Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252851	9.3	危険	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1811	2010-11-26 16:53	2010-09-8	Show	GitHub Exploit DB Packet Storm

252852	6.8	警告	アップル	-	Apple iOS の CFNetwork におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1752	2010-11-26 16:48	2010-06-22	Show	GitHub Exploit DB Packet Storm

252853	6.8	警告	アップル	-	Apple Mac OS X の CoreText における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1837	2010-11-26 15:39	2010-11-15	Show	GitHub Exploit DB Packet Storm

252854	6.8	警告	アップル	-	Apple Mac OS X の CoreGraphics におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1836	2010-11-26 15:37	2010-11-15	Show	GitHub Exploit DB Packet Storm

252855	5.8	警告	アップル	-	Apple Mac OS X の CFNetwork におけるユーザを追跡可能な脆弱性	CWE-20 不適切な入力確認	CVE-2010-1834	2010-11-26 15:36	2010-11-15	Show	GitHub Exploit DB Packet Storm

252856	6.8	警告	アップル	-	Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1833	2010-11-26 15:34	2010-11-15	Show	GitHub Exploit DB Packet Storm

252857	6.8	警告	アップル	-	Apple Mac OS X の Apple Type Services におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1832	2010-11-26 15:32	2010-11-15	Show	GitHub Exploit DB Packet Storm

252858	4.3	警告	Google	-	Google Chrome における情報漏えいの脆弱性	CWE-200 情報漏えい	-	2010-11-26 11:02	2010-11-26	Show	GitHub Exploit DB Packet Storm

252859	6.8	警告	アップル	-	Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1831	2010-11-25 15:17	2010-11-15	Show	GitHub Exploit DB Packet Storm

252860	5	警告	アップル	-	Apple Mac OS X の AFP Server における共有名を列挙される脆弱性	CWE-DesignError	CVE-2010-1830	2010-11-25 15:17	2010-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266001	5.9	MEDIUM Network	socket	engine.io-client	engine.io-client is the client for engine.io, the implementation of a transport-based cross-browser/cross-device bi-directional communication layer for Socket.IO. The vulnerability is related to the …	CWE-295 Improper Certificate Validation	CVE-2016-10536	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266002	5.9	MEDIUM Network	csrf-lite_project	csrf-lite	csrf-lite is a cross-site request forgery protection library for framework-less node sites. csrf-lite uses `===`, a fail first string comparison, instead of a time constant string comparison This ena…	CWE-310 Cryptographic Issues	CVE-2016-10535	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266003	5.9	MEDIUM Network	electron-packager_project	electron-packager	electron-packager is a command line tool that packages Electron source code into `.app` and `.exe` packages. along with Electron. The `--strict-ssl` command line option in electron-packager >= 5.2.1 …	CWE-295 Improper Certificate Validation	CVE-2016-10534	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266004	6.1	MEDIUM Network	marked_project	marked	marked is an application that is meant to parse and compile markdown. Due to the way that marked 0.3.5 and earlier parses input, specifically HTML entities, it's possible to bypass marked's content i…	CWE-79 Cross-site Scripting	CVE-2016-10531	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266005	5.9	MEDIUM Network	airbrake	airbrake	The airbrake module 0.3.8 and earlier defaults to sending environment variables over HTTP. Environment variables can often times contain secret keys and other sensitive values. A malicious user could…	CWE-310 CWE-200 Cryptographic Issues Information Exposure	CVE-2016-10530	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266006	8.8	HIGH Network	droppy_project	droppy	Droppy versions <3.5.0 does not perform any verification for cross-domain websocket requests. An attacker is able to make a specially crafted page that can send requests as the context of the current…	CWE-352 Origin Validation Error	CVE-2016-10529	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266007	4.9	MEDIUM Network	restafary_project	restafary	restafary is a REpresentful State Transfer API for Creating, Reading, Using, Deleting files on a server from the web. Restafary before 1.6.1 is able to set up a root path, which should only allow it …	CWE-22 Path Traversal	CVE-2016-10528	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266008	8.8	HIGH Network	express-restify-mongoose_project	express-restify-mongoose	express-restify-mongoose is a module to easily create a flexible REST interface for mongoose models. express-restify-mongoose 2.4.2 and earlier and 3.0.X through 3.0.1 allows a malicious user to send…	CWE-200 Information Exposure	CVE-2016-10533	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266009	9.8	CRITICAL Network	console-io_project	console-io	console-io is a module that allows users to implement a web console in their application. A malicious user could bypass the authentication and execute any command that the user who is running the con…	CWE-287 Improper Authentication	CVE-2016-10532	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm

266010	7.5	HIGH Network	riot.js	riot-compiler	The riot-compiler version version 2.3.21 has an issue in a regex (Catastrophic Backtracking) thats make it unusable under certain conditions.	CWE-399 Resource Management Errors	CVE-2016-10527	2024-11-21 11:44	2018-06-1	Show	GitHub Exploit DB Packet Storm