Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4381	7.3	重要 Network	NextChat	NextChat	NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7177	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

4382	7.3	重要 Network	NextChat	NextChat	NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-7178	2026-05-7 12:28	2026-04-27	Show	GitHub Exploit DB Packet Storm

4383	7.3	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性	CWE-119 CWE-787	CVE-2026-7323	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4384	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7333	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4385	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7334	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4386	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7335	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4387	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7336	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4388	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-7337	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4389	7.5	重要 Adjacent	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7338	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

4390	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-7339	2026-05-7 12:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350521	-	pj_cgi_neo_review	pj_cgi_neo_review	Directory traversal vulnerability in PJreview_Neo.cgi in PJ CGI Neo review allows remote attackers to read arbitrary files via a .. (dot dot) in the p parameter.	NVD-CWE-Other	CVE-2004-2132	2017-07-11 10:31	2004-01-29	Show	GitHub Exploit DB Packet Storm

350522	-	cvsup	cvsup	Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by ca…	NVD-CWE-Other	CVE-2004-2133	2017-07-11 10:31	2004-01-29	Show	GitHub Exploit DB Packet Storm

350523	-	microsoft	outlook_express	Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks the BCC recipients of the message to the addresses listed in the To and CC fiel…	NVD-CWE-Other	CVE-2004-2137	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350524	-	jorg_schilling	sdd	Unknown vulnerability in the remote tape support (remote.c) in the RMT client for Jorg Schilling sdd 1.28 and 1.31 has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2004-2142	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350525	-	mambo	mambo_portal	SQL injection vulnerability in the ReMOSitory Server add-on module to Mambo Portal 4.5.1 (1.09) and earlier allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in th…	NVD-CWE-Other	CVE-2004-2143	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350526	-	pd9_software	megabbs	SQL injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows remote attackers to execute arbitrary SQL commands via the (1) sortdir or (2) criteria parameter to ladder-log.asp or the (3) memb…	NVD-CWE-Other	CVE-2004-2145	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350527	-	pd9_software	megabbs	CRLF injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows attackers to conduct HTTP response splitting attacks via the fid parameter in a writenew action to thread-post.asp.	NVD-CWE-Other	CVE-2004-2146	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350528	-	slava_astashonok	fprobe	Unknown local vulnerability in the "change user" feature of Slava Astashonok Fprobe 1.0.5 and earlier has unknown impact and attack vectors.	NVD-CWE-Other	CVE-2004-2148	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350529	-	virtual_projects	chatman	Chatman 1.1.1 RC1 and earlier allows remote attackers to cause a denial of service (memory consumption or application crash) via a very large data size.	NVD-CWE-Other	CVE-2004-2151	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

350530	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML.	NVD-CWE-Other	CVE-2004-2152	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm