Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
3151 8.1 重要
Network
Google Google Chrome GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り
CVE-2026-11111 2026-06-9 14:19 2026-06-4 Show GitHub Exploit DB Packet Storm
3152 9.6 緊急
Network
Google Google Chrome GoogleのGoogle Chromeにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認
CVE-2026-11112 2026-06-9 14:19 2026-06-4 Show GitHub Exploit DB Packet Storm
3153 9.6 緊急
Network
Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2026-11114 2026-06-9 14:19 2026-06-4 Show GitHub Exploit DB Packet Storm
3154 7.3 重要
Local
Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2026-11115 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3155 8.8 重要
Network
Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2026-11116 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3156 9.6 緊急
Network
Google Google Chrome GoogleのGoogle Chromeにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認
CVE-2026-11119 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3157 6.5 警告
Network
Google Google Chrome GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2026-11129 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3158 9.6 緊急
Network
Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2026-11131 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3159 6.5 警告
Network
Google Google Chrome GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反
CVE-2026-11132 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
3160 6.5 警告
Network
Google Google Chrome GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反
CVE-2026-11133 2026-06-9 14:18 2026-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306691 - freelancerkit freelancerkit Multiple cross-site scripting (XSS) vulnerabilities in freelancerKit 2.35 allow remote attackers to inject arbitrary web script or HTML via the (1) ticket parameter to tickets.php, (2) title paramete… CWE-79
Cross-site Scripting
CVE-2012-1219 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306692 - freelancerkit freelancerkit Multiple SQL injection vulnerabilities in freelancerKit 2.35 allow remote attackers to execute arbitrary SQL commands via unspecified vectors to the (1) notes and (2) tickets components. CWE-89
SQL Injection
CVE-2012-1218 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306693 - zenphoto zenphoto Multiple cross-site scripting (XSS) vulnerabilities in ZENphoto 1.4.2 allow remote attackers to inject arbitrary web script or HTML via the (1) msg parameter in an external action to zp-core/admin.ph… CWE-79
Cross-site Scripting
CVE-2012-0995 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306694 - zenphoto zenphoto SQL injection vulnerability in the Manage Albums feature in zp-core/admin-albumsort.php in ZENphoto 1.4.2 allows remote authenticated users to execute arbitrary SQL commands via the sortableList para… CWE-89
SQL Injection
CVE-2012-0994 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306695 - zenphoto zenphoto Eval injection vulnerability in zp-core/zp-extensions/viewer_size_image.php in ZENphoto 1.4.2, when the viewer_size_image plugin is enabled, allows remote attackers to execute arbitrary PHP code via … CWE-94
Code Injection
CVE-2012-0993 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306696 - simhl sths_v2_web_portal Multiple cross-site scripting (XSS) vulnerabilities in STHS v2 Web Portal 2.2 allow remote attackers to inject arbitrary web script or HTML via the team parameter to (1) prospects.php, (2) prospect.p… CWE-79
Cross-site Scripting
CVE-2012-1217 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306697 - pbboard pbboard Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in PBBoard 2.1.4 allow remote attackers to hijack the authentication of administrators for requests that (1) upload a file via … CWE-352
 Origin Validation Error
CVE-2012-1216 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306698 - yoono yoono_for_firefox Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field … CWE-79
Cross-site Scripting
CVE-2012-1215 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306699 - yoono yoono_desktop Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a … CWE-79
Cross-site Scripting
CVE-2012-1214 2024-11-21 10:36 2012-02-21 Show GitHub Exploit DB Packet Storm
306700 - nova-cms nova_cms Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote attackers to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to… CWE-94
Code Injection
CVE-2012-1200 2024-11-21 10:36 2012-02-18 Show GitHub Exploit DB Packet Storm