Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257401 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4042 2011-01-26 13:28 2010-10-19 Show GitHub Exploit DB Packet Storm
257402 6.8 警告 Google - Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4041 2011-01-26 13:26 2010-10-19 Show GitHub Exploit DB Packet Storm
257403 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-4040 2011-01-26 13:23 2010-10-19 Show GitHub Exploit DB Packet Storm
257404 7.5 危険 Google - Linux 上で稼働する Google Chrome における脆弱性 CWE-DesignError
CWE-noinfo
CVE-2010-4039 2011-01-26 13:17 2010-10-19 Show GitHub Exploit DB Packet Storm
257405 4.3 警告 Google - Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4038 2011-01-26 13:12 2010-10-19 Show GitHub Exploit DB Packet Storm
257406 4.3 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4037 2011-01-26 13:10 2010-10-19 Show GitHub Exploit DB Packet Storm
257407 6.8 警告 Google - Google Chrome における URL をなりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4036 2011-01-26 13:08 2010-10-19 Show GitHub Exploit DB Packet Storm
257408 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4035 2011-01-26 13:06 2010-10-19 Show GitHub Exploit DB Packet Storm
257409 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4034 2011-01-26 13:04 2010-10-19 Show GitHub Exploit DB Packet Storm
257410 5 警告 Google - Google Chrome におけるプロファイルスパム攻撃を誘導される脆弱性 CWE-Other
その他 		CVE-2010-4033 2011-01-26 13:01 2010-10-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195611 9.8 CRITICAL
Network 		appspace appspace Appspace 6.2.4 allows SSRF via the api/v1/core/proxy/jsonprequest url parameter. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-27670 2024-11-21 14:58 2021-02-25 Show GitHub Exploit DB Packet Storm
195612 2.5 LOW
Local 		gnu
fedoraproject
debian 		glibc
fedora
debian_linux 		The nameserver caching daemon (nscd) in the GNU C Library (aka glibc or libc6) 2.29 through 2.33, when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting … CWE-415
 Double Free 		CVE-2021-27645 2024-11-21 14:58 2021-02-25 Show GitHub Exploit DB Packet Storm
195613 5.3 MEDIUM
Network 		rangerstudio directus In Directus 8.x through 8.8.1, an attacker can discover whether a user is present in the database through the password reset feature. NOTE: This vulnerability only affects products that are no longer… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-27583 2024-11-21 14:58 2021-02-24 Show GitHub Exploit DB Packet Storm
195614 9.1 CRITICAL
Network 		mitreid connect org/mitre/oauth2/web/OAuthConfirmationController.java in the OpenID Connect server implementation for MITREid Connect through 1.3.3 contains a Mass Assignment (aka Autobinding) vulnerability. This ar… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2021-27582 2024-11-21 14:58 2021-02-24 Show GitHub Exploit DB Packet Storm
195615 7.8 HIGH
Local 		snowsoftware snow_inventory_agent Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exist… NVD-CWE-noinfo
CVE-2021-27579 2024-11-21 14:58 2021-02-24 Show GitHub Exploit DB Packet Storm
195616 5.5 MEDIUM
Local 		polarisoffice polaris_office Polaris Office v9.102.66 is affected by a divide-by-zero error in PolarisOffice.exe and EngineDLL.dll that may cause a local denial of service. To exploit the vulnerability, someone must open a craft… CWE-369
 Divide By Zero 		CVE-2021-27550 2024-11-21 14:58 2021-02-24 Show GitHub Exploit DB Packet Storm
195617 5.9 MEDIUM
Network 		json-smart_project
oracle 		json-smart-v1
json-smart-v2
weblogic_server
utilities_framework
peoplesoft_enterprise_peopletools
communications_cloud_native_core_policy
oss_support_tools 		An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatExcepti… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-27568 2024-11-21 14:58 2021-02-23 Show GitHub Exploit DB Packet Storm
195618 5.4 MEDIUM
Network 		appspace appspace A stored XSS issue exists in Appspace 6.2.4. After a user is authenticated and enters an XSS payload under the groups section of the network tab, it is stored as the group name. Whenever another memb… CWE-79
Cross-site Scripting 		CVE-2021-27564 2024-11-21 14:58 2021-02-23 Show GitHub Exploit DB Packet Storm
195619 5.3 MEDIUM
Network 		genymobile genymotion_desktop Genymotion Desktop through 3.2.0 leaks the host's clipboard data to the Android application by default. NOTE: the vendor's position is that this is intended behavior that can be changed through the S… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27549 2024-11-21 14:58 2021-02-23 Show GitHub Exploit DB Packet Storm
195620 5.4 MEDIUM
Network 		monicahq monica The Contact page in Monica 2.19.1 allows stored XSS via the Nickname field. CWE-79
Cross-site Scripting 		CVE-2021-27559 2024-11-21 14:58 2021-02-23 Show GitHub Exploit DB Packet Storm