Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232801	4.3	警告	stphp	-	STphp EasyNews におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3330	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

232802	6.8	警告	xvid	-	Xvid の src/bitstream/mbcoding.c における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2007-3329	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

232803	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player のプラグインにおけるフォーマットストリングの脆弱性	-	CVE-2007-3316	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

232804	6.8	警告	yourfreescreamer	-	YourFreeScreamer における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3315	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

232805	7.5	危険	XOOPS	-	Xoops 用の Articles モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3311	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

232806	4.3	警告	tdizin	-	TDizin の arama.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3310	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

232807	7.5	危険	Simple Machines	-	SMF におけるメッセージの作成時に任意の PHP コードを実行され脆弱性	-	CVE-2007-3309	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

232808	7.5	危険	Simple Machines	-	SMF における CAPTCHA テストを通過される脆弱性	-	CVE-2007-3308	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

232809	7.5	危険	solar empire	-	Solar Empire の game_listing.php における SQL インジェクションの脆弱性	-	CVE-2007-3307	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

232810	7.5	危険	ultrize	-	MiniBill の crontab/run_billing.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3306	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1131	5.4	MEDIUM Network	google	chrome	Script injection in Accessibility in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML (UXSS) via a cr… Update	CWE-94 Code Injection	CVE-2026-11157	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1132	7.8	HIGH Local	google	chrome	Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security… Update	CWE-269 Improper Privilege Management	CVE-2026-11103	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1133	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory v… Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11104	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1134	8.6	HIGH Local	google	chrome	Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript comma… Update	CWE-20 Improper Input Validation	CVE-2026-11158	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1135	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted … Update	CWE-20 Improper Input Validation	CVE-2026-11105	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1136	6.5	MEDIUM Network	google	chrome	Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-352 Origin Validation Error	CVE-2026-11106	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1137	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Downloads in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11107	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

1138	8.8	HIGH Network	google	chrome	Inappropriate implementation in NFC in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: … Update	CWE-269 Improper Privilege Management	CVE-2026-11108	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm

1139	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11109	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm

1140	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11110	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm