Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249361	6.8	警告	Chipmunk Scripts	-	Chipmunk ディレクトリの directory/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7042	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

249362	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7041	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249363	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7040	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249364	5	警告	atrium software	-	MERCUR Messaging 2005 の IMAP4 サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7039	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249365	7.8	危険	atrium software	-	MERCUR Messaging 2005 におけるバッファオーバーフローの脆弱性	-	CVE-2006-7038	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249366	10	危険	andys chat	-	Andys Chat の register.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7036	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249367	6.8	警告	avatic	-	Aardvark Topsites PHP の sources/join.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7026	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

249368	4.3	警告	fx-app	-	fx-APP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7023	2012-06-26 15:38	2007-02-14	Show	GitHub Exploit DB Packet Storm

249369	10	危険	fx-app	-	fx-APP の Tools モジュールにおける Web ページのコンテンツを不正確に表示する脆弱性	-	CVE-2006-7022	2012-06-26 15:38	2007-02-14	Show	GitHub Exploit DB Packet Storm

249370	7.8	危険	arkoon	-	Arkoon FAST360 UTM の DNS モジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7054	2012-06-26 15:38	2006-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196081	7.8	HIGH Local	samsung	samsung_pass	Improper authentication in Samsung Pass prior to 3.0.02.4 allows to use app without authentication when lockscreen is unlocked.	CWE-287 Improper Authentication	CVE-2021-25505	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196082	4.0	MEDIUM Local	samsung	group_sharing	Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.	NVD-CWE-Other	CVE-2021-25504	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196083	6.7	MEDIUM Local	google	android	Improper input validation vulnerability in HDCP prior to SMR Nov-2021 Release 1 allows attackers to arbitrary code execution.	CWE-20 Improper Input Validation	CVE-2021-25503	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196084	5.5	MEDIUM Local	google	android	A vulnerability of storing sensitive information insecurely in Property Settings prior to SMR Nov-2021 Release 1 allows attackers to read ESN value without priviledge.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-25502	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196085	3.3	LOW Local	google	android	An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted application to call some protected providers.	NVD-CWE-Other	CVE-2021-25501	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196086	4.4	MEDIUM Local	google	android	A missing input validation in HDCP LDFW prior to SMR Nov-2021 Release 1 allows attackers to overwrite TZASC allowing TEE compromise.	CWE-787 Out-of-bounds Write	CVE-2021-25500	2024-11-21 14:55	2021-11-5	Show	GitHub Exploit DB Packet Storm

196087	4.3	MEDIUM Network	fortinet	fortimanager	An improper access control vulnerability [CWE-284] in FortiManager versions 6.4.4 and 6.4.5 may allow an authenticated attacker with a restricted user profile to modify the VPN tunnel status of other…	NVD-CWE-Other	CVE-2021-26107	2024-11-21 14:55	2021-11-3	Show	GitHub Exploit DB Packet Storm

196088	6.5	MEDIUM Network	publify_project	publify	In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only.	CWE-669 Incorrect Resource Transfer Between Spheres	CVE-2021-25973	2024-11-21 14:55	2021-11-2	Show	GitHub Exploit DB Packet Storm

196089	6.1	MEDIUM Network	youphptube	youphptube	AVideo/YouPHPTube 10.0 and prior is affected by multiple reflected Cross Script Scripting vulnerabilities via the videoName parameter which allows a remote attacker to steal administrators' session c…	CWE-79 Cross-site Scripting	CVE-2021-25878	2024-11-21 14:55	2021-11-1	Show	GitHub Exploit DB Packet Storm

196090	7.2	HIGH Network	youphptube	youphptube	AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.	CWE-94 Code Injection	CVE-2021-25877	2024-11-21 14:55	2021-11-1	Show	GitHub Exploit DB Packet Storm