Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249011 6.8 警告 agner fog - aForum の common/errormsg.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2634 2012-06-26 15:46 2007-05-13 Show GitHub Exploit DB Packet Storm
249012 6.5 警告 activecampaign - FCKeditor モジュールの filemanager/browser/default/connectors/php/config.php における .php4 および .php5 をアップロードされる脆弱性 - CVE-2007-2630 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
249013 7.8 危険 Bradford Networks - Bradford CampusManager Network Control Application Server における重要な情報を取得される脆弱性 - CVE-2007-2629 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249014 6.8 警告 aiocp - AIOCP の shared/code/cp_authorization.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2625 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249015 6.8 警告 aiocp - AIOCP の shared/config/cp_config.php におけるクロスサイトスクリプティング攻撃を誘発する脆弱性 - CVE-2007-2624 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249016 7.8 危険 fruit2004 - Remote Display Dev キットの RControl.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-2623 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249017 7.5 危険 extrovert software - Thyme Calendar の event_view.php における SQL インジェクションの脆弱性 - CVE-2007-2621 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249018 5.1 警告 drake team - Drake CMS の index.php における CRLF インジェクションの脆弱性 - CVE-2007-2618 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249019 7.5 危険 crie sue - Crie seu PHPLojaFacil における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2615 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
249020 6.8 警告 cgx - CGX における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2611 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196151 6.5 MEDIUM
Network 		user_management_system_in_php_stored_procedure_project user_management_system_in_php_stored_procedure Cross Site Request Forgery (CSRF) vulnerability in Change-password.php in phpgurukul user management system in php using stored procedure V1.0, allows attackers to change the password to an arbitrary… CWE-352
 Origin Validation Error 		CVE-2021-26800 2024-11-21 14:56 2021-12-17 Show GitHub Exploit DB Packet Storm
196152 6.1 MEDIUM
Network 		genesys workforce_management A cross site scripting (XSS) vulnerability in Genesys Workforce Management 8.5.214.20 can occur (during record deletion) via the Time-off parameter. CWE-79
Cross-site Scripting 		CVE-2021-26787 2024-11-21 14:56 2021-12-15 Show GitHub Exploit DB Packet Storm
196153 8.4 HIGH
Local 		amd epyc_7001_firmware
epyc_7232p_firmware
epyc_7251_firmware
epyc_7261_firmware
epyc_7252_firmware
epyc_74f3_firmware
epyc_7501_firmware
epyc_7502_firmware
epyc_7502p_firmware 		A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Translation Lookaside Buffer (TLB) resulting in unexpected behavior ins… NVD-CWE-noinfo
CVE-2021-26340 2024-11-21 14:56 2021-12-11 Show GitHub Exploit DB Packet Storm
196154 9.8 CRITICAL
Network 		circutor compact_dc-s_basic_firmware Buffer overflow vulnerability in function SetFirewall in index.cgi in CIRCUTOR COMPACT DC-S BASIC smart metering concentrator Firwmare version CIR_CDC_v1.2.17, allows attackers to execute arbitrary c… CWE-120
Classic Buffer Overflow 		CVE-2021-26777 2024-11-21 14:56 2021-12-2 Show GitHub Exploit DB Packet Storm
196155 9.9 CRITICAL
Network 		amd amd_uprof The AMDPowerProfiler.sys driver of AMD µProf tool may allow lower privileged users to access MSRs in kernel which may lead to privilege escalation and ring-0 code execution by the lower privileged us… NVD-CWE-Other
CVE-2021-26334 2024-11-21 14:56 2021-12-2 Show GitHub Exploit DB Packet Storm
196156 9.8 CRITICAL
Network 		tobesoft nexacro An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creatio… CWE-20
 Improper Input Validation  		CVE-2021-26612 2024-11-21 14:56 2021-12-1 Show GitHub Exploit DB Packet Storm
196157 8.8 HIGH
Network 		bandisoft ark_library ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow. CWE-190
 Integer Overflow or Wraparound 		CVE-2021-26615 2024-11-21 14:56 2021-11-27 Show GitHub Exploit DB Packet Storm
196158 9.8 CRITICAL
Network 		hej hejhome_gkw-ic052_firmware HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows remote attackers to operate the IP Camera.(reboot, factory reset, snapshot etc..) CWE-798
 Use of Hard-coded Credentials 		CVE-2021-26611 2024-11-21 14:56 2021-11-27 Show GitHub Exploit DB Packet Storm
196159 9.8 CRITICAL
Network 		iptime c200_firmware ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a crafted parameters to the exposed vulnerable web service interface which invokes the arbitrary shell comma… NVD-CWE-noinfo
CVE-2021-26614 2024-11-21 14:56 2021-11-23 Show GitHub Exploit DB Packet Storm
196160 5.5 MEDIUM
Local 		philips mri_3t_firmware
mri_1.5t_firmware 		Philips MRI 1.5T and MRI 3T Version 5.x.x does not restrict or incorrectly restricts access to a resource from an unauthorized actor. NVD-CWE-Other
CVE-2021-26262 2024-11-21 14:56 2021-11-20 Show GitHub Exploit DB Packet Storm