Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249231 4.3 警告 arizona-dream - Arizona Dream livor の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1919 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249232 6.8 警告 MyBB Group
ecardmax.com		 - eCardMAX Hot Editor および HotEditor プラグインの richedit/keyboard.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1906 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249233 4.3 警告 AOL - AIM および ICQ におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1904 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249234 9.3 危険 アカマイテクノロジーズ - Akamai Technologies Download Manager ActiveX コントロール (DownloadManagerV2.ocx) におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1892 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
249235 7.2 危険 アドビシステムズ - Adobe ColdFusion MX における任意のコードを実行される脆弱性 - CVE-2007-1874 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
249236 4.3 警告 chcounter - chcounter におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1871 2012-06-26 15:46 2007-04-13 Show GitHub Exploit DB Packet Storm
249237 5 警告 drake team - Drake CMS の classes/captcha/captcha.jpg.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1850 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249238 7.5 危険 drake team - Drake CMS の 404.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1849 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249239 4.3 警告 drake team - Drake CMS の admin/classes/ui.dta.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1848 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
249240 7.5 危険 avatic - Aardvark Topsites PHP における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1844 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196071 8.1 HIGH
Network 		pelco digital_sentry_server DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a ma… CWE-346
 Origin Validation Error 		CVE-2021-27197 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
196072 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27205 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196073 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local passcode in cleartext, leading to information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27204 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196074 7.5 HIGH
Network 		xn--b1agzlht fx_aggregator_terminal_client The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 allows attackers to cause a denial of service (access suspended for five hours) by making five invalid login attempts to a victim's… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-27188 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196075 7.5 HIGH
Network 		xn--b1agzlht fx_aggregator_terminal_client The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 stores authentication credentials in cleartext in login.sav when the Save Password box is checked. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-27187 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196076 5.4 MEDIUM
Network 		peel peel_shopping A Stored Cross Site Scripting(XSS) Vulnerability was discovered in PEEL SHOPPING 9.3.0 and 9.4.0, which are publicly available. The user supplied input containing polyglot payload is echoed back in j… CWE-79
Cross-site Scripting 		CVE-2021-27190 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196077 7.5 HIGH
Network 		get-ip-range_project get-ip-range The get-ip-range package before 4.0.0 for Node.js is vulnerable to denial of service (DoS) if the range is untrusted input. An attacker could send a large range (such as 128.0.0.0/1) that causes reso… NVD-CWE-noinfo
CVE-2021-27191 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196078 7.5 HIGH
Network 		pelco digital_sentry_server Pelco Digital Sentry Server 7.18.72.11464 has an XML External Entity vulnerability (exploitable via the DTD parameter entities technique), resulting in disclosure and retrieval of arbitrary data on t… CWE-611
XXE 		CVE-2021-27184 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196079 7.5 HIGH
Network 		treasuredata fluent_bit Fluent Bit 1.6.10 has a NULL pointer dereference when an flb_malloc return value is not validated by flb_avro.c or http_server/api/v1/metrics.c. CWE-476
 NULL Pointer Dereference 		CVE-2021-27186 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196080 9.8 CRITICAL
Network 		samba-client_project samba-client The samba-client package before 4.0.0 for Node.js allows command injection because of the use of process.exec. CWE-77
Command Injection 		CVE-2021-27185 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm