Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1191	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-10897	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1192	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-10898	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1193	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10899	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1194	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10900	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1195	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10901	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1196	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10902	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1197	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10903	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1198	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性	CWE-119 CWE-20 CWE-94	CVE-2026-10904	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1199	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10905	2026-06-8 12:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

1200	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10906	2026-06-8 12:25	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310571	-	mollify	mollify	Cross-site scripting (XSS) vulnerability in backend/plugin/Registration/index.php in Mollify 1.6, 1.6.5.5, and possibly other versions allows remote attackers to inject arbitrary web script or HTML v…	CWE-79 Cross-site Scripting	CVE-2010-3462	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310572	-	endonesia	endonesia	SQL injection vulnerability in the Publisher module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the artid parameter in a printarticle action to mod.php, a different…	CWE-89 SQL Injection	CVE-2010-3461	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310573	-	gecad	axigen_mail_server	Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.	CWE-22 Path Traversal	CVE-2010-3460	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310574	-	gecad	axigen_mail_server	Cross-site scripting (XSS) vulnerability in the Ajax WebMail interface in AXIGEN Mail Server before 7.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-3459	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310575	-	getsymphony	symphony	SQL injection vulnerability in lib/toolkit/events/event.section.php in Symphony CMS 2.0.7 and 2.1.1 allows remote attackers to execute arbitrary SQL commands via the send-email[recipient] parameter t…	CWE-89 SQL Injection	CVE-2010-3458	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310576	-	getsymphony	symphony	Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.0.7 and 2.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) fields[website] parameter in the post com…	CWE-79 Cross-site Scripting	CVE-2010-3457	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310577	-	energyscripts	simple_download	Directory traversal vulnerability in download.php in EnergyScripts (ES) Simple Download 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.	CWE-22 Path Traversal	CVE-2010-3456	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310578	-	atutor	achecker	Cross-site scripting (XSS) vulnerability in index.php in AChecker 1.0 allows remote attackers to inject arbitrary web script or HTML via the uri parameter.	CWE-79 Cross-site Scripting	CVE-2010-3455	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310579	-	microsoft	sharepoint_services groove_server internet_explorer sharepoint_server sharepoint_foundation web_apps	The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, …	CWE-79 Cross-site Scripting	CVE-2010-3324	2024-11-21 10:18	2010-09-18	Show	GitHub Exploit DB Packet Storm

310580	-	intermesh	group-office	SQL injection vulnerability in modules/notes/json.php in Intermesh Group-Office 3.5.9 allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a category action.	CWE-89 SQL Injection	CVE-2010-3428	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm