Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241061	7.5	危険	iwonder designs	-	iWonder Designs Storystream における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5893	2012-09-25 15:36	2006-11-14	Show	GitHub Exploit DB Packet Storm

241062	7.5	危険	マイクロソフト	-	Microsoft Internet Explorer の DirectAnimation ActiveX コントロールにおける脆弱性	-	CVE-2006-5884	2012-09-25 15:36	2006-11-14	Show	GitHub Exploit DB Packet Storm

241063	7.5	危険	isystems	-	Munch Pro の switch.asp の subMenu ページにおける SQL インジェクションの脆弱性	-	CVE-2006-5880	2012-09-25 15:36	2006-11-14	Show	GitHub Exploit DB Packet Storm

241064	7.8	危険	l2tpns Debian	-	l2tpns の cluster.c の cluster_process_heartbeat 関数におけるバッファオーバーフローの脆弱性	-	CVE-2006-5873	2012-09-25 15:36	2006-12-8	Show	GitHub Exploit DB Packet Storm

241065	7.5	危険	otterware	-	inc/session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5863	2012-09-25 15:36	2006-11-10	Show	GitHub Exploit DB Packet Storm

241066	4.6	警告	network administration visualized	-	NAV 用の Web インターフェースのセッションメカニズムにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5862	2012-09-25 15:36	2006-11-10	Show	GitHub Exploit DB Packet Storm

241067	10	危険	IBM	-	IBM TSM におけるバッファオーバーフローの脆弱性	-	CVE-2006-5855	2012-09-25 15:36	2006-12-6	Show	GitHub Exploit DB Packet Storm

241068	7.5	危険	Novell	-	Novell Netware Client の nwspool.dll におけるバッファオーバーフローの脆弱性	-	CVE-2006-5854	2012-09-25 15:36	2006-12-3	Show	GitHub Exploit DB Packet Storm

241069	6.8	警告	immediacy	-	Immediacy .NET CMS の logon.aspx におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5853	2012-09-25 15:36	2006-11-9	Show	GitHub Exploit DB Packet Storm

241070	4.6	警告	Openbase International	-	OpenBase SQL の openexec における権限を取得される脆弱性	-	CVE-2006-5852	2012-09-25 15:36	2006-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251	6.5	MEDIUM Network	-	-	Inappropriate implementation in Cronet in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: … New	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11215	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

252	6.5	MEDIUM Network	-	-	Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity:… New	CWE-346 CWE-352 Origin Validation Error Origin Validation Error	CVE-2026-11214	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

253	9.6	CRITICAL Network	-	-	Insufficient validation of untrusted input in Reading Mode in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox … New	CWE-20 Improper Input Validation	CVE-2026-11213	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

254	4.3	MEDIUM Network	-	-	Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted C… New	CWE-284 Improper Access Control	CVE-2026-11212	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

255	6.5	MEDIUM Network	-	-	Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. (Chromium security sever… New	CWE-284 Improper Access Control	CVE-2026-11210	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

256	6.5	MEDIUM Network	-	-	Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from p… New	CWE-200 Information Exposure	CVE-2026-11209	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

257	9.6	CRITICAL Network	-	-	Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. (Chromi… New	CWE-20 Improper Input Validation	CVE-2026-11207	2026-06-6 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

258	5.5	MEDIUM Local	ni	ni-pal	Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by triggering a crash due to a NULL pointer dereference. This vulnerability aff… New	CWE-476 NULL Pointer Dereference	CVE-2026-8035	2026-06-6 00:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

259	7.8	HIGH Local	ni	ni-pal	Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and p… New	CWE-1285 Improper Validation of Specified Index, Position, or Offset in Input	CVE-2026-8036	2026-06-6 00:10	2026-06-3	Show	GitHub Exploit DB Packet Storm

260	-		-	-	Froxlor is open source server administration software. Version 2.3.6 lets administrators configure `system.available_shells` as the approved shell list that customers may assign to FTP users. However… New	CWE-863 Incorrect Authorization	CVE-2026-41235	2026-06-6 00:09	2026-06-5	Show	GitHub Exploit DB Packet Storm