Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189631 7.8 重要
Local 		環境省 - 環境省が提供する報告書作成支援ツールのインストーラにおける任意のDLL読み込みの脆弱性 CWE-Other
その他 		CVE-2017-2209 2018-01-17 13:48 2017-06-5 Show GitHub Exploit DB Packet Storm
189632 3.6
Local 		Wireshark - Windows 版 Wireshark における任意ファイルが削除される問題 CWE-Other
その他 		CVE-2016-7838 2018-01-17 13:42 2016-12-26 Show GitHub Exploit DB Packet Storm
189633 3.6
Local 		WinSparkle - WinSparkle におけるレジストリ値を検証しない問題 CWE-Other
その他 		CVE-2016-7838 2018-01-17 13:42 2016-12-26 Show GitHub Exploit DB Packet Storm
189634 4.8 警告
Network 		サイボウズ - Android アプリ「kintone mobile for Android」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2016-7816 2018-01-17 12:33 2016-11-28 Show GitHub Exploit DB Packet Storm
189635 7.8 重要
Local 		ネットムーブ株式会社 - SaAT Netizen のインストーラにおける DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2017-2206 2018-01-17 12:28 2017-06-2 Show GitHub Exploit DB Packet Storm
189636 6.1 警告
Network 		Max Foundry, LLC. - WordPress 用プラグイン MaxButtons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-2169 2018-01-17 12:27 2017-05-16 Show GitHub Exploit DB Packet Storm
189637 7.8 重要
Local 		ネットムーブ株式会社 - SaAT Personal のインストーラにおける DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2017-2207 2018-01-17 12:25 2017-06-2 Show GitHub Exploit DB Packet Storm
189638 4.3 警告
Adjacent 		株式会社コレガ - CG-WLR300NX におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7810 2018-01-17 12:16 2016-11-11 Show GitHub Exploit DB Packet Storm
189639 7.1 重要
Network 		株式会社コレガ - CG-WLR300NX におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-7809 2018-01-17 12:16 2016-11-11 Show GitHub Exploit DB Packet Storm
189640 4.8 警告
Network 		日本ユニシス株式会社 - スマートフォンアプリ「mobiGate」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2016-7805 2018-01-17 12:16 2016-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2481 7.8 HIGH
Local 		x.org
redhat 		x_server
xwayland
enterprise_linux 		A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has multiple stack buffers sized XkbMaxShiftLevel * XkbNumKbdGroups but CheckKeyTypes() does not verify o… CWE-121
Stack-based Buffer Overflow 		CVE-2026-50258 2026-06-9 01:46 2026-06-5 Show GitHub Exploit DB Packet Storm
2482 7.8 HIGH
Local 		x.org
redhat 		x_server
xwayland
enterprise_linux 		A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). A client that sets up multiple fence triggers can trigger a use-after-free function pointer call. An attack… CWE-416
 Use After Free 		CVE-2026-50257 2026-06-9 01:45 2026-06-5 Show GitHub Exploit DB Packet Storm
2483 7.8 HIGH
Local 		x.org
redhat 		x_server
xwayland
enterprise_linux 		A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow… CWE-121
Stack-based Buffer Overflow 		CVE-2026-50256 2026-06-9 01:45 2026-06-5 Show GitHub Exploit DB Packet Storm
2484 4.3 MEDIUM
Network 		google chrome Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) CWE-346
 Origin Validation Error 		CVE-2026-11309 2026-06-9 01:40 2026-06-5 Show GitHub Exploit DB Packet Storm
2485 6.5 MEDIUM
Network 		team net\ Net::Async::Statsd::Client versions through 0.005 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inj… CWE-93
CRLF Injection 		CVE-2026-8722 2026-06-9 01:39 2026-06-4 Show GitHub Exploit DB Packet Storm
2486 7.7 HIGH
Local 		google chrome Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via a malicious file. (Chromium… CWE-20
 Improper Input Validation  		CVE-2026-11297 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2487 7.5 HIGH
Network 		rrwo net\ Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses. If the addresses did not look like netmasks or network range… CWE-674
CWE-1287
 Uncontrolled Recursion
 Improper Validation of Specified Type of Input 		CVE-2026-49941 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2488 8.8 HIGH
Network 		google chrome Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severi… CWE-269
 Improper Privilege Management 		CVE-2026-11295 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2489 7.3 HIGH
Network 		rrwo net\ Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One (U+0661), or non-digits, wh… CWE-1289
 Improper Validation of Unsafe Equivalence in Input 		CVE-2026-49942 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2490 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security … CWE-346
 Origin Validation Error 		CVE-2026-11291 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm