Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
235601	7.5	危険	weekly drawing contest	-	Weekly Drawing Contest の check_vote.php における SQL インジェクションの脆弱性	-	CVE-2007-1602	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

235602	6.5	警告	WordPress.org	-	WordPress の wp-login.php における認証ユーザを他の Web サイトへリダイレクトされる脆弱性	-	CVE-2007-1599	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

235603	5	警告	unclassified newsboard	-	Unclassified NewsBoard における board ログを取得される脆弱性	-	CVE-2007-1597	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

235604	5	警告	シマンテック	-	Symantec Storage Foundation 製品の Symantec VVR および VVR の管理サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-1593	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

235605	2.1	注意	TrueCrypt Foundation	-	TrueCrypt におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1589	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

235606	10	危険	tim soderstrom	-	Tim Soderstrom StatsDawg の templates/config/mail.tpl における任意のプログラムを実行される脆弱性	-	CVE-2007-1587	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

235607	7.8	危険	ZyXEL	-	ZynOS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1586	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

235608	4.3	警告	phprojekt	-	PHProjekt におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1576	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

235609	7.5	危険	phprojekt	-	PHProjekt における SQL インジェクションの脆弱性	-	CVE-2007-1575	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

235610	6.8	警告	加藤和良	-	JGBBS の search.asp における SQL インジェクションの脆弱性	-	CVE-2007-1572	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
491	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in DeviceBoundSessionCredentials in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium securi… New	CWE-346 Origin Validation Error	CVE-2026-13021	2026-06-26 11:19	2026-06-25	Show	GitHub Exploit DB Packet Storm

492	6.5	MEDIUM Network	google	chrome	Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.… New	NVD-CWE-noinfo	CVE-2026-13022	2026-06-26 11:18	2026-06-25	Show	GitHub Exploit DB Packet Storm

493	5.3	MEDIUM Network	google	chrome	Uninitialized Use in GPU in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory vi… New	CWE-457 Use of Uninitialized Variable	CVE-2026-13023	2026-06-26 11:17	2026-06-25	Show	GitHub Exploit DB Packet Storm

494	8.0	HIGH Network	-	-	LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.5, LibreChat's MCP OAuth implementation does not validate that the resource parameter from OAuth Protected Res… New	CWE-346 Origin Validation Error	CVE-2026-54030	2026-06-26 11:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

495	4.2	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a cra… New	CWE-20 Improper Input Validation	CVE-2026-13024	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

496	8.3	HIGH Network	google	chrome	Race in DevTools in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium… New	CWE-20 Improper Input Validation	CVE-2026-13025	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

497	8.8	HIGH Network	google	chrome	Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security seve… New	CWE-416 Use After Free	CVE-2026-13026	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

498	8.8	HIGH Network	google	chrome	Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) New	CWE-416 Use After Free	CVE-2026-13027	2026-06-26 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

499	9.6	CRITICAL Network	google	chrome	Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Cri… New	CWE-416 Use After Free	CVE-2026-13028	2026-06-26 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

500	6.5	MEDIUM Network	openexr	openexr	OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K (High-Throughput JPEG 2000)… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-45696	2026-06-26 11:08	2026-06-19	Show	GitHub Exploit DB Packet Storm