Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 10:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227161 | 2.1 | 注意 | OpenStack | - | python-keystoneclient の user-password-update コマンドにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-2013 | 2013-10-4 19:48 | 2013-05-24 | Show | GitHub Exploit DB Packet Storm |
| 227162 | 4.3 | 警告 | サムスン | - | 複数の Samsung SHR 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-3964 | 2013-10-4 19:24 | 2013-06-12 | Show | GitHub Exploit DB Packet Storm |
| 227163 | 6.8 | 警告 | Grandstream Networks | - | 複数の Grandstream 製品の goform/usermanage におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3963 | 2013-10-4 19:20 | 2013-06-12 | Show | GitHub Exploit DB Packet Storm |
| 227164 | 4.3 | 警告 | Grandstream Networks | - | 複数の Grandstream 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-3962 | 2013-10-4 19:19 | 2013-08-20 | Show | GitHub Exploit DB Packet Storm |
| 227165 | 6.8 | 警告 | Brickcom | - | 複数の Brickcom 製品におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3690 | 2013-10-4 19:16 | 2013-06-12 | Show | GitHub Exploit DB Packet Storm |
| 227166 | 6.8 | 警告 | ソニービジネスソリューション OvisLink |
- | 複数の SONY ネットワークカメラ製品におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3539 | 2013-10-4 18:57 | 2013-06-12 | Show | GitHub Exploit DB Packet Storm |
| 227167 | 5 | 警告 | アルバネットワークス株式会社 | - | Aruba Networks ClearPass および Amigopod/ClearPass Guest におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2269 | 2013-10-4 18:39 | 2013-05-8 | Show | GitHub Exploit DB Packet Storm |
| 227168 | 4 | 警告 | MariaDB Corporation Ab. オラクル |
- | Oracle MySQL および MariaDB における総当たりパスワード推測攻撃を実行される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2012-5627 | 2013-10-4 18:30 | 2012-12-5 | Show | GitHub Exploit DB Packet Storm |
| 227169 | 2.1 | 注意 | Xen プロジェクト | - | Xen の fbld 命令のエミュレーションにおけるハイパーバイザのスタック情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-4361 | 2013-10-4 16:52 | 2013-09-30 | Show | GitHub Exploit DB Packet Storm |
| 227170 | 5.5 | 警告 | Xen プロジェクト | - | Xen の __addr_ok マクロにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2901 | 2013-10-4 16:39 | 2011-09-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 225471 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5781 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225472 | 7.8 |
HIGH
Local |
google redhat debian fedoraproject |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation debian_linux fedora |
Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior to 72.0.3626.81 allowed a local attacker to execute JavaScript via Apple Events. |
CWE-20
Improper Input Validation |
CVE-2019-5780 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225473 | 4.3 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Insufficient policy validation in ServiceWorker in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. |
CWE-862
Missing Authorization |
CVE-2019-5779 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225474 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
A missing case for handling special schemes in permission request checks in Extensions in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension… |
CWE-79
Cross-site Scripting |
CVE-2019-5778 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225475 | 6.5 |
MEDIUM
Network |
google redhat debian fedoraproject |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation debian_linux fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5777 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225476 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5776 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225477 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5775 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225478 | 8.8 |
HIGH
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file… |
CWE-862
Missing Authorization |
CVE-2019-5774 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225479 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Insufficient origin validation in IndexedDB in Google Chrome prior to 72.0.3626.81 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML p… |
CWE-346
Origin Validation Error |
CVE-2019-5773 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 225480 | 8.8 |
HIGH
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Sharing of objects over calls into JavaScript runtime in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2019-5772 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |