Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3771	4.3	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42276	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3772	6.5	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42277	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3773	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-42308	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3774	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42309	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3775	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-42310	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3776	8.1	重要 Network	Grav CMS	grav	Grav CMSのgravにおける複数の脆弱性	CWE-269 CWE-285 CWE-639 CWE-837	CVE-2026-42609	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3777	6.5	警告 Network	Grav CMS	grav	Grav CMSのgravにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42610	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3778	8.9	重要 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42611	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3779	5.4	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42612	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3780	4.8	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42841	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306351	-	google opensuse	chrome opensuse	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified o…	CWE-416 Use After Free	CVE-2011-3051	2024-11-21 10:29	2012-03-23	Show	GitHub Exploit DB Packet Storm

306352	-	google opensuse apple	chrome opensuse itunes safari iphone_os	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified o…	CWE-416 Use After Free	CVE-2011-3050	2024-11-21 10:29	2012-03-23	Show	GitHub Exploit DB Packet Storm

306353	-	google fedoraproject redhat debian opensuse libpng	chrome fedora enterprise_linux_server_aus enterprise_linux enterprise_linux_workstation debian_linux enterprise_linux_desktop enterprise_linux_server_eus opensuse storage	Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a de…	CWE-190 Integer Overflow or Wraparound	CVE-2011-3045	2024-11-21 10:29	2012-03-23	Show	GitHub Exploit DB Packet Storm

306354	-	google opensuse	chrome opensuse	The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) by leveraging an error in the plug-in loading me…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-3047	2024-11-21 10:29	2012-03-11	Show	GitHub Exploit DB Packet Storm

306355	-	google opensuse apple	chrome opensuse iphone_os safari	The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)"…	CWE-79 Cross-site Scripting	CVE-2011-3046	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm

306356	-	apple	iphone_os itunes	WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2873	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm

306357	-	apple	iphone_os itunes	WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2872	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm

306358	-	apple	iphone_os itunes	WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2871	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm

306359	-	apple	iphone_os itunes	WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2870	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm

306360	-	apple	iphone_os itunes	WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2869	2024-11-21 10:29	2012-03-9	Show	GitHub Exploit DB Packet Storm