Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255381 4.3 警告 Google - Google Chrome の WebKit 内にある page/EventHandler.cpp におけるキーストロークをリダイレクトされる脆弱性 CWE-Other
その他 		CVE-2010-2295 2010-11-24 14:35 2010-06-8 Show GitHub Exploit DB Packet Storm
255382 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2120 2010-11-24 14:35 2010-06-1 Show GitHub Exploit DB Packet Storm
255383 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-noinfo
CVE-2010-1237 2010-11-24 14:34 2010-03-17 Show GitHub Exploit DB Packet Storm
255384 10 危険 Google - WebKit の protocolIs 関数におけるクロスサイトスクリプティングの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1236 2010-11-24 14:34 2010-03-17 Show GitHub Exploit DB Packet Storm
255385 4.3 警告 Google - Google Chrome におけるダウンロードの警告ダイアログを削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1235 2010-11-24 14:34 2010-03-17 Show GitHub Exploit DB Packet Storm
255386 7.5 危険 Google - Google Chrome における HTTP BASIC 認証ダイアログ内で表示される URL を切断される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1234 2010-11-24 14:34 2010-03-17 Show GitHub Exploit DB Packet Storm
255387 10 危険 Google - Google Chrome における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1233 2010-11-24 14:33 2010-03-17 Show GitHub Exploit DB Packet Storm
255388 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1232 2010-11-24 14:33 2010-03-17 Show GitHub Exploit DB Packet Storm
255389 10 危険 Google - Google Chrome における脆弱性 CWE-noinfo
情報不足 		CVE-2010-2903 2010-11-24 14:33 2010-07-26 Show GitHub Exploit DB Packet Storm
255390 10 危険 Google - Google Chrome の SVG 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2902 2010-11-24 14:32 2010-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225321 9.8 CRITICAL
Network 		tuzicms tuzicms App\Home\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has SQL injection via the index.php/Zhuanti/group?id= substring. CWE-89
SQL Injection 		CVE-2019-16644 2024-11-21 13:30 2019-09-21 Show GitHub Exploit DB Packet Storm
225322 5.4 MEDIUM
Network 		zrlog zrlog An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the article_edit area. CWE-79
Cross-site Scripting 		CVE-2019-16643 2024-11-21 13:30 2019-09-21 Show GitHub Exploit DB Packet Storm
225323 6.1 MEDIUM
Network 		draytek vigor2925_firmware On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product. CWE-79
Cross-site Scripting 		CVE-2019-16534 2024-11-21 13:30 2019-09-21 Show GitHub Exploit DB Packet Storm
225324 6.1 MEDIUM
Network 		draytek vigor2925_firmware On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access Control exists in loginset.htm, and can be used to trigger XSS. NOTE: this is an end-of-life product. CWE-79
Cross-site Scripting 		CVE-2019-16533 2024-11-21 13:30 2019-09-21 Show GitHub Exploit DB Packet Storm
225325 9.8 CRITICAL
Network 		yejiao tuzicms App\Mobile\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has SQL injection via the index.php/Mobile/Zhuanti/group?id= substring. CWE-89
SQL Injection 		CVE-2019-16642 2024-11-21 13:30 2019-09-21 Show GitHub Exploit DB Packet Storm
225326 8.8 HIGH
Network 		layerbb layerbb LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php. CWE-352
 Origin Validation Error 		CVE-2019-16531 2024-11-21 13:30 2019-09-20 Show GitHub Exploit DB Packet Storm
225327 6.1 MEDIUM
Network 		checklist checklist An XSS issue was discovered in the checklist plugin before 1.1.9 for WordPress. The fill parameter is not correctly filtered in the checklist-icon.php file, and it is possible to inject JavaScript co… CWE-79
Cross-site Scripting 		CVE-2019-16525 2024-11-21 13:30 2019-09-20 Show GitHub Exploit DB Packet Storm
225328 5.5 MEDIUM
Local 		firegiant wix_toolset An issue was discovered in DTF in FireGiant WiX Toolset before 3.11.2. Microsoft.Deployment.Compression.Cab.dll and Microsoft.Deployment.Compression.Zip.dll allow directory traversal during CAB or ZI… CWE-22
Path Traversal 		CVE-2019-16511 2024-11-21 13:30 2019-09-20 Show GitHub Exploit DB Packet Storm
225329 7.5 HIGH
Network 		mz-automation libiec61850 libIEC61850 through 1.3.3 has a use-after-free in MmsServer_waitReady in mms/iso_mms/server/mms_server.c, as demonstrated by server_example_goose. CWE-416
 Use After Free 		CVE-2019-16510 2024-11-21 13:30 2019-09-20 Show GitHub Exploit DB Packet Storm
225330 7.5 HIGH
Network 		tendacn n301_firmware In goform/setSysTools on Tenda N301 wireless routers, attackers can trigger a device crash via a zero wanMTU value. (Prohibition of this zero value is only enforced within the GUI.) CWE-20
 Improper Input Validation  		CVE-2019-16412 2024-11-21 13:30 2019-09-20 Show GitHub Exploit DB Packet Storm