Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250871 5 警告 dirlist - PHP dirLIST の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-3967 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250872 7.5 危険 fsp - fsplib の fsplib.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-3962 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
250873 5 警告 fsp - fsplib の fsplib.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3961 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
250874 9.3 危険 アップル - Apple Safari などの PCRE ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-3944 2012-06-26 15:54 2007-07-23 Show GitHub Exploit DB Packet Storm
250875 7.5 危険 adaptive business design - Infinite Responder における SQL インジェクションの脆弱性 - CVE-2007-3943 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
250876 7.5 危険 a-shop - A-shop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-3937 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
250877 6.4 警告 a-shop - A-shop の admin/filebrowser.asp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-3936 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
250878 7.5 危険 bbs - BBS E-Market の postscript/postscript.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3934 2012-06-26 15:54 2007-07-20 Show GitHub Exploit DB Packet Storm
250879 7.8 危険 シスコシステムズ - Cisco WAE アプライアンスで使用される Cisco WAAS の CIFS の最適化におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3923 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
250880 3.3 注意 GForge Group - gforge における任意のファイルを短縮される脆弱性 CWE-59
リンク解釈の問題
CVE-2007-3921 2012-06-26 15:54 2007-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202471 6.5 MEDIUM
Network
greenplum greenplum In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with … CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2021-22030 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
202472 9.1 CRITICAL
Network
greenplum greenplum In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user … CWE-22
Path Traversal
CVE-2021-22028 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
202473 8.8 HIGH
Network
vmware spring_cloud_netflix Applications using both `spring-cloud-netflix-hystrix-dashboard` and `spring-boot-starter-thymeleaf` expose a way to execute code submitted within the request URI path during the resolution of view t… CWE-94
Code Injection
CVE-2021-22053 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
202474 8.8 HIGH
Network
vmware vcenter_server
cloud_foundation
The vCenter Server contains a privilege escalation vulnerability in the IWA (Integrated Windows Authentication) authentication mechanism. A malicious actor with non-administrative access to vCenter S… NVD-CWE-noinfo
CVE-2021-22048 2024-11-21 14:49 2021-11-11 Show GitHub Exploit DB Packet Storm
202475 6.5 MEDIUM
Network
vmware spring_cloud_gateway Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following … CWE-863
 Incorrect Authorization
CVE-2021-22051 2024-11-21 14:49 2021-11-8 Show GitHub Exploit DB Packet Storm
202476 5.4 MEDIUM
Network
gitlab gitlab A stored Cross-Site Scripting vulnerability in the DataDog integration in all versions of GitLab CE/EE starting from 13.7 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all version… CWE-79
Cross-site Scripting
CVE-2021-22260 2024-11-21 14:49 2021-11-5 Show GitHub Exploit DB Packet Storm
202477 8.8 HIGH
Network
vmware installbuilder On Windows, the uninstaller binary copies itself to a fixed temporary location, which is then executed (the originally called uninstaller exits, so it does not block the installation directory). This… CWE-330
 Use of Insufficiently Random Values
CVE-2021-22038 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
202478 7.8 HIGH
Local
vmware installbuilder Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg.exe system command. The full path to the command is not enforced, which results in a search in the sea… CWE-427
 Uncontrolled Search Path Element
CVE-2021-22037 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
202479 6.5 MEDIUM
Network
vmware spring_advanced_message_queuing_protocol In Spring AMQP versions 2.2.0 - 2.2.18 and 2.3.0 - 2.3.10, the Spring AMQP Message object, in its toString() method, will deserialize a body for a message with content type application/x-java-seriali… CWE-502
 Deserialization of Untrusted Data
CVE-2021-22097 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
202480 4.3 MEDIUM
Network
vmware
netapp
oracle
spring_framework
snap_creator_framework
snapcenter
active_iq_unified_manager
management_services_for_element_software_and_netapp_hci
metrocluster_tiebreaker
communications_cloud_nat…
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries. NVD-CWE-Other
CVE-2021-22096 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm