Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251661 10 危険 awffull - AWFFull の graphs.c におけるバッファオーバーフローの脆弱性 - CVE-2007-0510 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
251662 7.5 危険 bbclone - BBClone の lib/selectlang.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0508 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
251663 6 警告 Drupal - Drupal 用の Acidfree モジュールにおける任意の SQL コマンドを実行される脆弱性 - CVE-2007-0507 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
251664 6 警告 Drupal - Drupal 用の Project issue tracking モジュールにおけるアクセスコントロールモジュールを回避される脆弱性 - CVE-2007-0506 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
251665 8.5 危険 Drupal - Drupal 用の Project issue tracking モジュールにおける任意のコードを実行される脆弱性 - CVE-2007-0505 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
251666 7.5 危険 bradabra - Bradabra の include/includes.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0500 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
251667 7.5 危険 enthusiast - Enthusiast における SQL インジェクションの脆弱性 - CVE-2007-0484 2012-06-26 15:46 2007-01-24 Show GitHub Exploit DB Packet Storm
251668 6.8 警告 enthusiast - Enthusiast におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0483 2012-06-26 15:46 2007-01-24 Show GitHub Exploit DB Packet Storm
251669 4.3 警告 アップル - Safari で使用される WebCore におけるクロスサイトスクリプティング攻撃を誘発される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-0478 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
251670 4.6 警告 Gentoo Linux - Gentoo Linux の gencert.sh スクリプトにおける任意のファイルを上書きされる脆弱性 - CVE-2007-0476 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194741 9.8 CRITICAL
Network 		phpgurukul covid19_testing_management_system COVID19 Testing Management System 1.0 is vulnerable to SQL Injection via the admin panel. CWE-89
SQL Injection 		CVE-2021-33470 2024-11-21 15:08 2021-05-27 Show GitHub Exploit DB Packet Storm
194742 4.8 MEDIUM
Network 		phpgurukul covid19_testing_management_system COVID19 Testing Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the "Admin name" parameter. CWE-79
Cross-site Scripting 		CVE-2021-33469 2024-11-21 15:08 2021-05-27 Show GitHub Exploit DB Packet Storm
194743 7.5 HIGH
Network 		8x8 jitsi_meet jitsi-meet-prosody in Jitsi Meet before 2.0.5963-1 does not ensure that restrict_room_creation is set by default. This can allow an attacker to circumvent conference moderation. CWE-276
Incorrect Default Permissions  		CVE-2021-33506 2024-11-21 15:08 2021-05-27 Show GitHub Exploit DB Packet Storm
194744 7.5 HIGH
Network 		golang
fedoraproject 		go
fedora 		golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2021-33194 2024-11-21 15:08 2021-05-27 Show GitHub Exploit DB Packet Storm
194745 7.5 HIGH
Network 		hyperkitty_project
debian 		hyperkitty
debian_linux 		An issue was discovered in management/commands/hyperkitty_import.py in HyperKitty through 1.3.4. When importing a private mailing list's archives, these archives are publicly visible for the duration… CWE-276
Incorrect Default Permissions  		CVE-2021-33038 2024-11-21 15:08 2021-05-26 Show GitHub Exploit DB Packet Storm
194746 5.4 MEDIUM
Network 		openwrt openwrt A stored cross-site scripting (XSS) vulnerability was discovered in the Web Interface for OpenWRT LuCI version 19.07 which allows attackers to inject arbitrary Javascript in the OpenWRT Hostname via … CWE-79
Cross-site Scripting 		CVE-2021-33425 2024-11-21 15:08 2021-05-25 Show GitHub Exploit DB Packet Storm
194747 7.5 HIGH
Network 		normalize-url_project normalize-url The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: UR… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-33502 2024-11-21 15:08 2021-05-25 Show GitHub Exploit DB Packet Storm
194748 9.1 CRITICAL
Network 		dutchcoders transfer.sh Dutchcoders transfer.sh before 1.2.4 allows Directory Traversal for deleting files. CWE-22
Path Traversal 		CVE-2021-33497 2024-11-21 15:08 2021-05-24 Show GitHub Exploit DB Packet Storm
194749 6.1 MEDIUM
Network 		dutchcoders transfer.sh Dutchcoders transfer.sh before 1.2.4 allows XSS via an inline view. CWE-79
Cross-site Scripting 		CVE-2021-33496 2024-11-21 15:08 2021-05-24 Show GitHub Exploit DB Packet Storm
194750 5.4 MEDIUM
Network 		plone plone Plone through 5.2.4 allows XSS via the inline_diff methods in Products.CMFDiffTool. CWE-79
Cross-site Scripting 		CVE-2021-33513 2024-11-21 15:08 2021-05-22 Show GitHub Exploit DB Packet Storm