Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3591	7.5	重要 Network	uuidjs	uuid	uuidjsのuuidにおける複数の脆弱性	CWE-787 CWE-823	CVE-2026-41907	2026-05-12 10:19	2026-04-24	Show	GitHub Exploit DB Packet Storm

3592	7.5	重要 Network	Amazon.com, Inc.	Bedrock Agentcore Starter Toolkit	Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性	CWE-283 CWE-340	CVE-2026-4269	2026-05-12 10:19	2026-03-16	Show	GitHub Exploit DB Packet Storm

3593	7.5	重要 Network	VEGA	VEGAPULS 6X Firmware	VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-3323	2026-05-12 10:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

3594	3.3	低 Local	ちとらソフト	Lhaz+ Lhaz	LhazおよびLhaz+におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41530	2026-05-11 17:15	2026-05-11	Show	GitHub Exploit DB Packet Storm

3595	-	-	Apache Software Foundation	Apache HTTP Server	Apache HTTP Server 2.4における複数の脆弱性に対するアップデート（2026年5月）	-	CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29168 CVE-2026-29169 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059	2026-05-11 16:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

3596	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月07日）	-	-	2026-05-11 16:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

3597	7.2	重要 Network	株式会社GROWI	GROWI	GROWIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41951	2026-05-11 15:29	2026-05-11	Show	GitHub Exploit DB Packet Storm

3598	7.4	重要 Network	株式会社EPG	iOSアプリ「くら寿司公式アプリ」 Androidアプリ「くら寿司公式アプリ」	スマートフォンアプリ「くら寿司公式アプリ」における証明書検証不備の脆弱性	CWE-Other その他	CVE-2026-41872	2026-05-11 12:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

3599	3.3	低 Local	X.Org Foundation	libxpm	libXpmにおける境界外読み取りの脆弱性	CWE-Other その他	CVE-2026-4367	2026-05-11 12:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3600	7.3	重要 Network	yeti-platform	yeti	yeti-platformのyetiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2024-46507	2026-05-11 11:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306371	-	opera	opera_browser	The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn.	CWE-399 Resource Management Errors	CVE-2011-2614	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306372	-	opera	opera_browser	The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes.	CWE-399 Resource Management Errors	CVE-2011-2613	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306373	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru.	NVD-CWE-noinfo	CVE-2011-2612	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306374	-	opera	opera_browser	Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page.	NVD-CWE-noinfo	CVE-2011-2611	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306375	-	opera	opera_browser	Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."	NVD-CWE-noinfo	CVE-2011-2610	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306376	-	opera	opera_browser	Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.	CWE-79 Cross-site Scripting	CVE-2011-2609	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306377	-	hp	operations_agent openview_performance_agent	ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers …	CWE-20 Improper Input Validation	CVE-2011-2608	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306378	-	ibm	rational_team_concert	Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Item 165513.	CWE-79 Cross-site Scripting	CVE-2011-2607	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306379	-	ibm	rational_team_concert	Cross-site scripting (XSS) vulnerability in the Web UI in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Ite…	CWE-79 Cross-site Scripting	CVE-2011-2606	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

306380	-	mozilla	firefox thunderbird	CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird bef…	CWE-94 Code Injection	CVE-2011-2605	2024-11-21 10:28	2011-07-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed