Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251851	7.5	危険	exlor	-	EXlor の fonctions/template.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6591	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251852	6.8	警告	Apache Software Foundation	-	Apache OFBiz および Opentaps の ecommerce/control/keywordsearch におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6589	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251853	7.5	危険	Apache Software Foundation	-	Apache OFBiz のフォーラム実装におけるコンテンツを改ざんされる脆弱性	-	CVE-2006-6588	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251854	6.8	警告	Apache Software Foundation	-	Apache OFBiz の ecommerce コンポーネントにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6587	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251855	7.5	危険	brian drawert	-	Brian Drawert yaplap の ldap.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6575	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251856	6	警告	シトリックス・システムズ	-	Citrix Access Gateway Advanced Edition および Citrix Access Gateway Advanced Edition with AAC におけるデータへのアクセス権を取得される脆弱性	-	CVE-2006-6573	2012-06-26 15:38	2006-11-4	Show	GitHub Exploit DB Packet Storm

251857	6.5	警告	シトリックス・システムズ	-	Citrix AAC Option および Access Gateway with Advanced Access Control におけるアクセスポリシーを回避される脆弱性	-	CVE-2006-6572	2012-06-26 15:38	2006-11-4	Show	GitHub Exploit DB Packet Storm

251858	6.8	警告	genesistrader	-	GenesisTrader の form.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6571	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251859	7.5	危険	genesistrader	-	GenesisTrader の upload.php における任意のファイルをアップロードされる脆弱性	-	CVE-2006-6570	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

251860	7.8	危険	genesistrader	-	GenesisTrader の form.php における重要な情報を取得される脆弱性	-	CVE-2006-6569	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194751	8.8	HIGH Network	redislabs fedoraproject	redis fedora	Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An integer overflow bug in Redis version 6.0 or newer, could be exploited using …	CWE-190 Integer Overflow or Wraparound	CVE-2021-32625	2024-11-21 15:07	2021-06-3	Show	GitHub Exploit DB Packet Storm

194752	4.3	MEDIUM Network	nextcloud	nextcloud_server	Nextcloud Server is a Nextcloud package that handles data storage. In versions of Nextcloud Server prior to 10.0.11, 20.0.10, and 21.0.2, a malicious user may be able to break the user administration…	-	CVE-2021-32657	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194753	9.1	CRITICAL Network	nextcloud	nextcloud_server	Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to receive write/read privileges on any Federated File Share.…	-	CVE-2021-32654	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194754	2.7	LOW Network	nextcloud	nextcloud_server	Nextcloud Server is a Nextcloud package that handles data storage. Nextcloud Server versions prior to 19.0.11, 20.0.10, or 21.0.2 send user IDs to the lookup server even if the user has no fields set…	-	CVE-2021-32653	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194755	8.6	HIGH Network	nextcloud	nextcloud_server	Nextcloud Server is a Nextcloud package that handles data storage. A vulnerability in federated share exists in versions prior to 19.0.11, 20.0.10, and 21.0.2. An attacker can gain access to basic in…	-	CVE-2021-32656	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194756	3.5	LOW Network	nextcloud	nextcloud_server	Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to convert a Files Drop link to a federated share. This cause…	NVD-CWE-Other	CVE-2021-32655	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194757	4.3	MEDIUM Network	nextcloud	mail	Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users.…	CWE-862 Missing Authorization	CVE-2021-32652	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194758	8.8	HIGH Network	invisioncommunity	ips_community_suite	Invision Community (aka IPS Community Suite) before 4.6.0 allows eval-based PHP code injection by a moderator because the IPS\cms\modules\front\pages\_builder::previewBlock method interacts unsafely …	CWE-94 Code Injection	CVE-2021-32924	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194759	4.3	MEDIUM Network	onedev_project	onedev	OneDev is a development operations platform. If the LDAP external authentication mechanism is enabled in OneDev versions 4.4.1 and prior, an attacker can manipulate a user search filter to send forge…	-	CVE-2021-32651	2024-11-21 15:07	2021-06-2	Show	GitHub Exploit DB Packet Storm

194760	9.1	CRITICAL Network	nsa	emissary	Emissary is a P2P based data-driven workflow engine. Affected versions of Emissary are vulnerable to post-authentication Remote Code Execution (RCE). The [`CreatePlace`](https://github.com/NationalSe…	CWE-470 Unsafe Reflection	CVE-2021-32647	2024-11-21 15:07	2021-06-1	Show	GitHub Exploit DB Packet Storm