Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252511 10 危険 Google - Google Chrome の canvas 処理における脆弱性 CWE-noinfo
情報不足 		CVE-2010-2900 2010-11-24 14:32 2010-07-26 Show GitHub Exploit DB Packet Storm
252512 5 警告 Google - Google Chrome の layout 実装における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-2899 2010-11-24 14:32 2010-07-26 Show GitHub Exploit DB Packet Storm
252513 10 危険 Google - Google Chrome における脆弱性 CWE-noinfo
情報不足 		CVE-2010-2898 2010-11-24 14:31 2010-07-26 Show GitHub Exploit DB Packet Storm
252514 10 危険 Google - Google Chrome における脆弱性 CWE-noinfo
情報不足 		CVE-2010-2897 2010-11-24 14:31 2010-07-26 Show GitHub Exploit DB Packet Storm
252515 9.3 危険 Google - Google Chrome の Cascading Style Sheets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2651 2010-11-24 14:31 2010-07-2 Show GitHub Exploit DB Packet Storm
252516 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-2652 2010-11-24 14:30 2010-07-2 Show GitHub Exploit DB Packet Storm
252517 7.5 危険 Google - Google Chrome におけるフォームの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-1500 2010-11-24 14:29 2010-04-20 Show GitHub Exploit DB Packet Storm
252518 9.3 危険 アップル
アドビシステムズ		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3976 2010-11-24 14:28 2010-11-4 Show GitHub Exploit DB Packet Storm
252519 4.3 警告 Google - HTC Hero 上で稼働する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1731 2010-11-24 14:19 2010-05-6 Show GitHub Exploit DB Packet Storm
252520 10 危険 IBM - IBM AIX の ftpd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3187 2010-11-22 15:19 2010-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2261 6.5 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bozdoz Leaflet Map leaflet-map allows Stored XSS.This issue affects Leaflet Map: from n/a through… CWE-79
Cross-site Scripting 		CVE-2026-39646 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2262 5.4 MEDIUM
Network 		- - Server-Side Request Forgery (SSRF) vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Server Side Request Forgery.This issue affects MP3 A… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-39647 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2263 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in themebeez Cream Blog cream-blog allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cream Blog: from n/a through <= 2.1.7. CWE-862
 Missing Authorization 		CVE-2026-39648 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2264 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in themebeez Royale News royale-news allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Royale News: from n/a through <= 2.… CWE-862
 Missing Authorization 		CVE-2026-39649 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2265 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Unitech Web UnitechPay unitechpay-paiements-mobile-money allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UnitechPay: … CWE-862
 Missing Authorization 		CVE-2026-39650 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2266 6.3 MEDIUM
Network 		- - Missing Authorization vulnerability in TotalSuite Total Poll Lite totalpoll-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Total Poll Lite: from n/a t… CWE-862
 Missing Authorization 		CVE-2026-39651 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2267 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in igms iGMS Direct Booking igms-direct-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iGMS Direct Booking: fro… CWE-862
 Missing Authorization 		CVE-2026-39652 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2268 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Deepen Bajracharya Video Conferencing with Zoom video-conferencing-with-zoom-api allows Exploiting Incorrectly Configured Access Control Security Levels.This is… CWE-862
 Missing Authorization 		CVE-2026-39653 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2269 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-html-sitemap allows DOM-Based XSS.This issue affect… CWE-79
Cross-site Scripting 		CVE-2026-39654 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
2270 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening becau… CWE-476
 NULL Pointer Dereference 		CVE-2026-23349 2026-04-25 03:06 2026-03-25 Show GitHub Exploit DB Packet Storm