Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210041	6.4	警告	Squid-cache.org	-	Squid の pinger における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2014-7142	2015-08-31 17:31	2014-09-15	Show	GitHub Exploit DB Packet Storm

210042	6.8	警告	Squid-cache.org	-	Squid の snmp_core.cc の snmpHandleUdp 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-6270	2015-08-31 17:31	2014-09-9	Show	GitHub Exploit DB Packet Storm

210043	5	警告	Squid-cache.org	-	Squid の HttpHdrRange.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3609	2015-08-31 17:31	2014-08-28	Show	GitHub Exploit DB Packet Storm

210044	5	警告	Squid-cache.org Novell	-	Squid におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0128	2015-08-31 17:31	2014-03-9	Show	GitHub Exploit DB Packet Storm

210045	4.6	警告	The PHP Group	-	PHP における WSDL インジェクション攻撃を実行される脆弱性	CWE-Other その他	CVE-2013-6501	2015-08-31 17:31	2013-09-17	Show	GitHub Exploit DB Packet Storm

210046	5	警告	Ruby-lang.org	-	Ruby の REXML パーサの lib/rexml/text.rb におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1821	2015-08-31 17:31	2013-02-22	Show	GitHub Exploit DB Packet Storm

210047	5	警告	The PHP Group アップル	-	PHP の ext/soap/soap.c 内の do_soap_call 関数における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2015-4148	2015-08-31 17:05	2015-03-19	Show	GitHub Exploit DB Packet Storm

210048	7.5	危険	The PHP Group アップル	-	PHP の ext/soap/soap.c の SoapClient::__call メソッドにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-4147	2015-08-31 17:05	2015-03-19	Show	GitHub Exploit DB Packet Storm

210049	7.5	危険	The PHP Group アップル	-	PHP の pcntl_exec の実装における拡張子の制限を回避される脆弱性	CWE-Other その他	CVE-2015-4026	2015-08-31 17:05	2015-05-14	Show	GitHub Exploit DB Packet Storm

210050	7.5	危険	The PHP Group アップル	-	PHP における拡張子の制限を回避される脆弱性	CWE-Other その他	CVE-2015-4025	2015-08-31 17:05	2015-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
301	6.5	MEDIUM Network	-	-	Out of bounds read in Input in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromi… New	CWE-125 Out-of-bounds Read	CVE-2026-11160	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

302	4.3	MEDIUM Network	-	-	Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) New	CWE-457 Use of Uninitialized Variable	CVE-2026-11159	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

303	8.6	HIGH Local	-	-	Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript comma… New	CWE-20 Improper Input Validation	CVE-2026-11158	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

304	5.4	MEDIUM Network	-	-	Script injection in Accessibility in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML (UXSS) via a cr… New	CWE-94 Code Injection	CVE-2026-11157	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

305	4.3	MEDIUM Network	-	-	Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) New	CWE-352 Origin Validation Error	CVE-2026-11156	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

306	4.3	MEDIUM Network	-	-	Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) New	CWE-352 Origin Validation Error	CVE-2026-11155	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

307	7.5	HIGH Network	-	-	Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… New	CWE-416 Use After Free	CVE-2026-11154	2026-06-6 03:17	2026-06-5	Show	GitHub Exploit DB Packet Storm

308	9.1	CRITICAL Network	-	-	Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) New	CWE-1300 Improper Protection of Physical Side Channels	CVE-2026-11153	2026-06-6 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

309	9.6	CRITICAL Network	-	-	Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium) New	CWE-416 Use After Free	CVE-2026-11152	2026-06-6 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

310	7.5	HIGH Network	-	-	Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sand… New	CWE-20 Improper Input Validation	CVE-2026-11151	2026-06-6 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm