Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252021	6.8	警告	Google	-	Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4041	2011-01-26 13:26	2010-10-19	Show	GitHub Exploit DB Packet Storm

252022	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-4040	2011-01-26 13:23	2010-10-19	Show	GitHub Exploit DB Packet Storm

252023	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-DesignError CWE-noinfo	CVE-2010-4039	2011-01-26 13:17	2010-10-19	Show	GitHub Exploit DB Packet Storm

252024	4.3	警告	Google	-	Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4038	2011-01-26 13:12	2010-10-19	Show	GitHub Exploit DB Packet Storm

252025	4.3	警告	Google	-	Google Chrome におけるポップアップブロッカーを回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-4037	2011-01-26 13:10	2010-10-19	Show	GitHub Exploit DB Packet Storm

252026	6.8	警告	Google	-	Google Chrome における URL をなりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2010-4036	2011-01-26 13:08	2010-10-19	Show	GitHub Exploit DB Packet Storm

252027	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4035	2011-01-26 13:06	2010-10-19	Show	GitHub Exploit DB Packet Storm

252028	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4034	2011-01-26 13:04	2010-10-19	Show	GitHub Exploit DB Packet Storm

252029	5	警告	Google	-	Google Chrome におけるプロファイルスパム攻撃を誘導される脆弱性	CWE-Other その他	CVE-2010-4033	2011-01-26 13:01	2010-10-19	Show	GitHub Exploit DB Packet Storm

252030	9.3	危険	Google	-	WebKit の WebCore 内にある toAlphabetic 関数における一つずれ (off-by-one) エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-1773	2011-01-26 12:59	2010-06-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267221	6.5	MEDIUM Network	imagemagick	imagemagick	The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2015-8902	2024-11-21 11:39	2017-02-28	Show	GitHub Exploit DB Packet Storm

267222	6.5	MEDIUM Network	imagemagick	imagemagick	ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2015-8901	2024-11-21 11:39	2017-02-28	Show	GitHub Exploit DB Packet Storm

267223	5.5	MEDIUM Local	imagemagick	imagemagick	The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2015-8900	2024-11-21 11:39	2017-02-28	Show	GitHub Exploit DB Packet Storm

267224	7.5	HIGH Network	debian dicom	debian_linux dcmtk	Stack-based buffer overflow in the parsePresentationContext function in storescp in DICOM dcmtk-3.6.0 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a long …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8979	2024-11-21 11:39	2017-02-16	Show	GitHub Exploit DB Packet Storm

267225	9.8	CRITICAL Network	gosa_project	gosa_plugin	The generate_smb_nt_hash function in include/functions.inc in GOsa allows remote attackers to execute arbitrary commands via a crafted password.	CWE-94 Code Injection	CVE-2015-8771	2024-11-21 11:39	2017-02-14	Show	GitHub Exploit DB Packet Storm

267226	9.8	CRITICAL Network	click_project canonical	click ubuntu_linux	click/install.py in click does not require files in package filesystem tarballs to start with ./ (dot slash), which allows remote attackers to install an alternate security policy and gain privileges…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8768	2024-11-21 11:39	2017-02-14	Show	GitHub Exploit DB Packet Storm

267227	6.5	MEDIUM Network	libdwarf_project	libdwarf	libdwarf 20151114 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a debug_abbrev section marked NOBITS in an ELF file.	CWE-476 NULL Pointer Dereference	CVE-2015-8750	2024-11-21 11:39	2017-02-14	Show	GitHub Exploit DB Packet Storm

267228	6.1	MEDIUM Network	squidguard	squidguard	Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link.	CWE-79 Cross-site Scripting	CVE-2015-8936	2024-11-21 11:39	2017-02-10	Show	GitHub Exploit DB Packet Storm

267229	8.8	HIGH Network	dotclear	dotclear	Multiple incomplete blacklist vulnerabilities in inc/core/class.dc.core.php in Dotclear before 2.8.2 allow remote authenticated users with "manage their own media items" and "manage their own entries…	CWE-284 Improper Access Control	CVE-2015-8832	2024-11-21 11:39	2017-02-10	Show	GitHub Exploit DB Packet Storm

267230	6.1	MEDIUM Network	dotclear	dotclear	Cross-site scripting (XSS) vulnerability in admin/comments.php in Dotclear before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via the author name in a comment.	CWE-79 Cross-site Scripting	CVE-2015-8831	2024-11-21 11:39	2017-02-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed