Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190351 9.8 緊急
Network 		iKodes Technology - iStock Management System における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2017-15962 2017-11-22 14:43 2017-09-29 Show GitHub Exploit DB Packet Storm
190352 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Zomato Clone Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15993 2017-11-22 12:34 2017-10-30 Show GitHub Exploit DB Packet Storm
190353 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Website Broker Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15992 2017-11-22 12:34 2017-10-30 Show GitHub Exploit DB Packet Storm
190354 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Online Exam Test Application における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15989 2017-11-22 12:34 2017-10-30 Show GitHub Exploit DB Packet Storm
190355 7.5 重要
Network 		Quagga
Debian		 - Quagga における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-16227 2017-11-22 11:58 2017-09-8 Show GitHub Exploit DB Packet Storm
190356 9.8 緊急
Network 		Samba Project - rsync におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-15994 2017-11-22 11:54 2017-10-25 Show GitHub Exploit DB Packet Storm
190357 8.8 重要
Network 		Apache Software Foundation - Apache Struts 2 の TextParseUtil.translateVariables メソッドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3090 2017-11-22 11:52 2016-03-15 Show GitHub Exploit DB Packet Storm
190358 9.8 緊急
Network 		ZeeScripts.com - ZeeBuddy における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15976 2017-11-22 11:47 2017-09-29 Show GitHub Exploit DB Packet Storm
190359 9.8 緊急
Network 		GeniusOcean - Dynamic News Magazine & Blog CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15982 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
190360 9.8 緊急
Network 		GeniusOcean - Responsive Newspaper Magazine & Blog CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15981 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2391 3.3 LOW
Local 		samsung android Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function. NVD-CWE-Other
CVE-2026-21027 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
2392 5.5 MEDIUM
Local 		samsung android Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. NVD-CWE-noinfo
CVE-2026-21028 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
2393 7.8 HIGH
Local 		samsung android Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to execute privileged operations. NVD-CWE-Other
CVE-2026-21029 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
2394 7.8 HIGH
Local 		samsung android Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions. NVD-CWE-noinfo
CVE-2026-21030 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
2395 7.8 HIGH
Local 		samsung android Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is required for triggering this vulnerability. CWE-863
 Incorrect Authorization 		CVE-2026-21031 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
2396 6.5 MEDIUM
Network 		google chrome Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity:… CWE-284
Improper Access Control 		CVE-2026-11204 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
2397 6.5 MEDIUM
Network 		google chrome Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medi… CWE-693
 Protection Mechanism Failure 		CVE-2026-11206 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
2398 9.6 CRITICAL
Network 		google chrome Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. (Chromi… CWE-20
 Improper Input Validation  		CVE-2026-11207 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
2399 6.5 MEDIUM
Network 		google chrome Use after free in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security … CWE-416
 Use After Free 		CVE-2026-11208 2026-06-6 10:58 2026-06-5 Show GitHub Exploit DB Packet Storm
2400 6.5 MEDIUM
Network 		google chrome Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from p… CWE-200
Information Exposure 		CVE-2026-11209 2026-06-6 10:58 2026-06-5 Show GitHub Exploit DB Packet Storm