Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
711	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11045	2026-06-9 14:21	2026-06-4	Show	GitHub Exploit DB Packet Storm

712	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11047	2026-06-9 14:21	2026-06-4	Show	GitHub Exploit DB Packet Storm

713	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-11048	2026-06-9 14:21	2026-06-4	Show	GitHub Exploit DB Packet Storm

714	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-11051	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

715	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-11052	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

716	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11056	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

717	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-11057	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

718	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるサーバ側のセキュリティのクライアント側での実施に関する脆弱性	CWE-602 サーバ側のセキュリティのクライアント側での実施	CVE-2026-11062	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

719	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11063	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

720	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-11064	2026-06-9 14:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255741	8.1	HIGH Network	libgd	libgd	In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gd_tiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since t…	CWE-125 Out-of-bounds Read	CVE-2017-6363	2024-11-21 12:29	2020-02-27	Show	GitHub Exploit DB Packet Storm

255742	6.1	MEDIUM Network	paypal	adaptive_payments_sdk	paypal/adaptivepayments-sdk-php v3.9.2 is vulnerable to a reflected XSS in the SetPaymentOptions.php resulting code execution	CWE-79 Cross-site Scripting	CVE-2017-6217	2024-11-21 12:29	2019-07-11	Show	GitHub Exploit DB Packet Storm

255743	6.1	MEDIUM Network	novaksolutions	infusionsoft-php-sdk	novaksolutions/infusionsoft-php-sdk v2016-10-31 is vulnerable to a reflected XSS in the leadscoring.php resulting code execution	CWE-79 Cross-site Scripting	CVE-2017-6216	2024-11-21 12:29	2019-07-4	Show	GitHub Exploit DB Packet Storm

255744	7.8	HIGH Local	nvidia	vibrante_linux	NVIDIA Vibrante Linux version 1.1, 2.0, and 2.2 contains a vulnerability in the user space driver in which protection mechanisms are insufficient, may lead to denial of service or information disclos…	CWE-20 Improper Input Validation	CVE-2017-6261	2024-11-21 12:29	2019-06-5	Show	GitHub Exploit DB Packet Storm

255745	5.3	MEDIUM Network	wordpress	wordpress	WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information (Path Disclosure) via a /wp-json/oembed/1.0/embed?url= request, related to the "auth…	CWE-200 Information Exposure	CVE-2017-6514	2024-11-21 12:29	2019-05-23	Show	GitHub Exploit DB Packet Storm

255746	5.4	MEDIUM Network	paypal	php_permissions_sdk	paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verification_code parameter, resulting in code execution.	CWE-79 Cross-site Scripting	CVE-2017-6215	2024-11-21 12:29	2018-08-3	Show	GitHub Exploit DB Packet Storm

255747	5.4	MEDIUM Network	paypal	php_invoice_sdk	paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution.	CWE-79 Cross-site Scripting	CVE-2017-6213	2024-11-21 12:29	2018-08-3	Show	GitHub Exploit DB Packet Storm

255748	7.8	HIGH Local	google	android	In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kern…	CWE-787 Out-of-bounds Write	CVE-2017-6294	2024-11-21 12:29	2018-06-8	Show	GitHub Exploit DB Packet Storm

255749	7.8	HIGH Local	google	android	In Android before the 2018-06-05 security patch level, NVIDIA TLZ TrustZone contains a possible out of bounds write due to integer overflow which could lead to local escalation of privilege in the Tr…	CWE-787 Out-of-bounds Write	CVE-2017-6292	2024-11-21 12:29	2018-06-8	Show	GitHub Exploit DB Packet Storm

255750	7.8	HIGH Local	google	android	In Android before the 2018-06-05 security patch level, NVIDIA TLK TrustZone contains a possible out of bounds write due to an integer overflow which could lead to local escalation of privilege with n…	CWE-190 Integer Overflow or Wraparound	CVE-2017-6290	2024-11-21 12:29	2018-06-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed