Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
911	7.3	重要 Local	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11115	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

912	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11116	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

913	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11119	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

914	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-11129	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

915	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11131	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

916	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-11132	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

917	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-11133	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

918	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-11134	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

919	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-11135	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

920	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-11137	2026-06-9 14:18	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255251	6.5	MEDIUM Network	tigervnc	tigervnc	In TigerVNC 1.7.1 (SMsgReader.cxx SMsgReader::readClientCutText), by causing an integer overflow, an authenticated client can crash the server.	CWE-190 Integer Overflow or Wraparound	CVE-2017-7395	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255252	7.5	HIGH Network	tigervnc	tigervnc	In TigerVNC 1.7.1 (SSecurityPlain.cxx SSecurityPlain::processMsg), unauthenticated users can crash the server by sending long usernames.	CWE-20 Improper Input Validation	CVE-2017-7394	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255253	8.8	HIGH Network	tigervnc	tigervnc	In TigerVNC 1.7.1 (VNCSConnectionST.cxx VNCSConnectionST::fence), an authenticated client can cause a double free, leading to denial of service or potentially code execution.	CWE-415 Double Free	CVE-2017-7393	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255254	7.5	HIGH Network	tigervnc	tigervnc	In TigerVNC 1.7.1 (SSecurityVeNCrypt.cxx SSecurityVeNCrypt::SSecurityVeNCrypt), an unauthenticated client can cause a small memory leak in the server.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-7392	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255255	6.1	MEDIUM Network	magmi_project	magmi	A Cross-Site Scripting (XSS) was discovered in 'Magmi 0.7.22'. The vulnerability exists due to insufficient filtration of user-supplied data (prefix) passed to the 'magmi-git-master/magmi/web/ajax_ge…	CWE-79 Cross-site Scripting	CVE-2017-7391	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255256	6.1	MEDIUM Network	socialnetwork_project	socialnetwork	A Cross-Site Scripting (XSS) was discovered in 'SocialNetwork v1.2.1'. The vulnerability exists due to insufficient filtration of user-supplied data (mail) passed to the 'SocialNetwork-andrea/app/tem…	CWE-79 Cross-site Scripting	CVE-2017-7390	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255257	6.1	MEDIUM Network	openeclass	openeclass	Multiple Cross-Site Scripting (XSS) were discovered in 'openeclass Release_3.5.4'. The vulnerabilities exist due to insufficient filtration of user-supplied data (meeting_id, user) passed to the 'ope…	CWE-79 Cross-site Scripting	CVE-2017-7389	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255258	6.1	MEDIUM Network	wallaceit	wallacepos	A Cross-Site Scripting (XSS) was discovered in 'wallacepos v1.4.1'. The vulnerability exists due to insufficient filtration of user-supplied data (token) passed to the 'wallacepos-master/myaccount/re…	CWE-79 Cross-site Scripting	CVE-2017-7388	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255259	6.1	MEDIUM Network	helpmewatchwho_project	helpmewatchwho	TheFirstQuestion/HelpMeWatchWho before 2017-03-28 is vulnerable to a reflected XSS in HelpMeWatchWho-master/unaired.php (episodeID parameter).	CWE-79 Cross-site Scripting	CVE-2017-7387	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

255260	6.1	MEDIUM Network	symetrie_project	symetrie	citymont/symetrie v.0.9.6 is vulnerable to a reflected XSS in symetrie-master/app/commands/page.php (model parameter).	CWE-79 Cross-site Scripting	CVE-2017-7386	2024-11-21 12:31	2017-04-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed