Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249951	4.3	警告	designmind	-	High 5 Review Site の search におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0595	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249952	5.8	警告	forum livre	-	Forum Livre の busca2.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0590	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249953	7.5	危険	forum livre	-	Forum Livre における SQL インジェクションの脆弱性	-	CVE-2007-0589	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249954	7.1	危険	アップル	-	Apple QuickDraw の InternalUnpackBits 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0588	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249955	7.5	危険	g-neric	-	PhP Generic Library & Framework membres/membreManager.ph における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0584	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249956	7.5	危険	chernobile	-	ChernobiLe の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0582	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249957	7.5	危険	eclipsebb	-	EclipseBB Lite の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0581	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249958	7.5	危険	acgvclick	-	ACGVclick の function.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0577	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249959	7.5	危険	drunken golem	-	Drunken:Golem Gaming Portal Alpha 2 の include/irc/phpIRC.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0572	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

249960	7.5	危険	asp news	-	ASP NEWS の news_detail.asp における SQL インジェクションの脆弱性	-	CVE-2007-0566	2012-06-26 15:46	2007-01-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195891	6.5	MEDIUM Network	libxls_project fedoraproject	libxls fedora	An issue was discoverered in in function xls_getWorkSheet in xls.c in libxls 1.6.2, allows attackers to cause a denial of service, via a crafted XLS file.	CWE-476 NULL Pointer Dereference	CVE-2021-27836	2024-11-21 14:58	2021-11-4	Show	GitHub Exploit DB Packet Storm

195892	7.5	HIGH Network	nsasoft	spotauditor	An issue was discovered in Nsasoft US LLC SpotAuditor 5.3.5. The program can be crashed by entering 300 bytes char data into the "Key" or "Name" field while registering.	CWE-120 Classic Buffer Overflow	CVE-2021-27722	2024-11-21 14:58	2021-11-2	Show	GitHub Exploit DB Packet Storm

195893	8.8	HIGH Network	apache	dolphinscheduler	In Apache DolphinScheduler before 1.3.6 versions, authorized users can use SQL injection in the data source center. (Only applicable to MySQL data source with internal login account password)	CWE-89 SQL Injection	CVE-2021-27644	2024-11-21 14:58	2021-11-1	Show	GitHub Exploit DB Packet Storm

195894	5.4	MEDIUM Network	hcltechsw	connections	"HCL Connections Security Update for Reflected Cross-Site Scripting (XSS) Vulnerability"	CWE-79 Cross-site Scripting	CVE-2021-27746	2024-11-21 14:58	2021-10-22	Show	GitHub Exploit DB Packet Storm

195895	7.8	HIGH Local	stb_project fedoraproject debian	stb fedora debian_linux	Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file.	CWE-787 Out-of-bounds Write	CVE-2021-28021	2024-11-21 14:58	2021-10-16	Show	GitHub Exploit DB Packet Storm

195896	7.5	HIGH Network	johnsoncontrols	exacqvision_server	An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition.	CWE-190 Integer Overflow or Wraparound	CVE-2021-27665	2024-11-21 14:58	2021-10-12	Show	GitHub Exploit DB Packet Storm

195897	9.8	CRITICAL Network	johnsoncontrols	exacqvision_web_service	Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server.	CWE-269 Improper Privilege Management	CVE-2021-27664	2024-11-21 14:58	2021-10-12	Show	GitHub Exploit DB Packet Storm

195898	8.1	HIGH Network	johnsoncontrols	kantech_kt-1_door_controller_firmware	The KT-1 door controller is susceptible to replay or man-in-the-middle attacks where an attacker can record and replay TCP packets. This issue affects Johnson Controls KT-1 all versions up to and inc…	CWE-294 Authentication Bypass by Capture-replay	CVE-2021-27662	2024-11-21 14:58	2021-09-15	Show	GitHub Exploit DB Packet Storm

195899	6.1	MEDIUM Network	apache	zeppelin	Cross Site Scripting vulnerability in markdown interpreter of Apache Zeppelin allows an attacker to inject malicious scripts. This issue affects Apache Zeppelin Apache Zeppelin versions prior to 0.9.…	CWE-79 Cross-site Scripting	CVE-2021-27578	2024-11-21 14:58	2021-09-3	Show	GitHub Exploit DB Packet Storm

195900	5.3	MEDIUM Network	hashicorp	vault	HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.	CWE-306 Missing Authentication for Critical Function	CVE-2021-27668	2024-11-21 14:58	2021-09-1	Show	GitHub Exploit DB Packet Storm