Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258801 5 警告 The Perl Foundation
レッドハット
- Perl の lc、lcfirst、uc および ucfirst 関数における汚染 (Taint) 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1487 2011-05-26 09:55 2011-03-1 Show GitHub Exploit DB Packet Storm
258802 7.5 危険 IBM
サイバートラスト株式会社
サン・マイクロシステムズ
Sendmail Consortium
ターボリナックス
ヒューレット・パッカード
レッドハット
- sendmail における X.509 証明書の処理に関する任意の SSL-based SMTP サーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2009-4565 2011-05-26 09:52 2010-01-4 Show GitHub Exploit DB Packet Storm
258803 5 警告 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-5845 2011-05-25 14:03 2011-05-25 Show GitHub Exploit DB Packet Storm
258804 9.3 危険 マイクロソフト - Microsoft PowerPoint におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1270 2011-05-25 12:24 2011-05-10 Show GitHub Exploit DB Packet Storm
258805 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1269 2011-05-25 12:22 2011-05-10 Show GitHub Exploit DB Packet Storm
258806 9.3 危険 マイクロソフト - Microsoft Windows の WINS における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1248 2011-05-25 12:15 2011-05-10 Show GitHub Exploit DB Packet Storm
258807 7.5 危険 サムスン - Samsung Integrated Management System DMS に SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4284 2011-05-25 12:12 2011-05-9 Show GitHub Exploit DB Packet Storm
258808 5 警告 VMware - 複数の VMware 製品の self-extracting インストーラにおけるソフトウェアの配布を偽造される脆弱性 CWE-310
暗号の問題
CVE-2011-1789 2011-05-25 12:09 2011-05-5 Show GitHub Exploit DB Packet Storm
258809 - - Proofpoint, Inc. - Proofpoint Protection Server に複数の脆弱性 - - 2011-05-25 12:07 2011-05-6 Show GitHub Exploit DB Packet Storm
258810 5.1 警告 Aleksey
レッドハット
- WebKit などで利用される xslt.c における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1425 2011-05-24 10:03 2011-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4281 5.4 MEDIUM
Network
google chrome Insufficient validation of untrusted input in Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Hig… CWE-20
NVD-CWE-noinfo
 Improper Input Validation 
CVE-2026-11666 2026-06-11 03:31 2026-06-9 Show GitHub Exploit DB Packet Storm
4282 6.5 MEDIUM
Network
google chrome Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a cra… CWE-20
NVD-CWE-noinfo
 Improper Input Validation 
CVE-2026-11658 2026-06-11 03:30 2026-06-9 Show GitHub Exploit DB Packet Storm
4283 6.5 MEDIUM
Network
google chrome Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page… CWE-20
 Improper Input Validation 
CVE-2026-11653 2026-06-11 03:29 2026-06-9 Show GitHub Exploit DB Packet Storm
4284 5.5 MEDIUM
Local
cilium ebpf A vulnerability has been found in cilium ebpf up to 0.21.0. This affects the function loadRawSpec of the file btf/btf.go of the component LoadCollectionSpec/LoadCollectionSpecFromReader. Such manipul… CWE-189
CWE-190
Numeric Errors
 Integer Overflow or Wraparound
CVE-2026-10722 2026-06-11 03:28 2026-06-3 Show GitHub Exploit DB Packet Storm
4285 7.8 HIGH
Local
synology active_backup_for_business_recovery_media_creator An inclusion of functionality from untrusted control sphere vulnerability in OpenSSL configuration in Synology Active Backup for Business Recovery Media Creator before 2.5.0-2081 allows local users t… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere
CVE-2022-49036 2026-06-11 03:20 2026-06-3 Show GitHub Exploit DB Packet Storm
4286 5.3 MEDIUM
Local
lmsys sglang A vulnerability was determined in sgl-project SGLang up to 0.5.11. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service.… CWE-404
 Improper Resource Shutdown or Release
CVE-2026-10775 2026-06-11 03:19 2026-06-4 Show GitHub Exploit DB Packet Storm
4287 - - - An OS command injection vulnerability exists in the VPN module of TP-Link Archer AX12 v1, AX17 v1. AX18 v1, and AX1300 v1.6 routers. This vulnerability allows an adjacent, authenticated attacker to e… CWE-78
OS Command 
CVE-2026-9151 2026-06-11 03:17 2026-06-11 Show GitHub Exploit DB Packet Storm
4288 2.7 LOW
Network
- - A flaw was found in org.keycloak.services. An administrator with delegated access to read group memberships and users can bypass user profile permissions by accessing the group members endpoint. This… CWE-1220
 Insufficient Granularity of Access Control
CVE-2026-9088 2026-06-11 03:17 2026-06-5 Show GitHub Exploit DB Packet Storm
4289 8.5 HIGH
Network
- - Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.25.0, Fission added PodSpec safety val… CWE-269
CWE-732
 Improper Privilege Management
 Incorrect Permission Assignment for Critical Resource
CVE-2026-50570 2026-06-11 03:17 2026-06-11 Show GitHub Exploit DB Packet Storm
4290 4.3 MEDIUM
Network
- - Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.25.0, HTTPTriggerSpec.Validate() valid… CWE-20
 Improper Input Validation 
CVE-2026-50569 2026-06-11 03:17 2026-06-11 Show GitHub Exploit DB Packet Storm