Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249071	7.2	危険	FreeBSD	-	FreeBSD の i386_set_ldt 呼び出しにおける整数オーバーフローの脆弱性	-	CVE-2006-4172	2012-06-26 15:37	2006-09-25	Show	GitHub Exploit DB Packet Storm

249072	6.8	警告	cpg-nuke	-	Dragonfly CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4162	2012-06-26 15:37	2006-08-16	Show	GitHub Exploit DB Packet Storm

249073	7.5	危険	chaussette	-	Chaussette における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4159	2012-06-26 15:37	2006-08-16	Show	GitHub Exploit DB Packet Storm

249074	6.8	警告	Apache Software Foundation	-	Apache の mod_tc モジュールにおける任意のコードを実行される脆弱性	-	CVE-2006-4154	2012-06-26 15:37	2006-10-16	Show	GitHub Exploit DB Packet Storm

249075	5	警告	arcsoft	-	ArcSoft MMS Composer におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4132	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

249076	7.5	危険	arcsoft	-	ArcSoft MMS Composer におけるバッファオーバーフローの脆弱性	-	CVE-2006-4131	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

249077	4.6	警告	dconnect	-	DConnect Daemon におけるフォーマットストリングの脆弱性	-	CVE-2006-4127	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

249078	5	警告	dconnect	-	DConnect Daemon の cmd.dc.c の dc_chat 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4126	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

249079	7.5	危険	dconnect	-	DConnect Daemon の main.c におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4125	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

249080	7.5	危険	boite de news	-	Boite de News の boitenews4/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4123	2012-06-26 15:37	2006-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196801	4.8	MEDIUM Network	flatcore	flatcore	An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. The affected parameter …	CWE-79 Cross-site Scripting	CVE-2021-23838	2024-11-21 14:51	2021-01-15	Show	GitHub Exploit DB Packet Storm

196802	6.5	MEDIUM Network	flatcore	flatcore	An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selected_folder HTTP request body parameter for the acp interface. The affected para…	CWE-89 SQL Injection	CVE-2021-23837	2024-11-21 14:51	2021-01-15	Show	GitHub Exploit DB Packet Storm

196803	4.8	MEDIUM Network	flatcore	flatcore	An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefs_smtp_psw HTTP request body parameter for the acp interface. An admin user can inject…	CWE-79 Cross-site Scripting	CVE-2021-23836	2024-11-21 14:51	2021-01-15	Show	GitHub Exploit DB Packet Storm

196804	4.9	MEDIUM Network	flatcore	flatcore	An issue was discovered in flatCore before 2.0.0 build 139. A local file disclosure vulnerability was identified in the docs_file HTTP request body parameter for the acp interface. This can be exploi…	CWE-20 Improper Input Validation	CVE-2021-23835	2024-11-21 14:51	2021-01-15	Show	GitHub Exploit DB Packet Storm

196805	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.1.0 through 3.9.23. The lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors.	CWE-79 Cross-site Scripting	CVE-2021-23125	2024-11-21 14:51	2021-01-13	Show	GitHub Exploit DB Packet Storm

196806	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.	CWE-79 Cross-site Scripting	CVE-2021-23124	2024-11-21 14:51	2021-01-13	Show	GitHub Exploit DB Packet Storm

196807	5.3	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.0.0 through 3.9.23. The lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules.	CWE-862 Missing Authorization	CVE-2021-23123	2024-11-21 14:51	2021-01-13	Show	GitHub Exploit DB Packet Storm

196808	7.8	HIGH Local	sudo_project netapp fedoraproject	sudo solidfire hci_management_node fedora	selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a symlink to an arbitrary …	CWE-59 Link Following	CVE-2021-23240	2024-11-21 14:51	2021-01-12	Show	GitHub Exploit DB Packet Storm

196809	2.5	LOW Local	sudo_project netapp fedoraproject debian	sudo cloud_backup solidfire hci_management_node fedora debian_linux	The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudo_edit.c race condition in replacing a user-controlled…	CWE-59 Link Following	CVE-2021-23239	2024-11-21 14:51	2021-01-12	Show	GitHub Exploit DB Packet Storm

196810	5.3	MEDIUM Network	opera	opera_mini	Opera Mini for Android below 53.1 displays URL left-aligned in the address field. This allows a malicious attacker to craft a URL with a long domain name, e.g. www.safe.opera.com.attacker.com. With t…	NVD-CWE-Other	CVE-2021-23253	2024-11-21 14:51	2021-01-12	Show	GitHub Exploit DB Packet Storm