Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227071 6.8 警告 マイクロソフト - Internet Explorer において任意のコードが実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-3893 2013-11-7 18:22 2013-09-19 Show GitHub Exploit DB Packet Storm
227072 6.4 警告 OpenStack - 複数の OpenStack 製品の XenAPI バックエンドにおける制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4497 2013-11-7 18:21 2013-10-3 Show GitHub Exploit DB Packet Storm
227073 4.3 警告 LDAP Account Manager - LDAP Account Manager の templates/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4453 2013-11-7 18:18 2013-10-29 Show GitHub Exploit DB Packet Storm
227074 6.9 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の Elf パーサにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-2194 2013-11-7 18:15 2013-06-7 Show GitHub Exploit DB Packet Storm
227075 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3886 2013-11-7 18:13 2013-10-8 Show GitHub Exploit DB Packet Storm
227076 7.5 危険 アドビシステムズ - Adobe Reader におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-2550 2013-11-7 18:12 2013-03-11 Show GitHub Exploit DB Packet Storm
227077 7.5 危険 アドビシステムズ - Adobe Reader における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2549 2013-11-7 18:08 2013-03-11 Show GitHub Exploit DB Packet Storm
227078 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3885 2013-11-7 18:07 2013-10-8 Show GitHub Exploit DB Packet Storm
227079 4 警告 オラクル - Oracle Supply Chain Products Suite の Agile EDM における Java Client の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2441 2013-11-7 18:04 2013-04-16 Show GitHub Exploit DB Packet Storm
227080 7.4 危険 シトリックス・システムズ
Xen プロジェクト		 - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1432 2013-11-7 18:03 2013-07-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4411 - - - Logseq is vulnerable to a sandbox escape flaw where plugins running in sandboxed iframes can inject arbitrary HTML attributes, such as event handlers, into their container element in the host DOM. Du… CWE-79
Cross-site Scripting 		CVE-2026-47901 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
4412 - - - Uncontrolled Resource Consumption vulnerability in the Elixir standard library's Version module allows an attacker who controls a version string to cause a denial of service through CPU and memory ex… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-49762 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
4413 9.8 CRITICAL
Network 		- - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Netcad Software Inc. E-İmar allows SQL Injection. This issue affects E-İmar: from 2.10.1.0 befor… CWE-89
SQL Injection 		CVE-2026-7486 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
4414 - - - Logseq exposes an IPC handler that allows the renderer process to execute shell commands. While an allowlist restricts the command name (e.g. `git`, `pandoc`, `grep`), the argument string is concaten… CWE-78
OS Command  		CVE-2026-9279 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
4415 8.8 HIGH
Network 		google chrome Use after free in File Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) CWE-416
 Use After Free 		CVE-2026-11630 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
4416 8.3 HIGH
Network 		google chrome Use after free in Aura in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM… CWE-416
 Use After Free 		CVE-2026-11631 2026-06-9 23:45 2026-06-9 Show GitHub Exploit DB Packet Storm
4417 3.3 LOW
Network 		- - A heap buffer overflow flaw was found in 389 Directory Server. When audit logging is enabled, the create_masked_entry_string() function in auditlog.c copies a fixed-length password mask into a precis… CWE-122
Heap-based Buffer Overflow 		CVE-2026-11792 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
4418 9.6 CRITICAL
Network 		google chrome Use after free in WebMIDI in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium) CWE-416
 Use After Free 		CVE-2026-11165 2026-06-9 23:24 2026-06-5 Show GitHub Exploit DB Packet Storm
4419 9.8 CRITICAL
Network 		- - A remote, unauthenticated attacker can trigger memory corruption in Zephyr's HTTP server WebSocket upgrade path by sending a crafted Sec-WebSocket-Key header. The HTTP/1 header parser copies the head… CWE-170
CWE-787
 Improper Null Termination
 Out-of-bounds Write 		CVE-2026-5067 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
4420 - - - In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: disallow non-power of two min_region_sz on damon_start() Commit d8f867fa0825 ("mm/damon: add damon_ctx->min_sz_reg… - CVE-2026-52905 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm