Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240791 6.8 警告 oe2edit - oe2edit CMS の oe2edit.cgi におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2085 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
240792 6.5 警告 myblog - MyBlog の admin/settings.php における任意の PHP コードを挿入される脆弱性 - CVE-2007-2082 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240793 7.5 危険 myblog - MyBlog における認証要求を回避される脆弱性 - CVE-2007-2081 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240794 7.5 危険 maian - Maian Search の search.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2077 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240795 6.8 警告 maian - Maian Gallery の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2076 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240796 7.5 危険 ivan gallery script - Ivan Gallery Script の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2073 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240797 7.5 危険 openmairie - openMairie の scr/soustab.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2069 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
240798 6.8 警告 Mambo Foundation - Mambo 用の calendar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2049 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
240799 7.5 危険 Openads - Openads の www/delivery/ck.php における CRLF インジェクションの脆弱性 - CVE-2007-2047 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
240800 7.5 危険 Openads - Openads における CRLF インジェクションの脆弱性 - CVE-2007-2046 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
531 6.5 MEDIUM
Network 		- - Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a cra… New CWE-20
 Improper Input Validation  		CVE-2026-11658 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
532 6.5 MEDIUM
Network 		- - Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page… New CWE-20
 Improper Input Validation  		CVE-2026-11653 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
533 8.3 HIGH
Network 		- - Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-11640 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
534 8.8 HIGH
Network 		- - Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation of user input for git shell commands directly invoked with exe… New CWE-78
CWE-77
OS Command 
Command Injection 		CVE-2026-11572 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
535 6.5 MEDIUM
Network 		google chrome Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) Update CWE-693
 Protection Mechanism Failure 		CVE-2026-11288 2026-06-9 22:59 2026-06-5 Show GitHub Exploit DB Packet Storm
536 6.5 MEDIUM
Network 		google chrome Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) Update CWE-1300
CWE-203
 Improper Protection of Physical Side Channels
 Information Exposure Through Discrepancy 		CVE-2026-11289 2026-06-9 22:58 2026-06-5 Show GitHub Exploit DB Packet Storm
537 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda AC1206 v15.03.06.23 was discovered to contain multiple stack overflows in the fromGstDhcpSetSer function via the username and password parameters. These vulne… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-36789 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
538 6.5 MEDIUM
Network 		- - OfflineIMAP before 8.0.3 trusts the server with their STARTTLS capability prior to authentication, which allows STRIPTLS/man-in-the-middle attacks, taking over the connection and extracting account c… New CWE-348
 Use of Less Trusted Source 		CVE-2020-37248 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
539 7.5 HIGH
Network 		- - Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory. By creating resources of certain types and presenting a set of parameters t… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-22164 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
540 7.1 HIGH
Local 		- - Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of a mapping state maintained for a sparse memory allocation. The product accidenta… New CWE-468
CVE-2026-34194 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm