Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249231 4.3 警告 arizona-dream - Arizona Dream livor の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1919 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249232 6.8 警告 MyBB Group
ecardmax.com		 - eCardMAX Hot Editor および HotEditor プラグインの richedit/keyboard.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1906 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249233 4.3 警告 AOL - AIM および ICQ におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1904 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249234 9.3 危険 アカマイテクノロジーズ - Akamai Technologies Download Manager ActiveX コントロール (DownloadManagerV2.ocx) におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1892 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
249235 7.2 危険 アドビシステムズ - Adobe ColdFusion MX における任意のコードを実行される脆弱性 - CVE-2007-1874 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249236 4.3 警告 chcounter - chcounter におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1871 2012-06-26 15:46 2007-04-13 Show GitHub Exploit DB Packet Storm
249237 5 警告 drake team - Drake CMS の classes/captcha/captcha.jpg.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1850 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249238 7.5 危険 drake team - Drake CMS の 404.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1849 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249239 4.3 警告 drake team - Drake CMS の admin/classes/ui.dta.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1848 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249240 7.5 危険 avatic - Aardvark Topsites PHP における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1844 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196061 8.8 HIGH
Network 		mumble
debian 		mumble
debian_linux 		Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text. CWE-59
Link Following 		CVE-2021-27229 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196062 7.5 HIGH
Network 		steghide_project steghide steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data. CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2021-27211 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196063 8.8 HIGH
Network 		endian firewall_community Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment. CWE-78
OS Command  		CVE-2021-27201 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196064 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27219 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196065 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated mo… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27218 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196066 9.8 CRITICAL
Network 		pystemon_project pystemon config.py in pystemon before 2021-02-13 allows code execution via YAML deserialization because SafeLoader and safe_load are not used. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-27213 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
196067 6.1 MEDIUM
Network 		horde
debian 		groupware
debian_linux 		An XSS issue was discovered in Horde Groupware Webmail Edition through 5.2.22 (where the Horde_Text_Filter library before 2.3.7 is used). The attacker can send a plain text e-mail message, with JavaS… CWE-79
Cross-site Scripting 		CVE-2021-26929 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
196068 7.5 HIGH
Network 		openldap
debian 		openldap
debian_linux 		In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemo… CWE-617
 Reachable Assertion 		CVE-2021-27212 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
196069 6.5 MEDIUM
Network 		tp-link archer_c5v_firmware TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27210 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
196070 7.1 HIGH
Local 		tp-link archer_c5v_firmware In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a base64 format over cleartext HTTP. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-27209 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm