Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3231	7.5	重要 Network	Python Software Foundation	urllib3	Python Software Foundationのurllib3における高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-44432	2026-05-18 12:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

3232	5.7	警告 Adjacent	Frappe	ERPNext	FrappeのERPNextにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-44440	2026-05-18 12:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

3233	4.3	警告 Network	Frappe	ERPNext	FrappeのERPNextにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44441	2026-05-18 12:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

3234	9.9	緊急 Network	Frappe	ERPNext	FrappeのERPNextにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-44442	2026-05-18 12:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

3235	6.5	警告 Network	Frappe	ERPNext	FrappeのERPNextにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-44445	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

3236	7.5	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44446	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

3237	7.5	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44447	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

3238	5.4	警告 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-44576	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

3239	8.6	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44578	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

3240	7.5	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-44579	2026-05-18 12:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2541	8.8	HIGH Network	-	-	Use after free in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: H…	CWE-416 Use After Free	CVE-2026-10914	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2542	8.3	HIGH Network	-	-	Use after free in Core in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML pag…	CWE-416 Use After Free	CVE-2026-10915	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2543	8.8	HIGH Network	-	-	Script injection in Headless in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)	CWE-94 Code Injection	CVE-2026-10928	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2544	8.3	HIGH Network	-	-	Heap buffer overflow in ANGLE in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a craft…	CWE-122 Heap-based Buffer Overflow	CVE-2026-10929	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2545	-		-	-	Out of bounds read in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)	CWE-125 Out-of-bounds Read	CVE-2026-10930	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2546	-		-	-	Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-10931	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2547	8.8	HIGH Network	-	-	Use after free in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-10932	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2548	8.3	HIGH Network	-	-	Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…	CWE-416 Use After Free	CVE-2026-10933	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2549	8.3	HIGH Network	-	-	Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted …	CWE-416 Use After Free	CVE-2026-10934	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2550	-		-	-	Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)	-	CVE-2026-10937	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm