Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241731 5 警告 paul tarjan - Paul Tarjan SCARF の generaloptions.php におけるアプリケーションを再設定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2006-5909 2012-09-25 15:36 2006-11-15 Show GitHub Exploit DB Packet Storm
241732 7.5 危険 lucas rodriguez san pedro - Lucas Rodriguez San Pedro YANS の yans.func.php における SQL インジェクションの脆弱性 - CVE-2006-5908 2012-09-25 15:36 2006-11-15 Show GitHub Exploit DB Packet Storm
241733 7.8 危険 libsoup - libsoup HTTP ライブラリの soup-headers.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5876 2012-09-25 15:36 2007-01-16 Show GitHub Exploit DB Packet Storm
241734 7.5 危険 jean-christophe ramos - Jean-Christophe Ramos SCRIPT BANNIERES における SQL インジェクションの脆弱性 - CVE-2006-5907 2012-09-25 15:36 2006-11-15 Show GitHub Exploit DB Packet Storm
241735 7.5 危険 mwchat pro - MWChat Pro における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5904 2012-09-25 15:36 2006-11-15 Show GitHub Exploit DB Packet Storm
241736 5 警告 hawking technology - Hawking Technology の WR254-CA におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5901 2012-09-25 15:36 2006-11-15 Show GitHub Exploit DB Packet Storm
241737 7.5 危険 iwonder designs - iWonder Designs Storystream における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5893 2012-09-25 15:36 2006-11-14 Show GitHub Exploit DB Packet Storm
241738 7.5 危険 マイクロソフト - Microsoft Internet Explorer の DirectAnimation ActiveX コントロールにおける脆弱性 - CVE-2006-5884 2012-09-25 15:36 2006-11-14 Show GitHub Exploit DB Packet Storm
241739 7.5 危険 isystems - Munch Pro の switch.asp の subMenu ページにおける SQL インジェクションの脆弱性 - CVE-2006-5880 2012-09-25 15:36 2006-11-14 Show GitHub Exploit DB Packet Storm
241740 7.8 危険 l2tpns
Debian		 - l2tpns の cluster.c の cluster_process_heartbeat 関数におけるバッファオーバーフローの脆弱性 - CVE-2006-5873 2012-09-25 15:36 2006-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
531 6.5 MEDIUM
Network 		- - Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a cra… New CWE-20
 Improper Input Validation  		CVE-2026-11658 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
532 6.5 MEDIUM
Network 		- - Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page… New CWE-20
 Improper Input Validation  		CVE-2026-11653 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
533 8.3 HIGH
Network 		- - Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-11640 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
534 8.8 HIGH
Network 		- - Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation of user input for git shell commands directly invoked with exe… New CWE-78
CWE-77
OS Command 
Command Injection 		CVE-2026-11572 2026-06-9 23:16 2026-06-9 Show GitHub Exploit DB Packet Storm
535 6.5 MEDIUM
Network 		google chrome Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) Update CWE-693
 Protection Mechanism Failure 		CVE-2026-11288 2026-06-9 22:59 2026-06-5 Show GitHub Exploit DB Packet Storm
536 6.5 MEDIUM
Network 		google chrome Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) Update CWE-1300
CWE-203
 Improper Protection of Physical Side Channels
 Information Exposure Through Discrepancy 		CVE-2026-11289 2026-06-9 22:58 2026-06-5 Show GitHub Exploit DB Packet Storm
537 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda AC1206 v15.03.06.23 was discovered to contain multiple stack overflows in the fromGstDhcpSetSer function via the username and password parameters. These vulne… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-36789 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
538 6.5 MEDIUM
Network 		- - OfflineIMAP before 8.0.3 trusts the server with their STARTTLS capability prior to authentication, which allows STRIPTLS/man-in-the-middle attacks, taking over the connection and extracting account c… New CWE-348
 Use of Less Trusted Source 		CVE-2020-37248 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
539 7.5 HIGH
Network 		- - Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory. By creating resources of certain types and presenting a set of parameters t… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-22164 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm
540 7.1 HIGH
Local 		- - Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of a mapping state maintained for a sparse memory allocation. The product accidenta… New CWE-468
CVE-2026-34194 2026-06-9 22:57 2026-06-9 Show GitHub Exploit DB Packet Storm