Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252021	6.8	警告	Google	-	Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4041	2011-01-26 13:26	2010-10-19	Show	GitHub Exploit DB Packet Storm

252022	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-4040	2011-01-26 13:23	2010-10-19	Show	GitHub Exploit DB Packet Storm

252023	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-DesignError CWE-noinfo	CVE-2010-4039	2011-01-26 13:17	2010-10-19	Show	GitHub Exploit DB Packet Storm

252024	4.3	警告	Google	-	Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4038	2011-01-26 13:12	2010-10-19	Show	GitHub Exploit DB Packet Storm

252025	4.3	警告	Google	-	Google Chrome におけるポップアップブロッカーを回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-4037	2011-01-26 13:10	2010-10-19	Show	GitHub Exploit DB Packet Storm

252026	6.8	警告	Google	-	Google Chrome における URL をなりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2010-4036	2011-01-26 13:08	2010-10-19	Show	GitHub Exploit DB Packet Storm

252027	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4035	2011-01-26 13:06	2010-10-19	Show	GitHub Exploit DB Packet Storm

252028	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4034	2011-01-26 13:04	2010-10-19	Show	GitHub Exploit DB Packet Storm

252029	5	警告	Google	-	Google Chrome におけるプロファイルスパム攻撃を誘導される脆弱性	CWE-Other その他	CVE-2010-4033	2011-01-26 13:01	2010-10-19	Show	GitHub Exploit DB Packet Storm

252030	9.3	危険	Google	-	WebKit の WebCore 内にある toAlphabetic 関数における一つずれ (off-by-one) エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-1773	2011-01-26 12:59	2010-06-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299831	9.8	CRITICAL Network	status	statusnet	Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..	CWE-20 Improper Input Validation	CVE-2010-4660	2024-11-21 10:21	2019-11-21	Show	GitHub Exploit DB Packet Storm

299832	5.5	MEDIUM Local	pithos_project debian	pithos debian_linux	pithos before 0.3.5 allows overwrite of arbitrary files via symlinks.	CWE-59 Link Following	CVE-2010-4817	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299833	8.8	HIGH Network	consolekit_project debian redhat	consolekit debian_linux enterprise_linux	In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows an authenticated system user to escalate their privileges by initiating a remote VNC session.	CWE-269 Improper Privilege Management	CVE-2010-4664	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299834	7.8	HIGH Local	udisks_project redhat debian opensuse fedoraproject	udisks enterprise_linux debian_linux opensuse fedora	udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2010-4661	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299835	7.5	HIGH Network	php redhat debian	php enterprise_linux debian_linux	PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. This results in memory leak into the resulting output.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2010-4657	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299836	7.8	HIGH Local	freedesktop debian	poppler debian_linux	poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.	CWE-74 Injection	CVE-2010-4654	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299837	6.5	MEDIUM Network	freedesktop debian	poppler debian_linux	An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.	CWE-190 Integer Overflow or Wraparound	CVE-2010-4653	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299838	9.8	CRITICAL Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies.	CWE-295 Improper Certificate Validation	CVE-2010-4533	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299839	5.9	MEDIUM Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks.	CWE-295 Improper Certificate Validation	CVE-2010-4532	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299840	-		ghostscript	ghostscript	Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working direc…	CWE-94 Code Injection	CVE-2010-4820	2024-11-21 10:21	2014-10-27	Show	GitHub Exploit DB Packet Storm