Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255881	4.3	警告	Google	-	Google Chrome におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1504	2010-11-24 14:57	2010-04-20	Show	GitHub Exploit DB Packet Storm

255882	4.3	警告	Google	-	Google Chrome におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1503	2010-11-24 14:57	2010-04-20	Show	GitHub Exploit DB Packet Storm

255883	9.3	危険	Google	-	Google Chrome におけるローカルファイルにアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2010-1502	2010-11-24 14:56	2010-04-20	Show	GitHub Exploit DB Packet Storm

255884	9.3	危険	Google	-	Google Chrome のドラッグ＆ドロップ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2109	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

255885	10	危険	Google	-	Google Chrome における whitelist-mode プラグインブロッカーを回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-2108	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

255886	10	危険	Google	-	Google Chrome の Safe Browsing 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2107	2010-11-24 14:41	2010-05-25	Show	GitHub Exploit DB Packet Storm

255887	10	危険	Google	-	Google Chrome における URL バーを偽造される脆弱性	CWE-noinfo 情報不足	CVE-2010-2106	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

255888	10	危険	Google	-	Google Chrome の URL 正規化における脆弱性	CWE-DesignError	CVE-2010-2105	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

255889	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1992	2010-11-24 14:40	2009-02-3	Show	GitHub Exploit DB Packet Storm

255890	4.3	警告	Google	-	Google Chrome における特定の人物を識別される脆弱性	CWE-200 情報漏えい	CVE-2010-1851	2010-11-24 14:39	2010-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208451	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php.	CWE-79 Cross-site Scripting	CVE-2020-25089	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208452	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/blog/blogpublish.php.	CWE-79 Cross-site Scripting	CVE-2020-25088	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208453	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/languages.php.	CWE-79 Cross-site Scripting	CVE-2020-25087	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208454	6.1	MEDIUM Network	ecommerce-codeigniter-bootstrap_project	ecommerce-codeigniter-bootstrap	Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/adminUsers.php.	CWE-79 Cross-site Scripting	CVE-2020-25086	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208455	8.8	HIGH Network	dlink	dcs-2530l_firmware dcs-2670l_firmware	An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.	CWE-77 Command Injection	CVE-2020-25079	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208456	7.5	HIGH Network	dlink	dcs-2530l_firmware dcs-2670l_firmware	An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.	NVD-CWE-noinfo	CVE-2020-25078	2024-11-21 14:17	2020-09-3	Show	GitHub Exploit DB Packet Storm

208457	5.3	MEDIUM Network	debian	freedombox	FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service (or from PageK…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-25073	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208458	8.8	HIGH Network	usvn	usvn	USVN (aka User-friendly SVN) before 1.0.10 allows CSRF, related to the lack of the SameSite Strict feature.	CWE-352 Origin Validation Error	CVE-2020-25070	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208459	9.8	CRITICAL Network	usvn	usvn	USVN (aka User-friendly SVN) before 1.0.10 allows attackers to execute arbitrary code in the commit view.	NVD-CWE-noinfo	CVE-2020-25069	2024-11-21 14:17	2020-09-2	Show	GitHub Exploit DB Packet Storm

208460	8.8	HIGH Adjacent	netgear	r8300_firmware	NETGEAR R8300 devices before 1.0.2.134 are affected by command injection by an unauthenticated attacker.	CWE-77 Command Injection	CVE-2020-25067	2024-11-21 14:17	2020-09-1	Show	GitHub Exploit DB Packet Storm