Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3221	9.6	緊急 Network	charm	Wish	charmのWishにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41589	2026-06-3 17:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

3222	9.1	緊急 Network	i18next	i18next-http-backend	i18nextのi18next-http-backendにおける複数の脆弱性	CWE-22 CWE-74	CVE-2026-41691	2026-06-3 17:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

3223	4.7	警告 Network	i18next	i18nextify	i18nextのi18nextifyにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-41692	2026-06-3 17:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

3224	10	緊急 Network	th30d4y	OpenLearnX	th30d4yのOpenLearnXにおける複数の脆弱性	CWE-250 CWE-284 CWE-693 CWE-78 CWE-94	CVE-2026-41900	2026-06-3 17:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

3225	6.1	警告 Network	The Go Project	Net	The Go ProjectのNetにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-42502	2026-06-3 17:04	2026-05-22	Show	GitHub Exploit DB Packet Storm

3226	6.1	警告 Network	The Go Project	Net	The Go ProjectのNetにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42506	2026-06-3 17:04	2026-05-22	Show	GitHub Exploit DB Packet Storm

3227	7.8	重要 Local	horsicq	Detect-It-Easy	horsicqのDetect-It-Easyにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-43616	2026-06-3 17:04	2026-05-4	Show	GitHub Exploit DB Packet Storm

3228	9.9	緊急 Network	オラクル	Oracle iAssets	オラクルのOracle iAssetsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46822	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

3229	7.5	重要 Network	fastify	fastify/accepts-serializer	fastifyのfastify/accepts-serializerにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-7768	2026-06-3 17:04	2026-05-4	Show	GitHub Exploit DB Packet Storm

3230	8.8	重要 Local	NanoCo	NanoClaw	NanoCoのNanoClawにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-7875	2026-06-3 17:04	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308081	-	google	chrome	The shader translator implementation in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.	CWE-787 Out-of-bounds Write	CVE-2011-3972	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308082	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.46 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to mo…	CWE-416 Use After Free	CVE-2011-3971	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308083	-	google xmlsoft suse	chrome libxslt linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit	libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.	CWE-125 Out-of-bounds Read	CVE-2011-3970	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308084	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to layout of SVG do…	CWE-416 Use After Free	CVE-2011-3969	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308085	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving Cascading Style S…	CWE-416 Use After Free	CVE-2011-3968	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308086	-	google	chrome	Unspecified vulnerability in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service (application crash) via a crafted certificate.	NVD-CWE-noinfo	CVE-2011-3967	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308087	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to error handling f…	CWE-416 Use After Free	CVE-2011-3966	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308088	-	google	chrome	Google Chrome before 17.0.963.46 does not properly check signatures, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2011-3965	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308089	-	google	chrome	Google Chrome before 17.0.963.46 does not properly implement the drag-and-drop feature, which makes it easier for remote attackers to spoof the URL bar via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2011-3964	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

308090	-	google	chrome	Google Chrome before 17.0.963.46 does not properly handle PDF FAX images, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.	CWE-125 Out-of-bounds Read	CVE-2011-3963	2024-11-21 10:31	2012-02-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed