Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199541 5.9 警告
Network 		SleekXMPP project
Slixmpp project		 - SleekXMPP および Slixmpp の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性 CWE-20
CWE-346
CVE-2017-5591 2017-03-8 15:04 2017-01-28 Show GitHub Exploit DB Packet Storm
199542 5.9 警告
Network 		Georg Lukas - yaxim および Bruno の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性 CWE-20
CWE-346
CVE-2017-5589 2017-03-8 15:04 2017-01-30 Show GitHub Exploit DB Packet Storm
199543 6.1 警告
Network 		Schneider Electric - Schneider Electric homeLYnk Controller におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5157 2017-03-8 15:03 2017-01-18 Show GitHub Exploit DB Packet Storm
199544 9.8 緊急
Network 		Schneider Electric - Schneider Electric PowerLogic PM8ECC におけるデバイスへのアクセスを許容される脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2016-5818 2017-03-8 15:03 2016-10-18 Show GitHub Exploit DB Packet Storm
199545 7.5 重要
Network 		Mobile App Native project - WordPress 用 Mobile App Native プラグインにおけるリモートでファイルをアップロードされる脆弱性 CWE-254
セキュリティ機能 		CVE-2017-6104 2017-03-8 14:30 2017-02-27 Show GitHub Exploit DB Packet Storm
199546 6.1 警告
Network 		AnyVar project - WordPress 用 AnyVar プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-6103 2017-03-8 14:30 2017-02-21 Show GitHub Exploit DB Packet Storm
199547 6.1 警告
Network 		Blair Jordan - WordPress 用 Rockhoist Badges プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-6102 2017-03-8 14:30 2017-02-20 Show GitHub Exploit DB Packet Storm
199548 7.8 重要
Local 		IBM - IBM AIX における root 権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8972 2017-03-8 14:20 2016-12-15 Show GitHub Exploit DB Packet Storm
199549 5.5 警告
Local 		IBM - IBM AIX におけるシステムクラッシュを引き起こされる脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8944 2017-03-8 14:20 2016-10-25 Show GitHub Exploit DB Packet Storm
199550 9.1 緊急
Network 		IBM - IBM Integration Bus および WebSphere Message Broker の SOAP フローにおけるサービス運用妨害 (DoS) の脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-9706 2017-03-8 14:19 2016-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
151 8.3 HIGH
Network 		google chrome Use after free in SurfaceCapture in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a cr… New CWE-416
 Use After Free 		CVE-2026-10967 2026-06-6 10:44 2026-06-5 Show GitHub Exploit DB Packet Storm
152 8.3 HIGH
Network 		google chrome Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte… New CWE-416
 Use After Free 		CVE-2026-10961 2026-06-6 10:44 2026-06-5 Show GitHub Exploit DB Packet Storm
153 6.5 MEDIUM
Network 		google chrome Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a … New CWE-20
 Improper Input Validation  		CVE-2026-10912 2026-06-6 10:43 2026-06-5 Show GitHub Exploit DB Packet Storm
154 6.1 MEDIUM
Network 		google chrome Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML (… New CWE-20
 Improper Input Validation  		CVE-2026-10916 2026-06-6 10:43 2026-06-5 Show GitHub Exploit DB Packet Storm
155 8.8 HIGH
Network 		google chrome Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-10923 2026-06-6 10:43 2026-06-5 Show GitHub Exploit DB Packet Storm
156 6.3 MEDIUM
Network 		google chrome Inappropriate implementation in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium) New CWE-284
Improper Access Control 		CVE-2026-11187 2026-06-6 10:42 2026-06-5 Show GitHub Exploit DB Packet Storm
157 6.1 MEDIUM
Network 		google chrome Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: … New CWE-79
Cross-site Scripting 		CVE-2026-11186 2026-06-6 10:42 2026-06-5 Show GitHub Exploit DB Packet Storm
158 6.3 MEDIUM
Network 		google chrome Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medi… New CWE-602
 Client-Side Enforcement of Server-Side Security 		CVE-2026-11184 2026-06-6 10:42 2026-06-5 Show GitHub Exploit DB Packet Storm
159 6.5 MEDIUM
Network 		google chrome Out of bounds read in GWP-ASan in Google Chrome prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium securit… New CWE-125
Out-of-bounds Read 		CVE-2026-11183 2026-06-6 10:41 2026-06-5 Show GitHub Exploit DB Packet Storm
160 9.6 CRITICAL
Network 		google chrome Insufficient validation of untrusted input in Enterprise Reporting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a … New CWE-20
 Improper Input Validation  		CVE-2026-11120 2026-06-6 10:41 2026-06-5 Show GitHub Exploit DB Packet Storm