Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248301	10	危険	bluesoil bluetooth	-	Bluesoil Bluetooth スタックにおける詳細不明な脆弱性	-	CVE-2006-6907	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248302	7.2	危険	アップル	-	Apple Mac OS 上で稼働する Bluetooth スタックにおける詳細不明な脆弱性	-	CVE-2006-6906	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248303	10	危険	Broadcom	-	Widcomm Bluetooth スタックにおける管理アクセス権を取得される脆弱性	-	CVE-2006-6905	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248304	7.9	危険	Broadcom	-	Broadcom Bluetooth スタックにおける管理アクセス権を取得される脆弱性	-	CVE-2006-6904	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248305	10	危険	アップル	-	Apple Mac OS の Bluetooth スタックにおける詳細不明な脆弱性	-	CVE-2006-6900	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248306	7.8	危険	Broadcom	-	BTW における会話を盗聴され記録される脆弱性	-	CVE-2006-6898	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248307	7.5	危険	FreeStyleWiki Project	-	fswiki におけるパスワードを取得される脆弱性	-	CVE-2006-6889	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248308	4.3	警告	golden book	-	golden book におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-6882	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248309	6.8	警告	endonesia	-	eNdonesia の friend.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6874	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

248310	7.5	危険	endonesia	-	eNdonesia の mod.php における SQL インジェクションの脆弱性	-	CVE-2006-6873	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211851	9.8	CRITICAL Network	feehi	feehicms	An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and below allows attackers to execute arbitrary code via a crafted PHP file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-21322	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211852	4.3	MEDIUM Network	emlog	emlog	emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows attackers to arbitrarily add articles.	CWE-352 Origin Validation Error	CVE-2020-21321	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211853	9.8	CRITICAL Network	metinfo	metinfo	MetInfo 7.0.0 contains a SQL injection vulnerability via admin/?n=logs&c=index&a=dodel.	CWE-89 SQL Injection	CVE-2020-21127	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211854	8.8	HIGH Network	metinfo	metinfo	MetInfo 7.0.0 contains a Cross-Site Request Forgery (CSRF) via admin/?n=admin&c=index&a=doSaveInfo.	CWE-352 Origin Validation Error	CVE-2020-21126	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211855	9.8	CRITICAL Network	ureport_project	ureport	An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers to execute arbitrary code.	NVD-CWE-noinfo	CVE-2020-21125	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211856	9.8	CRITICAL Network	ureport_project	ureport	UReport 2.2.9 allows attackers to execute arbitrary code due to a lack of access control to the designer page.	CWE-863 Incorrect Authorization	CVE-2020-21124	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211857	5.3	MEDIUM Network	ureport_project	ureport	UReport v2.2.9 contains a Server-Side Request Forgery (SSRF) in the designer page which allows attackers to detect intranet device ports.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-21122	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211858	9.8	CRITICAL Network	kliqqi	kliqqi_cms	Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.	CWE-89 SQL Injection	CVE-2020-21121	2024-11-21 14:12	2021-09-16	Show	GitHub Exploit DB Packet Storm

211859	6.1	MEDIUM Network	maccms	maccms	A cross-site scripting (XSS) vulnerability in the background administrator article management module of Maccms 8.0 allows attackers to steal administrator and user cookies via crafted payloads in the…	CWE-79 Cross-site Scripting	CVE-2020-21082	2024-11-21 14:12	2021-09-15	Show	GitHub Exploit DB Packet Storm

211860	6.5	MEDIUM Network	maccms	maccms	A cross-site request forgery (CSRF) in Maccms 8.0 causes administrators to add and modify articles without their knowledge via clicking on a crafted URL.	CWE-352 Origin Validation Error	CVE-2020-21081	2024-11-21 14:12	2021-09-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed