Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250081	9	危険	efstratios geroulis	-	Jasmine CMS の admin/plugin_manager.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3312	2012-06-26 15:46	2007-06-21	Show	GitHub Exploit DB Packet Storm

250082	9.3	危険	Cerulean Studios	-	Cerulean Studios Trillian におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-3305	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250083	4.9	警告	Apache Software Foundation	-	Prefork MPM モジュールを含む Apache httpd におけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2007-3303	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250084	9.3	危険	CA Technologies	-	CA eTrust Intrusion Detection の caller.dll におけるクライアントシステム上で任意の DLL を実行される脆弱性	-	CVE-2007-3302	2012-06-26 15:46	2007-07-25	Show	GitHub Exploit DB Packet Storm

250085	7.5	危険	FuseTalk	-	FuseTalk の forum/include/error/autherror.cfm における SQL インジェクションの脆弱性	-	CVE-2007-3301	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250086	9.3	危険	エフ・セキュア	-	複数の F-Secure アンチウイルス製品におけるスキャンを回避される脆弱性	-	CVE-2007-3300	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250087	4.3	警告	awffull	-	AWFFull におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3299	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250088	7.5	危険	cybozu labs	-	Musoo における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3297	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

250089	6.8	警告	アバイア	-	Avaya IP Softphone の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2007-3286	2012-06-26 15:46	2007-09-11	Show	GitHub Exploit DB Packet Storm

250090	7.8	危険	アップル	-	Apple Safari の corefoundation.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3284	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195751	4.8	MEDIUM Network	seopanel	seo_panel	A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "search_name" parameter.	CWE-79 Cross-site Scripting	CVE-2021-28417	2024-11-21 14:59	2021-03-18	Show	GitHub Exploit DB Packet Storm

195752	9.8	CRITICAL Network	vhs_project	vhs	The vhs (aka VHS: Fluid ViewHelpers) extension before 5.1.1 for TYPO3 allows SQL injection via isLanguageViewHelper.	CWE-89 SQL Injection	CVE-2021-28381	2024-11-21 14:59	2021-03-17	Show	GitHub Exploit DB Packet Storm

195753	5.4	MEDIUM Network	aimeos_project	aimeos	The aimeos (aka Aimeos shop and e-commerce framework) extension before 19.10.12 and 20.x before 20.10.5 for TYPO3 allows XSS via a backend user account.	CWE-79 Cross-site Scripting	CVE-2021-28380	2024-11-21 14:59	2021-03-17	Show	GitHub Exploit DB Packet Storm

195754	7.5	HIGH Network	online_ordering_system_project	online_ordering_system	Online Ordering System 1.0 is vulnerable to unauthenticated SQL injection through /onlineordering/GPST/admin/design.php, which may lead to database information disclosure.	CWE-89 SQL Injection	CVE-2021-28295	2024-11-21 14:59	2021-03-17	Show	GitHub Exploit DB Packet Storm

195755	9.8	CRITICAL Network	online_ordering_system_project	online_ordering_system	Online Ordering System 1.0 is vulnerable to arbitrary file upload through /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution (RCE).	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-28294	2024-11-21 14:59	2021-03-17	Show	GitHub Exploit DB Packet Storm

195756	7.5	HIGH Network	varnish-cache fedoraproject	varnish-modules varnish-modules_klarlack fedora	Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Ca…	CWE-476 CWE-617 NULL Pointer Dereference Reachable Assertion	CVE-2021-28543	2024-11-21 14:59	2021-03-17	Show	GitHub Exploit DB Packet Storm

195757	6.5	MEDIUM Network	python fedoraproject oracle	urllib3 fedora peoplesoft_enterprise_peopletools	The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in some cases involving HTTPS to HTTPS proxies. The initial connection to the HTTPS proxy (if an SSLContext isn't …	CWE-295 Improper Certificate Validation	CVE-2021-28363	2024-11-21 14:59	2021-03-16	Show	GitHub Exploit DB Packet Storm

195758	8.8	HIGH Network	myvestacp vestacp	myvesta vesta_control_panel	web/upload/UploadHandler.php in Vesta Control Panel (aka VestaCP) through 0.9.8-27 and myVesta through 0.9.8-26-39 allows uploads from a different origin.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-28379	2024-11-21 14:59	2021-03-15	Show	GitHub Exploit DB Packet Storm

195759	5.4	MEDIUM Network	gitea	gitea	Gitea 1.12.x and 1.13.x before 1.13.4 allows XSS via certain issue data in some situations.	CWE-79 Cross-site Scripting	CVE-2021-28378	2024-11-21 14:59	2021-03-15	Show	GitHub Exploit DB Packet Storm

195760	7.8	HIGH Local	linux fedoraproject netapp	linux_kernel fedora cloud_backup solidfire_baseboard_management_controller_firmware	An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85…	CWE-862 Missing Authorization	CVE-2021-28375	2024-11-21 14:59	2021-03-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed