Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252481	9.3	危険	Google	-	Google Chrome のドラッグ＆ドロップ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2109	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

252482	10	危険	Google	-	Google Chrome における whitelist-mode プラグインブロッカーを回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-2108	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

252483	10	危険	Google	-	Google Chrome の Safe Browsing 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2107	2010-11-24 14:41	2010-05-25	Show	GitHub Exploit DB Packet Storm

252484	10	危険	Google	-	Google Chrome における URL バーを偽造される脆弱性	CWE-noinfo 情報不足	CVE-2010-2106	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

252485	10	危険	Google	-	Google Chrome の URL 正規化における脆弱性	CWE-DesignError	CVE-2010-2105	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

252486	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1992	2010-11-24 14:40	2009-02-3	Show	GitHub Exploit DB Packet Storm

252487	4.3	警告	Google	-	Google Chrome における特定の人物を識別される脆弱性	CWE-200 情報漏えい	CVE-2010-1851	2010-11-24 14:39	2010-05-7	Show	GitHub Exploit DB Packet Storm

252488	9.3	危険	Google	-	Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2010-2650	2010-11-24 14:39	2010-07-2	Show	GitHub Exploit DB Packet Storm

252489	9.3	危険	Google	-	Google Chrome の Bidi algorithm の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-310 暗号の問題	CVE-2010-2648	2010-11-24 14:39	2010-07-2	Show	GitHub Exploit DB Packet Storm

252490	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-2647	2010-11-24 14:38	2010-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196981	6.5	MEDIUM Network	elide	elide	In Elide before 4.5.14, it is possible for an adversary to "guess and check" the value of a model field they do not have access to assuming they can read at least one other field in the model. The ad…	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-5289	2024-11-21 14:33	2020-03-31	Show	GitHub Exploit DB Packet Storm

196982	4.3	MEDIUM Network	zeit	next.js	Next.js versions before 9.3.2 have a directory traversal vulnerability. Attackers could craft special requests to access files in the dist directory (.next). This does not affect files outside of the…	CWE-22 Path Traversal	CVE-2020-5284	2024-11-21 14:33	2020-03-31	Show	GitHub Exploit DB Packet Storm

196983	8.1	HIGH Network	sensiolabs	symfony	In symfony/security-http before versions 4.4.7 and 5.0.7, when a `Firewall` checks access control rule, it iterate overs each rule's attributes and stops as soon as the accessDecisionManager decides …	CWE-863 Incorrect Authorization	CVE-2020-5275	2024-11-21 14:33	2020-03-31	Show	GitHub Exploit DB Packet Storm

196984	5.4	MEDIUM Network	sensiolabs	symfony	In Symfony before versions 5.0.5 and 4.4.5, some properties of the Exception were not properly escaped when the `ErrorHandler` rendered it stacktrace. In addition, the stacktrace were displayed even …	CWE-209 Information Exposure Through an Error Message	CVE-2020-5274	2024-11-21 14:33	2020-03-31	Show	GitHub Exploit DB Packet Storm

196985	4.3	MEDIUM Network	sensiolabs	symfony	In Symfony before versions 4.4.7 and 5.0.7, when a `Response` does not contain a `Content-Type` header, affected versions of Symfony can fallback to the format defined in the `Accept` header of the r…	CWE-20 Improper Input Validation	CVE-2020-5255	2024-11-21 14:33	2020-03-31	Show	GitHub Exploit DB Packet Storm

196986	7.5	HIGH Network	sonicwall	sma1000_firmware	A vulnerability in the SonicWall SMA1000 HTTP Extraweb server allows an unauthenticated remote attacker to cause HTTP server crash which leads to Denial of Service. This vulnerability affected SMA100…	CWE-444 HTTP Request Smuggling	CVE-2020-5129	2024-11-21 14:33	2020-03-26	Show	GitHub Exploit DB Packet Storm

196987	4.8	MEDIUM Network	emc	rsa_authentication_manager	RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console. A malicious RSA Authentication Manager Security Console administrator…	CWE-79 Cross-site Scripting	CVE-2020-5340	2024-11-21 14:33	2020-03-26	Show	GitHub Exploit DB Packet Storm

196988	4.8	MEDIUM Network	emc	rsa_authentication_manager	RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console. A malicious RSA Authentication Manager Security Console administrator…	CWE-79 Cross-site Scripting	CVE-2020-5339	2024-11-21 14:33	2020-03-26	Show	GitHub Exploit DB Packet Storm

196989	9.8	CRITICAL Network	nick_chan_bot_project	nick_chan_bot	In Nick Chan Bot before version 1.0.0-beta there is a vulnerability in the `npm` command which is part of this software package. This allows arbitrary shell execution,which can compromise the bot Thi…	CWE-78 OS Command	CVE-2020-5282	2024-11-21 14:33	2020-03-26	Show	GitHub Exploit DB Packet Storm

196990	5.4	MEDIUM Network	prestashop	faceted_search_module	PrestaShop module ps_facetedsearch versions before 3.5.0 has a reflected XSS with `url_name` parameter. The problem is fixed in 3.5.0	CWE-79 Cross-site Scripting	CVE-2020-5277	2024-11-21 14:33	2020-03-26	Show	GitHub Exploit DB Packet Storm