Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256611	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1398	2010-07-14 16:33	2010-06-10	Show	GitHub Exploit DB Packet Storm

256612	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1397	2010-07-14 16:33	2010-06-10	Show	GitHub Exploit DB Packet Storm

256613	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1396	2010-07-14 16:32	2010-06-10	Show	GitHub Exploit DB Packet Storm

256614	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1395	2010-07-14 16:32	2010-06-10	Show	GitHub Exploit DB Packet Storm

256615	4.3	警告	アップル	-	Apple Safari の Cascading Style Sheet 実装における重要な URL の情報を見破られる脆弱性	CWE-200 情報漏えい	CVE-2010-1393	2010-07-14 16:31	2010-06-10	Show	GitHub Exploit DB Packet Storm

256616	5	警告	IBM	-	IBM WebSphere Application Server の HTTP Channel におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2328	2010-07-13 17:56	2010-03-2	Show	GitHub Exploit DB Packet Storm

256617	4.3	警告	IBM	-	IBM WebSphere Application Server における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2326	2010-07-13 17:55	2010-03-23	Show	GitHub Exploit DB Packet Storm

256618	10	危険	アップル	-	Apple iTunes の WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1769	2010-07-13 17:55	2010-06-18	Show	GitHub Exploit DB Packet Storm

256619	10	危険	アップル	-	Apple iTunes の WebKit における脆弱性	CWE-noinfo 情報不足	CVE-2010-1763	2010-07-13 17:54	2010-06-18	Show	GitHub Exploit DB Packet Storm

256620	5	警告	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1119	2010-07-13 16:39	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208201	4.3	MEDIUM Network	gitlab	gitlab	Information about the starred projects for private user profiles was exposed via the GraphQL API starting from 12.2 via the REST API. This affects GitLab >=12.2 to <13.4.7, >=13.5 to <13.5.5, and >=1…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2020-26415	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208202	5.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL results in user email being unexpectedly visible.	CWE-200 Information Exposure	CVE-2020-26413	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208203	4.3	MEDIUM Network	gitlab	gitlab	Removed group members were able to use the To-Do functionality to retrieve updated information on confidential epics starting in GitLab EE 13.2 before 13.6.2.	NVD-CWE-noinfo	CVE-2020-26412	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208204	5.3	MEDIUM Network	gitlab	gitlab	A limited information disclosure vulnerability exists in Gitlab CE/EE from >= 12.2 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6.2 that allows an attacker to view limited information in user's p…	CWE-862 Missing Authorization	CVE-2020-26408	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208205	6.5	MEDIUM Network	gitlab	gitlab	A DOS vulnerability exists in Gitlab CE/EE >=10.3, <13.4.7,>=13.5, <13.5.5,>=13.6, <13.6.2 that allows an attacker to trigger uncontrolled resource by bypassing input validation in markdown fields.	CWE-20 CWE-400 Improper Input Validation Uncontrolled Resource Consumption	CVE-2020-26409	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208206	3.3	LOW Local	google	tensorflow	In affected versions of TensorFlow running an LSTM/GRU model where the LSTM/GRU layer receives an input with zero-length results in a CHECK failure when using the CUDA backend. This can result in a q…	CWE-20 Improper Input Validation	CVE-2020-26270	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208207	7.5	HIGH Network	google	tensorflow	In TensorFlow release candidate versions 2.4.0rc*, the general implementation for matching filesystem paths to globbing pattern is vulnerable to an access out of bounds of the array holding the direc…	CWE-125 Out-of-bounds Read	CVE-2020-26269	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208208	7.8	HIGH Local	google	tensorflow	In affected versions of TensorFlow the tf.raw_ops.DataFormatVecPermute API does not validate the src_format and dst_format attributes. The code assumes that these two arguments define a permutation o…	CWE-125 Out-of-bounds Read	CVE-2020-26267	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208209	5.3	MEDIUM Local	google	tensorflow	In affected versions of TensorFlow under certain cases a saved model can trigger use of uninitialized values during code execution. This is caused by having tensor buffers be filled with the default …	CWE-908 Use of Uninitialized Resource	CVE-2020-26266	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm

208210	9.8	CRITICAL Network	askey	ap5100w_firmware	Askey AP5100W_Dual_SIG_1.01.097 and all prior versions use a weak password at the Operating System (rlx-linux) level. This allows an attacker to gain unauthorized access as an admin or root user to t…	CWE-521 Weak Password Requirements	CVE-2020-26201	2024-11-21 14:19	2020-12-11	Show	GitHub Exploit DB Packet Storm