Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248911	4.3	警告	exv2	-	eXV2 CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4365	2012-06-26 15:54	2007-08-15	Show	GitHub Exploit DB Packet Storm

248912	8.5	危険	Fedora Project	-	Fedora Commons における LDAP サーバからの特定の "例外 / 未知のレスポンス" を誘発される脆弱性	CWE-287 不適切な認証	CVE-2007-4364	2012-06-26 15:54	2007-08-15	Show	GitHub Exploit DB Packet Storm

248913	4.3	警告	Drupal	-	Drupal CCK の nodereference モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4363	2012-06-26 15:54	2007-08-13	Show	GitHub Exploit DB Packet Storm

248914	4.3	警告	デル	-	DRAC4 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4360	2012-06-26 15:54	2007-08-15	Show	GitHub Exploit DB Packet Storm

248915	9.3	危険	ACD Systems	-	ACD ACDSee Photo Manager における任意のコードを実行される脆弱性	CWE-119 CWE-20	CVE-2007-4344	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

248916	4.3	警告	article dashboard	-	Article Dashboard の signup.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4333	2012-06-26 15:54	2007-08-14	Show	GitHub Exploit DB Packet Storm

248917	7.5	危険	article dashboard	-	Article Dashboard の article.php における SQL インジェクションの脆弱性	-	CVE-2007-4332	2012-06-26 15:54	2007-08-14	Show	GitHub Exploit DB Packet Storm

248918	4.3	警告	ctw design	-	FindNix の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-4331	2012-06-26 15:54	2007-08-13	Show	GitHub Exploit DB Packet Storm

248919	6.8	警告	Phil Schwartz	-	DenyHosts におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4323	2012-06-26 15:54	2007-08-13	Show	GitHub Exploit DB Packet Storm

248920	6.8	警告	ac zoom	-	BlockHosts の blockhosts.py におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4322	2012-06-26 15:54	2007-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201841	8.8	HIGH Network	acemetrix	jquery-deparam	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20087	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201842	8.8	HIGH Network	jquery-sparkle_project	jquery-sparkle	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-sparkle 1.5.2-beta allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20084	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201843	4.9	MEDIUM Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the remote host.	CWE-22 Path Traversal	CVE-2021-20023	2024-11-21 14:45	2021-04-20	Show	GitHub Exploit DB Packet Storm

201844	9.8	CRITICAL Network	sonicwall	global_management_system	A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.	CWE-287 Improper Authentication	CVE-2021-20020	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201845	6.1	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote, unauthenticated attacker to conduct persiste…	CWE-79 Cross-site Scripting	CVE-2021-20080	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201846	7.2	HIGH Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-20022	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201847	9.8	CRITICAL Network	sonicwall	email_security hosted_email_security	A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host.	CWE-269 Improper Privilege Management	CVE-2021-20021	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201848	7.8	HIGH Local	qualcomm	aqt1000_firmware pm8005_firmware pm855_firmware pm855p_firmware pm8998_firmware pmi8998_firmware qat3550_firmware qca1062_firmware qca1064_firmware qca2066_firmware qca6…	Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapd…	CWE-787 Out-of-bounds Write	CVE-2021-1892	2024-11-21 14:45	2021-04-7	Show	GitHub Exploit DB Packet Storm

201849	8.8	HIGH Network	apple debian fedoraproject	safari iphone_os watchos tvos macos ipados debian_linux fedora	A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. 14610.4.3.1.7 and 15610.4.3.1.7), watchOS 7.3.2, macOS Big Sur…	CWE-787 Out-of-bounds Write	CVE-2021-1844	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm

201850	9.8	CRITICAL Network	apple	mac_os_x iphone_os tvos watchos ipad_os macos	A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS …	NVD-CWE-noinfo	CVE-2021-1818	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed