Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
111	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性 New	CWE-346 同一生成元ポリシー違反	CVE-2026-13021	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

112	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-13022	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

113	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性 New	CWE-457 初期化されていない変数の使用	CVE-2026-13023	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

114	4.2	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-13024	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

115	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-13025	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

116	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-13026	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

117	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-13027	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

118	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-13028	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

119	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性 New	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-13281	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

120	6.8	警告 Physics	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-13282	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254261	9.0	CRITICAL Network	runelite	runelite	runelite version <= runelite-parent-1.4.23 contains a XML External Entity (XXE) vulnerability in Man in the middle runscape services call that can result in Disclosure of confidential data, denial of…	CWE-611 XXE	CVE-2018-1000834	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254262	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000833	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254263	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000832	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254264	10.0	CRITICAL Network	k9mail	k-9_mail	K9Mail version <= v5.600 contains a XML External Entity (XXE) vulnerability in WebDAV response parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This …	CWE-611 XXE	CVE-2018-1000831	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254265	10.0	CRITICAL Network	xr3player_project	xr3player	XR3Player version <= V3.124 contains a XML External Entity (XXE) vulnerability in Playlist parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.	CWE-611 XXE	CVE-2018-1000830	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254266	9.0	CRITICAL Network	anyplace_project	anyplace	Anyplace version before commit 80359b4 contains a XML External Entity (XXE) vulnerability in Man in the middle on map API call that can result in Disclosure of confidential data, denial of service, S…	CWE-611 XXE	CVE-2018-1000829	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254267	9.0	CRITICAL Network	frostwire	frostwire	FrostWire version <= frostwire-desktop-6.7.4-build-272 contains a XML External Entity (XXE) vulnerability in Man in the middle on update that can result in Disclosure of confidential data, denial of …	CWE-611 XXE	CVE-2018-1000828	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254268	9.8	CRITICAL Network	ubilling	ubilling	Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000827	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254269	6.1	MEDIUM Network	microweber	microweber	Microweber version <= 1.0.7 contains a Cross Site Scripting (XSS) vulnerability in Admin login form template that can result in Execution of JavaScript code.	CWE-79 Cross-site Scripting	CVE-2018-1000826	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254270	10.0	CRITICAL Network	freecol	freecol	FreeCol version <= nightly-2018-08-22 contains a XML External Entity (XXE) vulnerability in FreeColXMLReader parser that can result in Disclosure of confidential data, denial of service, SSRF, port s…	CWE-611 XXE	CVE-2018-1000825	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm