Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249211	6.8	警告	codebreak	-	CodeBreak の codebreak.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1996	2012-06-26 15:46	2007-04-12	Show	GitHub Exploit DB Packet Storm

249212	4.3	警告	Dotclear	-	DotClear におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1989	2012-06-26 15:46	2007-04-12	Show	GitHub Exploit DB Packet Storm

249213	7.5	危険	barnraiser	-	barnraiser AROUNDMe における任意の PHP コードを実行される脆弱性	-	CVE-2007-1986	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

249214	7.5	危険	cyboards	-	Cyboards PHP Lite の include/default_header.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1983	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

249215	7.5	危険	gazi okul sitesi	-	Gazi Okul Sitesi の fotokategori.asp における SQL インジェクションの脆弱性	-	CVE-2007-1971	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

249216	5	警告	exv2	-	eXV2 CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-1966	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

249217	4.3	警告	exv2	-	eXV2 CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1965	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

249218	6.8	警告	guernion sylvain portail	-	Guernion Sylvain Portail Web Php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1957	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249219	7.5	危険	archivexpert	-	ArchiveXpert におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1954	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

249220	9.3	危険	ACD Systems International	-	ACDSee Photo Manager における整数オーバーフローの脆弱性	-	CVE-2007-1943	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196091	9.6	CRITICAL Network	maxb	maxboard	Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.	CWE-79 CWE-89 Cross-site Scripting SQL Injection	CVE-2021-26636	2024-11-21 14:56	2022-06-24	Show	GitHub Exploit DB Packet Storm

196092	7.8	HIGH Local	bandisoft	ark_library	In the code that verifies the file size in the ark library, it is possible to manipulate the offset read from the target file due to the wrong use of the data type. An attacker could use this vulnera…	CWE-843 Type Confusion	CVE-2021-26635	2024-11-21 14:56	2022-06-2	Show	GitHub Exploit DB Packet Storm

196093	9.8	CRITICAL Network	maxb	maxboard	SQL injection and file upload attacks are possible due to insufficient validation of input values in some parameters and variables of files compromising Maxboard, which may lead to arbitrary code exe…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-26634	2024-11-21 14:56	2022-06-2	Show	GitHub Exploit DB Packet Storm

196094	9.8	CRITICAL Network	maxb	maxboard	SQL injection and Local File Inclusion (LFI) vulnerabilities in MaxBoard can cause information leakage and privilege escalation. This vulnerabilities can be exploited by manipulating a variable with …	CWE-89 SQL Injection	CVE-2021-26633	2024-11-21 14:56	2022-06-2	Show	GitHub Exploit DB Packet Storm

196095	7.5	HIGH Network	mangboard	commerce	Improper input validation vulnerability in Mangboard commerce package could lead to occur for abnormal request. A remote attacker can exploit this vulnerability to manipulate the total order amount i…	CWE-20 Improper Input Validation	CVE-2021-26631	2024-11-21 14:56	2022-05-20	Show	GitHub Exploit DB Packet Storm

196096	9.8	CRITICAL Network	handysoft	groupware	Improper input validation vulnerability in HANDY Groupware’s ActiveX moudle allows attackers to download or execute arbitrary files. This vulnerability can be exploited by using the file download or …	CWE-20 Improper Input Validation	CVE-2021-26630	2024-11-21 14:56	2022-05-20	Show	GitHub Exploit DB Packet Storm

196097	7.8	HIGH Local	amd	ryzen_3_2200u_firmware ryzen_3_2300u_firmware ryzen_3_3100_firmware ryzen_3_3300g_firmware ryzen_3_3300x_firmware ryzen_3_5125c_firmware ryzen_3_5400u_firmware ryzen_3_5425c_firm…	A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.	CWE-787 Out-of-bounds Write	CVE-2021-26386	2024-11-21 14:56	2022-05-13	Show	GitHub Exploit DB Packet Storm

196098	4.4	MEDIUM Local	amd	ryzen_3_2200u_firmware ryzen_3_2300u_firmware ryzen_3_3100_firmware ryzen_3_3300g_firmware ryzen_3_3300x_firmware ryzen_3_5125c_firmware ryzen_3_5400u_firmware ryzen_3_5425c_firm…	Insufficient check of the process type in Trusted OS (TOS) may allow an attacker with privileges to enable a lesser privileged process to unmap memory owned by a higher privileged process resulting i…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-26368	2024-11-21 14:56	2022-05-13	Show	GitHub Exploit DB Packet Storm

196099	4.4	MEDIUM Local	amd	radeon_software ryzen_3_3100_firmware ryzen_3_3300g_firmware ryzen_3_3300x_firmware ryzen_3_5400u_firmware ryzen_9_5900hs_firmware ryzen_9_5900hx_firmware ryzen_9_5980hs_firmware…	A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenced area, potentially leading to data exposure.	NVD-CWE-noinfo	CVE-2021-26363	2024-11-21 14:56	2022-05-13	Show	GitHub Exploit DB Packet Storm

196100	7.8	HIGH Local	amd	radeon_software ryzen_3_2200u_firmware ryzen_5300g_firmware ryzen_5300ge_firmware ryzen_5600g_firmware ryzen_5600ge_firmware ryzen_5600x_firmware ryzen_5700g_firmware ryzen_57…	Failure to verify the protocol in SMM may allow an attacker to control the protocol and modify SPI flash resulting in a potential arbitrary code execution.	NVD-CWE-noinfo	CVE-2021-26317	2024-11-21 14:56	2022-05-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed