Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249431 9.3 危険 Gracenote - Gracenote CDDB の CDDBControl におけるバッファオーバーフローの脆弱性 - CVE-2007-0443 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
249432 4.6 警告 BEAシステムズ - BEA AquaLogic Enterprise Security における攻撃の検出を回避される脆弱性 - CVE-2007-0434 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249433 6.5 警告 BEAシステムズ - BEA AquaLogic Enterprise Security におけるアカウント無効後にサーバへアクセスされる脆弱性 - CVE-2007-0433 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249434 7.5 危険 BEAシステムズ - BEA AquaLogic Service Bus における認可ポリシーを回避される脆弱性 - CVE-2007-0432 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249435 7.8 危険 AVM - AVM Fritz!Box におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0431 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249436 4.9 警告 アップル - Apple Mac OS X の shared_region_map_file_np 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0430 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249437 5 警告 DivX - DivX Player と配布されている npdivx32.dll の DivXBrowserPlugin におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0429 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249438 6.8 警告 BEAシステムズ - BEA WebLogic Portal における制限を回避される脆弱性 - CVE-2007-0426 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249439 4.4 警告 BEAシステムズ - BEA WebLogic Portal における詳細不明な脆弱性 - CVE-2007-0423 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
249440 6.5 警告 Django Software Foundation - Django の AuthenticationMiddleware の LazyUser クラスにおける他のユーザ権限を取得される脆弱性 - CVE-2007-0405 2012-06-26 15:46 2007-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196061 5.4 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite before 7.10.3-rev4 and 7.10.4 before 7.10.4-rev4 allows SSRF via a shared SVG document that is mishandled by the imageconverter component when the .png extension is used. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-26699 2024-11-21 14:56 2021-07-23 Show GitHub Exploit DB Packet Storm
196062 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via a code snippet (user-generated content) when a sharing link is created and the dl parameter is used. CWE-79
Cross-site Scripting 		CVE-2021-26698 2024-11-21 14:56 2021-07-23 Show GitHub Exploit DB Packet Storm
196063 9.8 CRITICAL
Network 		phpgurukul student_record_system SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php. CWE-89
SQL Injection 		CVE-2021-26765 2024-11-21 14:56 2021-07-23 Show GitHub Exploit DB Packet Storm
196064 8.8 HIGH
Network 		phpgurukul student_record_system SQL injection vulnerability in PHPGurukul Student Record System v 4.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edit-std.php. CWE-89
SQL Injection 		CVE-2021-26764 2024-11-21 14:56 2021-07-23 Show GitHub Exploit DB Packet Storm
196065 8.8 HIGH
Network 		phpgurukul student_record_system SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the cid parameter to edit-course.php. CWE-89
SQL Injection 		CVE-2021-26762 2024-11-21 14:56 2021-07-23 Show GitHub Exploit DB Packet Storm
196066 7.1 HIGH
Local 		ninjarmm ninjarmm The Agent in NinjaRMM 5.0.909 has Insecure Permissions. CWE-276
Incorrect Default Permissions  		CVE-2021-26274 2024-11-21 14:56 2021-07-7 Show GitHub Exploit DB Packet Storm
196067 7.8 HIGH
Local 		ninjarmm ninjarmm The Agent in NinjaRMM 5.0.909 has Incorrect Access Control. CWE-863
 Incorrect Authorization 		CVE-2021-26273 2024-11-21 14:56 2021-07-7 Show GitHub Exploit DB Packet Storm
196068 5.5 MEDIUM
Local 		hpe oneview_global_dashboard A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Glob… NVD-CWE-noinfo
CVE-2021-26585 2024-11-21 14:56 2021-06-24 Show GitHub Exploit DB Packet Storm
196069 9.8 CRITICAL
Network 		apache nuttx Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulti… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-26461 2024-11-21 14:56 2021-06-22 Show GitHub Exploit DB Packet Storm
196070 6.1 MEDIUM
Network 		zettlr zettlr No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file. CWE-79
Cross-site Scripting 		CVE-2021-26835 2024-11-21 14:56 2021-06-18 Show GitHub Exploit DB Packet Storm