Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132641	5	警告 Network	openHAB	openHAB	openHAB における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2021-21266	2021-10-19 17:10	2021-01-28	Show	GitHub Exploit DB Packet Storm

132642	8.8	重要 Network	WWBN	AVideo	AVideo プラットフォームにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2021-21286	2021-10-19 17:07	2021-01-30	Show	GitHub Exploit DB Packet Storm

132643	5.3	警告 Network	JetBrains	YouTrack	JetBrains YouTrack における不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2020-25208	2021-10-19 17:06	2020-09-9	Show	GitHub Exploit DB Packet Storm

132644	6.5	警告 Network	SolarWinds	Serv-U	SolarWinds Serv-U におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2020-27994	2021-10-19 17:06	2020-12-21	Show	GitHub Exploit DB Packet Storm

132645	9.8	緊急 Network	Zoho Corporation	ManageEngine OpManager	Zoho ManageEngine OpManager における脆弱性	CWE-noinfo 情報不足	CVE-2020-28653	2021-10-19 17:06	2020-11-13	Show	GitHub Exploit DB Packet Storm

132646	9.8	緊急 Network	Moxa Inc.	EDR-810 シリーズファームウェア EDR-G902 シリーズファームウェア EDR-G903 シリーズファームウェア	複数の Moxa EDR 製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2020-28144	2021-10-19 17:06	2020-10-29	Show	GitHub Exploit DB Packet Storm

132647	7.8	重要 Local	Cloudflare, Inc.	WARP	Windows 用 Cloudflare WARP における引用されない検索パスまたは要素に関する脆弱性	CWE-428 引用されない検索パスまたは要素	CVE-2020-35152	2021-10-19 17:06	2020-12-11	Show	GitHub Exploit DB Packet Storm

132648	6.7	警告 Local	インテル	Intel Server Board M10JNP2SB ファームウェア	Intel Server Board M10JNP2SB における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2020-8734	2021-10-19 17:06	2020-08-11	Show	GitHub Exploit DB Packet Storm

132649	9.8	緊急 Network	Dotty project	Dotty	dotty における脆弱性	CWE-Other その他	CVE-2021-25912	2021-10-19 17:06	2021-01-26	Show	GitHub Exploit DB Packet Storm

132650	5.9	警告 Network	MIT Kerberos	krb5-appl	MIT krb5-appl における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2019-25017	2021-10-19 17:06	2019-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
21	9.8	CRITICAL Network	-	-	DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder characters to numbered binders of the for… Update	CWE-787 Out-of-bounds Write	CVE-2026-10879	2026-06-9 03:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

22	9.6	CRITICAL Network	google	chrome	Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbo… Update	CWE-20 Improper Input Validation	CVE-2026-11021	2026-06-9 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

23	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium se… Update	CWE-284 Improper Access Control	CVE-2026-11302	2026-06-9 03:12	2026-06-5	Show	GitHub Exploit DB Packet Storm

24	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) Update	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11300	2026-06-9 03:10	2026-06-5	Show	GitHub Exploit DB Packet Storm

25	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data v… Update	CWE-20 Improper Input Validation	CVE-2026-11007	2026-06-9 03:09	2026-06-5	Show	GitHub Exploit DB Packet Storm

26	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a… Update	CWE-20 Improper Input Validation	CVE-2026-11008	2026-06-9 03:09	2026-06-5	Show	GitHub Exploit DB Packet Storm

27	8.1	HIGH Network	google	chrome	Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted H… Update	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-11011	2026-06-9 03:09	2026-06-5	Show	GitHub Exploit DB Packet Storm

28	6.5	MEDIUM Network	google	chrome	Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass site isolation via a crafted … Update	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-11014	2026-06-9 03:08	2026-06-5	Show	GitHub Exploit DB Packet Storm

29	8.8	HIGH Network	google	chrome	Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via malicious network traffic. (Chromi… Update	CWE-125 Out-of-bounds Read	CVE-2026-11301	2026-06-9 03:08	2026-06-5	Show	GitHub Exploit DB Packet Storm

30	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a cra… Update	CWE-20 Improper Input Validation	CVE-2026-11016	2026-06-9 03:08	2026-06-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed