Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246631 6.9 警告 Csound - Csound の VST プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2008-5986 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
246632 6.9 警告 dia - Dia の Python プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2008-5984 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
246633 10 危険 BMC Software - BMC PATROL Agent におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-5982 2012-06-26 16:10 2009-01-27 Show GitHub Exploit DB Packet Storm
246634 7.5 危険 Activewebsoftwares - Active Price Comparison の links.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5975 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
246635 7.5 危険 Activewebsoftwares - Active Price Comparison の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5974 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
246636 7.5 危険 Activewebsoftwares - Active Web Mail の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5973 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
246637 7.5 危険 Activewebsoftwares - Active Business Directory の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5972 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
246638 7.5 危険 globsy - Globsy の globsy_edit.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5966 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
246639 10 危険 gravity-gtd - Gravity GTD の library/setup/rpc.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5963 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
246640 6.8 警告 gravity-gtd - Gravity GTD の library/setup/rpc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5962 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2051 7.8 HIGH
Local 		x.org
redhat 		x_server
xwayland
enterprise_linux 		A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow… CWE-121
Stack-based Buffer Overflow 		CVE-2026-50256 2026-06-9 01:45 2026-06-5 Show GitHub Exploit DB Packet Storm
2052 4.3 MEDIUM
Network 		google chrome Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) CWE-346
 Origin Validation Error 		CVE-2026-11309 2026-06-9 01:40 2026-06-5 Show GitHub Exploit DB Packet Storm
2053 6.5 MEDIUM
Network 		team net\ Net::Async::Statsd::Client versions through 0.005 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inj… CWE-93
CRLF Injection 		CVE-2026-8722 2026-06-9 01:39 2026-06-4 Show GitHub Exploit DB Packet Storm
2054 7.7 HIGH
Local 		google chrome Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via a malicious file. (Chromium… CWE-20
 Improper Input Validation  		CVE-2026-11297 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2055 7.5 HIGH
Network 		rrwo net\ Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses. If the addresses did not look like netmasks or network range… CWE-674
CWE-1287
 Uncontrolled Recursion
 Improper Validation of Specified Type of Input 		CVE-2026-49941 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2056 8.8 HIGH
Network 		google chrome Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severi… CWE-269
 Improper Privilege Management 		CVE-2026-11295 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2057 7.3 HIGH
Network 		rrwo net\ Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One (U+0661), or non-digits, wh… CWE-1289
 Improper Validation of Unsafe Equivalence in Input 		CVE-2026-49942 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2058 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security … CWE-346
 Origin Validation Error 		CVE-2026-11291 2026-06-9 01:37 2026-06-5 Show GitHub Exploit DB Packet Storm
2059 6.5 MEDIUM
Network 		rrwo net\ Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One (U+0661) were accepted but not properly parsed as numbers. This… CWE-1289
 Improper Validation of Unsafe Equivalence in Input 		CVE-2026-49940 2026-06-9 01:35 2026-06-5 Show GitHub Exploit DB Packet Storm
2060 7.5 HIGH
Network 		sanbeg etsy\ Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inj… CWE-93
CRLF Injection 		CVE-2026-46741 2026-06-9 01:33 2026-06-5 Show GitHub Exploit DB Packet Storm