Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249441	7.5	危険	Django Software Foundation	-	Django の bin/compile-messages.py における任意のコマンドを実行される脆弱性	-	CVE-2007-0404	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249442	7.5	危険	easebay resources	-	Easebay Resources Paypal Subscription Manager の admin/memberlist.php における SQL インジェクションの脆弱性	-	CVE-2007-0403	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249443	6.8	警告	easebay resources	-	Easebay Resources Paypal Subscription Manager の admin/edit_member.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0402	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249444	7.5	危険	easebay resources	-	Easebay Resources Login Manager の admin/memberlist.php における SQL インジェクションの脆弱性	-	CVE-2007-0401	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249445	6.8	警告	easebay resources	-	Easebay Resources Login Manager の admin/memberlist.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0400	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249446	6.8	警告	arnotic	-	Arnaud Guyonne a-forum の forum.php3 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0398	2012-06-26 15:46	2007-01-22	Show	GitHub Exploit DB Packet Storm

249447	6.4	警告	シスコシステムズ	-	CS-MARS などにおける正確でない情報を生成される脆弱性	-	CVE-2007-0397	2012-06-26 15:46	2007-01-18	Show	GitHub Exploit DB Packet Storm

249448	7.5	危険	comvironment	-	ComVironment の libraries/grab_globals.lib.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0395	2012-06-26 15:46	2007-01-19	Show	GitHub Exploit DB Packet Storm

249449	7.2	危険	BitDefender	-	BitDefender Client Professional Plus のログ作成機能におけるフォーマットストリングの脆弱性	-	CVE-2007-0391	2012-06-26 15:46	2007-01-18	Show	GitHub Exploit DB Packet Storm

249450	7.8	危険	arsdigita	-	ACS および ACES におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0389	2012-06-26 15:46	2007-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196061	5.4	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite before 7.10.3-rev4 and 7.10.4 before 7.10.4-rev4 allows SSRF via a shared SVG document that is mishandled by the imageconverter component when the .png extension is used.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2021-26699	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

196062	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via a code snippet (user-generated content) when a sharing link is created and the dl parameter is used.	CWE-79 Cross-site Scripting	CVE-2021-26698	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

196063	9.8	CRITICAL Network	phpgurukul	student_record_system	SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php.	CWE-89 SQL Injection	CVE-2021-26765	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

196064	8.8	HIGH Network	phpgurukul	student_record_system	SQL injection vulnerability in PHPGurukul Student Record System v 4.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edit-std.php.	CWE-89 SQL Injection	CVE-2021-26764	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

196065	8.8	HIGH Network	phpgurukul	student_record_system	SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the cid parameter to edit-course.php.	CWE-89 SQL Injection	CVE-2021-26762	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

196066	7.1	HIGH Local	ninjarmm	ninjarmm	The Agent in NinjaRMM 5.0.909 has Insecure Permissions.	CWE-276 Incorrect Default Permissions	CVE-2021-26274	2024-11-21 14:56	2021-07-7	Show	GitHub Exploit DB Packet Storm

196067	7.8	HIGH Local	ninjarmm	ninjarmm	The Agent in NinjaRMM 5.0.909 has Incorrect Access Control.	CWE-863 Incorrect Authorization	CVE-2021-26273	2024-11-21 14:56	2021-07-7	Show	GitHub Exploit DB Packet Storm

196068	5.5	MEDIUM Local	hpe	oneview_global_dashboard	A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Glob…	NVD-CWE-noinfo	CVE-2021-26585	2024-11-21 14:56	2021-06-24	Show	GitHub Exploit DB Packet Storm

196069	9.8	CRITICAL Network	apache	nuttx	Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulti…	CWE-190 Integer Overflow or Wraparound	CVE-2021-26461	2024-11-21 14:56	2021-06-22	Show	GitHub Exploit DB Packet Storm

196070	6.1	MEDIUM Network	zettlr	zettlr	No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file.	CWE-79 Cross-site Scripting	CVE-2021-26835	2024-11-21 14:56	2021-06-18	Show	GitHub Exploit DB Packet Storm