Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249931 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4491 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249932 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4490 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249933 4.3 警告 Google - Google Chrome およびその他の製品で使用されている libvpx におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4489 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249934 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2010-4488 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249935 7.5 危険 アップル
Google
Linux		 - Google Chrome における不完全なブラックリストに関連した脆弱性\ CWE-Other
その他 		CVE-2010-4487 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249936 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4486 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249937 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4485 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249938 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4484 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249939 4.3 警告 Google - Google Chrome における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4483 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
249940 5 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4482 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2441 - - - Prior to 2025-11-03, well-intended users of Terraform or REST API for Google Cloud AlloyDB for PostgreSQL could have created clusters with an insecure default password which could have been exploited… CWE-1392
 Use of Default Credentials 		CVE-2026-7428 2026-05-13 00:09 2026-05-12 Show GitHub Exploit DB Packet Storm
2442 8.1 HIGH
Network 		- - HireFlow v1.2 does not implement CSRF token validation on any state-changing POST endpoint. All forms (password change at /profile, candidate deletion at /candidates/delete/<id>, feedback submission … CWE-352
 Origin Validation Error 		CVE-2026-38566 2026-05-13 00:06 2026-05-12 Show GitHub Exploit DB Packet Storm
2443 9.8 CRITICAL
Network 		- - HireFlow v1.2 is vulnerable to SQL injection in the /login and /search endpoints. User-supplied input is concatenated directly into SQL queries without parameterization. An unauthenticated attacker c… CWE-89
SQL Injection 		CVE-2026-38567 2026-05-13 00:06 2026-05-12 Show GitHub Exploit DB Packet Storm
2444 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_firmware.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in… CWE-79
Cross-site Scripting 		CVE-2025-61305 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2445 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_coveragealerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascr… CWE-79
Cross-site Scripting 		CVE-2025-61306 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2446 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the acc-menu_papers.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in t… CWE-79
Cross-site Scripting 		CVE-2025-61307 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2447 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_maintenance.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript… CWE-79
Cross-site Scripting 		CVE-2025-61308 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2448 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_departments.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript… CWE-79
Cross-site Scripting 		CVE-2025-61309 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2449 6.1 MEDIUM
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the acc-menu_billings.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in… CWE-79
Cross-site Scripting 		CVE-2025-61310 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm
2450 7.3 HIGH
Network 		- - A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_alerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in t… CWE-79
Cross-site Scripting 		CVE-2025-61311 2026-05-13 00:05 2026-05-12 Show GitHub Exploit DB Packet Storm