Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4751	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7918	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4752	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7919	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4753	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7920	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4754	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7921	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4755	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7922	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4756	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-7923	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4757	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-7924	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4758	7.8	重要 Local	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7925	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4759	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7926	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

4760	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-7927	2026-05-8 12:18	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314461	-	-	-	An authenticated data.all user is able to manipulate a getDataset query to fetch additional information regarding the parent Environment resource that the user otherwise would not able to fetch by di…	-	CVE-2024-52313	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314462	-	-	-	Due to inconsistent authorization permissions, data.all may allow an external actor with an authenticated account to perform restricted operations against DataSets and Environments.	-	CVE-2024-52312	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314463	-	-	-	Authentication tokens issued via Cognito in data.all are not invalidated on log out, allowing for previously authenticated user to continue execution of authorized API Requests until token is expired.	-	CVE-2024-52311	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314464	-	-	-	An authenticated data.all user is able to perform mutating UPDATE operations on persisted Notification records in data.all for group notifications that their user is not a member of.	-	CVE-2024-10953	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314465	-	-	-	Atlantis is a self-hosted golang application that listens for Terraform pull request events via webhooks. Atlantis logs contains GitHub credentials (tokens `ghs_...`) when they are rotated. This enab…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-52009	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314466	-	-	-	HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. XSLT parsing performed by various components are vulnerable to XML external entity injections.…	CWE-611 XXE	CVE-2024-52007	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314467	-	-	-	MediaCMS is an open source video and media CMS, written in Python/Django and React, featuring a REST API. MediaCMS has been prone to vulnerabilities that upon special cases can lead to remote code ex…	CWE-74 Injection	CVE-2024-52004	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314468	-	-	-	Combodo iTop is a simple, web based IT Service Management tool. Several url endpoints are subject to a Cross-Site Request Forgery (CSRF) vulnerability. Please refer to the linked GHSA for the complet…	CWE-352 Origin Validation Error	CVE-2024-52002	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314469	-	-	-	Combodo iTop is a simple, web based IT Service Management tool. In affected versions portal users are able to access forbidden services information. This issue has been addressed in version 3.2.0. Al…	CWE-200 Information Exposure	CVE-2024-52001	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

314470	-	-	-	Combodo iTop is a simple, web based IT Service Management tool. Affected versions are subject to a reflected Cross-site Scripting (XSS) exploit by way of editing a request's payload which can lead to…	-	CVE-2024-52000	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm