Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249201 4.9 警告 Fabrice Bellard - QEMU における仮想マシンを停止される脆弱性 - CVE-2007-1322 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
249202 7.8 危険 Digium - Asterisk におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2007-1306 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249203 7.8 危険 douran software technologies - DOURAN Software Technologies ISPUtil におけるユーザおよびリセラーデータを取得される脆弱性 - CVE-2007-1300 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249204 7.5 危険 aj square - AJ Auction の subcat.php における SQL インジェクションの脆弱性 - CVE-2007-1298 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249205 7.5 危険 aj square - AJDating の view_profile.php における SQL インジェクションの脆弱性 - CVE-2007-1297 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249206 7.5 危険 aj square - AJ Classifieds の postingdetails.php における SQL インジェクションの脆弱性 - CVE-2007-1296 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249207 7.5 危険 aj forum - AJ Forum の topic_title.php における SQL インジェクションの脆弱性 - CVE-2007-1295 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249208 7.8 危険 DivX - DivXBrowserPlugin (npdivx32.dll) の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1294 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
249209 4.3 警告 マイクロソフト
アドビシステムズ		 - Adobe RoboHelp および Adobe RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1280 2012-06-26 15:46 2007-05-8 Show GitHub Exploit DB Packet Storm
249210 7.2 危険 アップル
アドビシステムズ		 - Adobe Bridge の OS X 用 アップデートのインストーラにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-1279 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196441 6.1 MEDIUM
Network 		cacti cacti As an unauthenticated remote user, visit "http://<CACTI_SERVER>/auth_changepassword.php?ref=<script>alert(1)</script>" to successfully execute the JavaScript payload present in the "ref" URL paramete… CWE-79
Cross-site Scripting 		CVE-2021-26247 2024-11-21 14:55 2022-01-20 Show GitHub Exploit DB Packet Storm
196442 3.0 LOW
Network 		kubernetes kubernetes kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as… NVD-CWE-Other
CVE-2021-25743 2024-11-21 14:55 2022-01-7 Show GitHub Exploit DB Packet Storm
196443 8.8 HIGH
Network 		userfrosting userfrosting In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Host Header Injection. By luring a victim application user to click on a link, an unauthenticated attacker can use the “forgot password” f… CWE-74
Injection 		CVE-2021-25994 2024-11-21 14:55 2022-01-3 Show GitHub Exploit DB Packet Storm
196444 9.8 CRITICAL
Network 		talkyard talkyard In Talkyard, regular versions v0.2021.20 through v0.2021.33 and dev versions v0.2021.20 through v0.2021.34, are vulnerable to Insufficient Session Expiration. This may allow an attacker to reuse the … CWE-613
 Insufficient Session Expiration 		CVE-2021-25981 2024-11-21 14:55 2022-01-3 Show GitHub Exploit DB Packet Storm
196445 5.4 MEDIUM
Network 		requarks wiki.js In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected by Stored XSS vulnerability, where a low privileged (editor) user can upload a SVG file that contains malicious JavaScript while u… CWE-79
Cross-site Scripting 		CVE-2021-25993 2024-11-21 14:55 2021-12-30 Show GitHub Exploit DB Packet Storm
196446 7.3 HIGH
Network 		if-me ifme In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper access control, which makes it possible for admins to ban themselves leading to their deactivation from Ifme account and complete … NVD-CWE-Other
CVE-2021-25991 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
196447 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions v7.22.0 to v7.31.4 are vulnerable against self-stored XSS in the contacts field as it allows loading XSS payloads fetched via an iframe. CWE-79
Cross-site Scripting 		CVE-2021-25990 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
196448 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability in the markdown editor. It can be exploited by making a victim a Leader of a group which triggers the payload for … CWE-79
Cross-site Scripting 		CVE-2021-25989 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
196449 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability (notifications section) which can be directly triggered by sending an ally request to the admin. CWE-79
Cross-site Scripting 		CVE-2021-25988 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
196450 3.3 LOW
Local 		samsung pay Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication. NVD-CWE-Other
CVE-2021-25527 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm