Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1301	5.4	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-8539	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1302	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-8541	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1303	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-8542	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1304	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-8543	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1305	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-8544	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1306	3.1	低 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性	CWE-119 CWE-284	CVE-2026-8545	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1307	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-8546	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1308	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-8547	2026-05-21 10:49	2026-05-14	Show	GitHub Exploit DB Packet Storm

1309	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-8548	2026-05-21 10:48	2026-05-14	Show	GitHub Exploit DB Packet Storm

1310	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-8549	2026-05-21 10:48	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311161	-		-	-	Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amf_as_establish_req function at /tasks/amf/amf_as.cpp. This vulnerability allows attackers to cause …	-	CVE-2024-24425	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

311162	-		-	-	An issue in Snipe-IT v.7.0.13 build 15514 allows a low-privileged attacker to modify their profile name and inject a malicious payload into the "Name" field. When an administrator later accesses the …	-	CVE-2024-51094	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311163	-		-	-	The End-User Portal module before 1.0.65 for FreeScout sometimes allows an attacker to authenticate as an arbitrary user because a session token can be sent to the /auth endpoint. NOTE: this module i…	-	CVE-2023-52268	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311164	-		-	-	Sublime Text 4 was discovered to contain a command injection vulnerability via the New Build System module.	-	CVE-2024-25255	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

311165	-		-	-	Driver Booster v10.6 was discovered to contain a buffer overflow via the Host parameter under the Customize proxy module.	-	CVE-2024-25253	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

311166	9.8	CRITICAL Network	schneider-electric	ecostruxure_it_gateway	CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.	CWE-862 Missing Authorization	CVE-2024-10575	2024-11-20 02:28	2024-11-13	Show	GitHub Exploit DB Packet Storm

311167	-		-	-	Statmatic is a Laravel and Git powered content management system (CMS). Prior to version 5.17.0, assets uploaded with appropriately crafted filenames may result in them being placed in a location dif…	CWE-22 Path Traversal	CVE-2024-52600	2024-11-20 02:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

311168	4.3	MEDIUM Network	janeczku	calibre-web	A vulnerability in janeczku/calibre-web allows unauthorized users to view the names of private shelves belonging to other users. This issue occurs in the file shelf.py at line 221, where the name of …	CWE-209 Information Exposure Through an Error Message	CVE-2021-3986	2024-11-20 02:12	2024-11-15	Show	GitHub Exploit DB Packet Storm

311169	9.8	CRITICAL Network	dompdf_project	dompdf	An improper restriction of external entities (XXE) vulnerability in dompdf/dompdf's SVG parser allows for Server-Side Request Forgery (SSRF) and deserialization attacks. This issue affects all versio…	CWE-611 XXE	CVE-2021-3902	2024-11-20 02:12	2024-11-15	Show	GitHub Exploit DB Packet Storm

311170	5.4	MEDIUM Network	sylius	sylius	sylius/sylius versions prior to 1.9.10, 1.10.11, and 1.11.2 are vulnerable to stored cross-site scripting (XSS) through SVG files. This vulnerability allows attackers to inject malicious scripts that…	CWE-79 Cross-site Scripting	CVE-2021-3841	2024-11-20 02:11	2024-11-15	Show	GitHub Exploit DB Packet Storm