Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2451	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-11148	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

2452	6.1	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-11150	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

2453	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11151	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2454	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11152	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2455	9.1	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける物理サイドチャネルの不適切な保護に関する脆弱性	CWE-1300 物理サイドチャネルの不適切な保護	CVE-2026-11153	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2456	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11154	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2457	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-11155	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2458	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-11156	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2459	5.4	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-11157	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2460	8.6	重要 Local	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11158	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305881	-	emc	rsa_archer_smartsuite rsa_archer_egrc	Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to inject arbitrary web script or HTML via u…	CWE-79 Cross-site Scripting	CVE-2012-1064	2024-11-21 10:36	2013-02-6	Show	GitHub Exploit DB Packet Storm

305882	-	canonical sebastian_heinlein	ubuntu_linux aptdaemon	Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-t…	NVD-CWE-noinfo	CVE-2012-0962	2024-11-21 10:36	2012-12-27	Show	GitHub Exploit DB Packet Storm

305883	-	debian	apt advanced_package_tool	Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16~exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable perm…	CWE-200 Information Exposure	CVE-2012-0961	2024-11-21 10:36	2012-12-27	Show	GitHub Exploit DB Packet Storm

305884	-	ps_project_management_team	unity-firefox-extension	content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…	NVD-CWE-Other	CVE-2012-0958	2024-11-21 10:36	2012-12-27	Show	GitHub Exploit DB Packet Storm

305885	-	linux	linux_kernel	The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with…	CWE-16 Configuration	CVE-2012-0957	2024-11-21 10:36	2012-12-21	Show	GitHub Exploit DB Packet Storm

305886	-	ps_project_management_team	unity-firefox-extension	Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possi…	CWE-20 Improper Input Validation	CVE-2012-0960	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

305887	-	remote_login_service_hackers	remote_login_service	Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.	CWE-200 Information Exposure	CVE-2012-0959	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

305888	-	redhat	jboss_enterprise_application_platform jboss_enterprise_soa_platform jboss_enterprise_web_platform jboss_enterprise_brms_platform	The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1167	2024-11-21 10:36	2012-11-24	Show	GitHub Exploit DB Packet Storm

305889	-	redhat	mod_cluster jboss_enterprise_application_platform	mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1154	2024-11-21 10:36	2012-10-23	Show	GitHub Exploit DB Packet Storm

305890	-	socialcms	socialcms	Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…	CWE-352 Origin Validation Error	CVE-2012-1416	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm