netapp cloud_manager Cloud Manager versions prior to 3.9.4 contain an insecure Cross-Origin Resource Sharing (CORS) policy which could allow a remote attacker to interact with Cloud Manager. NVD-CWE-noinfo
CVE-2021-26991 2024-11-21 14:57 2021-03-20 Show GitHub Exploit DB Packet Storm
196363 9.1 CRITICAL
Network 		netapp cloud_manager Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability that could allow a remote attacker to overwrite arbitrary system files. CWE-862
 Missing Authorization 		CVE-2021-26990 2024-11-21 14:57 2021-03-20 Show GitHub Exploit DB Packet Storm
196364 8.1 HIGH
Network 		mikrotik routeros MikroTik RouterOS 6.47.9 allows remote authenticated ftp users to create or overwrite arbitrary .rsc files via the /export command. NOTE: the vendor's position is that this is intended behavior becau… NVD-CWE-noinfo
CVE-2021-27221 2024-11-21 14:57 2021-03-19 Show GitHub Exploit DB Packet Storm
196365 6.1 MEDIUM
Network 		advantech webaccess\/scada WebAccess/SCADA Versions 9.0 and prior is vulnerable to cross-site scripting, which may allow an attacker to send malicious JavaScript code to an unsuspecting user, which could result in hijacking of… CWE-79
Cross-site Scripting 		CVE-2021-27436 2024-11-21 14:57 2021-03-19 Show GitHub Exploit DB Packet Storm
196366 7.5 HIGH
Network 		grafana
netapp 		grafana
e-series_performance_analyzer 		The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set. NVD-CWE-noinfo
CVE-2021-27358 2024-11-21 14:57 2021-03-19 Show GitHub Exploit DB Packet Storm
196367 7.5 HIGH
Network 		konghq kong_gateway An improper access control vulnerability in the JWT plugin in Kong Gateway prior to 2.3.2.0 allows unauthenticated users access to authenticated routes without a valid token JWT. CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2021-27306 2024-11-21 14:57 2021-03-19 Show GitHub Exploit DB Packet Storm
196368 7.5 HIGH
Network 		wowonder wowonder In WoWonder < 3.1, remote attackers can gain access to the database by exploiting a requests.php?f=search-my-followers SQL Injection vulnerability via the event_id parameter. CWE-89
SQL Injection 		CVE-2021-26935 2024-11-21 14:57 2021-03-19 Show GitHub Exploit DB Packet Storm
196369 7.5 HIGH
Network 		ua-parser-js_project ua-parser-js ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing… NVD-CWE-Other
CVE-2021-27292 2024-11-21 14:57 2021-03-17 Show GitHub Exploit DB Packet Storm
196370 7.5 HIGH
Network 		pygments
debian
fedoraproject 		pygments
debian_linux
fedora 		In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity a… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-27291 2024-11-21 14:57 2021-03-17 Show GitHub Exploit DB Packet Storm