Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
6531 6.7 警告
Local
デル data domain operating system
PowerProtect DP Series Appliance
デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2026-35074 2026-05-11 11:10 2026-04-17 Show GitHub Exploit DB Packet Storm
6532 6.7 警告
Local
デル data domain operating system
PowerProtect DP Series Appliance
デルのdata domain operating system等の複数製品における引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更
CVE-2026-35153 2026-05-11 11:10 2026-04-17 Show GitHub Exploit DB Packet Storm
6533 8.8 重要
Network
Project Jupyter Jupyter Server Project JupyterのJupyter Serverにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2026-35397 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
6534 9.6 緊急
Network
マイクロソフト Azure Cloud Shell Azure Cloud Shell Spoofing Vulnerability CWE-77
コマンドインジェクション
CVE-2026-35428 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
6535 10 緊急
Network
マイクロソフト Azure AI Foundry Azure AI Foundry の特権昇格の脆弱性 CWE-284
不適切なアクセス制御
CVE-2026-35435 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
6536 9.8 緊急
Network
coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける認証に関する脆弱性 CWE-287
不適切な認証
CVE-2026-35579 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
6537 9.8 緊急
Network
Kestra Kestra KestraにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2026-38428 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
6538 7.2 重要
Network
Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ
CVE-2026-39383 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
6539 8.8 重要
Network
Apache Software Foundation Apache NiFi Apache Software FoundationのApache NiFiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如
CVE-2026-39816 2026-05-11 11:10 2026-05-8 Show GitHub Exploit DB Packet Storm
6540 8.2 重要
Network
Quarkus Quarkus Quarkusにおける不正な認証に関する脆弱性 CWE-863
不正な認証
CVE-2026-39852 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349981 - google chrome Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors i… CWE-399
 Resource Management Errors
CVE-2010-0655 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349982 - google chrome Per: http://cwe.mitre.org/data/definitions/416.html 'Use After Free CWE-416' CWE-399
 Resource Management Errors
CVE-2010-0655 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349983 - apple
google
webkit
chrome
WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XMLHttpRequest for a file:/// URL that corresponds to a directory, which allows a… CWE-200
Information Exposure
CVE-2010-0656 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349984 - google chrome Google Chrome before 4.0.249.78 on Windows does not perform the expected encoding, escaping, and quoting for the URL in the --app argument in a desktop shortcut, which allows user-assisted remote att… NVD-CWE-Other
CVE-2010-0657 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349985 - google chrome Per: http://cwe.mitre.org/data/slices/2000.html 'Improper Encoding or Escaping of Output CWE-116' NVD-CWE-Other
CVE-2010-0657 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349986 - google chrome Multiple integer overflows in Skia, as used in Google Chrome before 4.0.249.78, allow remote attackers to execute arbitrary code in the Chrome sandbox or cause a denial of service (memory corruption … CWE-189
Numeric Errors
CVE-2010-0658 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349987 - apple
google
webkit
chrome
The image decoder in WebKit before r52833, as used in Google Chrome before 4.0.249.78, does not properly handle a failure of memory allocation, which allows remote attackers to execute arbitrary code… CWE-399
 Resource Management Errors
CVE-2010-0659 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349988 - google chrome Google Chrome before 4.0.249.78 sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection, which allows remote HTTP servers to obtain po… CWE-200
Information Exposure
CVE-2010-0660 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349989 - apple
google
webkit
chrome
WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving th… CWE-264
Permissions, Privileges, and Access Controls
CVE-2010-0661 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349990 - google chrome The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, … CWE-189
Numeric Errors
CVE-2010-0662 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm