Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249071	7.5	危険	LedgerSMB dws systems inc.	-	LedgerSMB における制限された機能にアクセスされる脆弱性	-	CVE-2007-1923	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249072	4.3	警告	arizona-dream	-	Arizona Dream livor の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1919	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249073	6.8	警告	MyBB Group ecardmax.com	-	eCardMAX Hot Editor および HotEditor プラグインの richedit/keyboard.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1906	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249074	4.3	警告	AOL	-	AIM および ICQ におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1904	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249075	9.3	危険	アカマイテクノロジーズ	-	Akamai Technologies Download Manager ActiveX コントロール (DownloadManagerV2.ocx) におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1892	2012-06-26 15:46	2007-04-17	Show	GitHub Exploit DB Packet Storm

249076	7.2	危険	アドビシステムズ	-	Adobe ColdFusion MX における任意のコードを実行される脆弱性	-	CVE-2007-1874	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249077	4.3	警告	chcounter	-	chcounter におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1871	2012-06-26 15:46	2007-04-13	Show	GitHub Exploit DB Packet Storm

249078	5	警告	drake team	-	Drake CMS の classes/captcha/captcha.jpg.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1850	2012-06-26 15:46	2007-04-3	Show	GitHub Exploit DB Packet Storm

249079	7.5	危険	drake team	-	Drake CMS の 404.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1849	2012-06-26 15:46	2007-04-3	Show	GitHub Exploit DB Packet Storm

249080	4.3	警告	drake team	-	Drake CMS の admin/classes/ui.dta.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1848	2012-06-26 15:46	2007-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196201	6.5	MEDIUM Network	arubanetworks	clearpass_policy_manager	A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management int…	CWE-89 SQL Injection	CVE-2021-26685	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196202	4.9	MEDIUM Network	nozominetworks	guardian central_management_control	Path Traversal vulnerability when changing timezone using web GUI of Nozomi Networks Guardian, CMC allows an authenticated administrator to read-protected system files. This issue affects: Nozomi Net…	CWE-22 Path Traversal	CVE-2021-26725	2024-11-21 14:56	2021-02-23	Show	GitHub Exploit DB Packet Storm

196203	7.2	HIGH Network	nozominetworks	guardian central_management_control	OS Command Injection vulnerability when changing date settings or hostname using web GUI of Nozomi Networks Guardian and CMC allows authenticated administrators to perform remote code execution. This…	CWE-78 OS Command	CVE-2021-26724	2024-11-21 14:56	2021-02-23	Show	GitHub Exploit DB Packet Storm

196204	6.5	MEDIUM Network	digium	certified_asterisk asterisk	A stack-based buffer overflow in res_rtp_asterisk.c in Sangoma Asterisk before 16.16.1, 17.x before 17.9.2, and 18.x before 18.2.1 and Certified Asterisk before 16.8-cert6 allows an authenticated Web…	CWE-787 Out-of-bounds Write	CVE-2021-26713	2024-11-21 14:56	2021-02-20	Show	GitHub Exploit DB Packet Storm

196205	7.5	HIGH Network	apache netapp	myfaces oncommand_insight	In the default configuration, Apache MyFaces Core versions 2.2.0 to 2.2.13, 2.3.0 to 2.3.7, 2.3-next-M1 to 2.3-next-M4, and 3.0.0-RC1 use cryptographically weak implicit and explicit cross-site reque…	CWE-352 Origin Validation Error	CVE-2021-26296	2024-11-21 14:56	2021-02-19	Show	GitHub Exploit DB Packet Storm

196206	6.1	MEDIUM Network	openenergymonitor	emoncms	Modules/input/Views/schedule.php in Emoncms through 10.2.7 allows XSS via the node parameter.	CWE-79 Cross-site Scripting	CVE-2021-26716	2024-11-21 14:56	2021-02-21	Show	GitHub Exploit DB Packet Storm

196207	5.4	MEDIUM Network	apache	livy	Livy server version 0.7.0-incubating (only) is vulnerable to a cross site scripting issue in the session name. A malicious user could use this flaw to access logs and results of other users' sessions…	CWE-79 Cross-site Scripting	CVE-2021-26544	2024-11-21 14:56	2021-02-20	Show	GitHub Exploit DB Packet Storm

196208	6.1	MEDIUM Network	chamilo	chamilo	Chamilo 1.11.14 allows XSS via a main/calendar/agenda_list.php?type= URI.	CWE-79 Cross-site Scripting	CVE-2021-26746	2024-11-21 14:56	2021-02-19	Show	GitHub Exploit DB Packet Storm

196209	9.8	CRITICAL Network	netis-systems	wf2780_firmware wf2411_firmware	Netis WF2780 2.3.40404 and WF2411 1.1.29629 devices allow Shell Metacharacter Injection into the ping command, leading to remote code execution.	CWE-78 OS Command	CVE-2021-26747	2024-11-21 14:56	2021-02-19	Show	GitHub Exploit DB Packet Storm

196210	7.5	HIGH Network	digium	certified_asterisk asterisk	Incorrect access controls in res_srtp.c in Sangoma Asterisk 13.38.1, 16.16.0, 17.9.1, and 18.2.0 and Certified Asterisk 16.8-cert5 allow a remote unauthenticated attacker to prematurely terminate sec…	NVD-CWE-Other	CVE-2021-26712	2024-11-21 14:56	2021-02-19	Show	GitHub Exploit DB Packet Storm