Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257701	7.8	危険	Google	-	Google Chrome の Google V8 bindings におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1506	2010-11-24 14:58	2010-04-20	Show	GitHub Exploit DB Packet Storm

257702	10	危険	Google	-	Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1505	2010-11-24 14:57	2010-04-20	Show	GitHub Exploit DB Packet Storm

257703	4.3	警告	Google	-	Google Chrome におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1504	2010-11-24 14:57	2010-04-20	Show	GitHub Exploit DB Packet Storm

257704	4.3	警告	Google	-	Google Chrome におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1503	2010-11-24 14:57	2010-04-20	Show	GitHub Exploit DB Packet Storm

257705	9.3	危険	Google	-	Google Chrome におけるローカルファイルにアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2010-1502	2010-11-24 14:56	2010-04-20	Show	GitHub Exploit DB Packet Storm

257706	9.3	危険	Google	-	Google Chrome のドラッグ＆ドロップ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2109	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

257707	10	危険	Google	-	Google Chrome における whitelist-mode プラグインブロッカーを回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-2108	2010-11-24 14:56	2010-05-25	Show	GitHub Exploit DB Packet Storm

257708	10	危険	Google	-	Google Chrome の Safe Browsing 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2107	2010-11-24 14:41	2010-05-25	Show	GitHub Exploit DB Packet Storm

257709	10	危険	Google	-	Google Chrome における URL バーを偽造される脆弱性	CWE-noinfo 情報不足	CVE-2010-2106	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

257710	10	危険	Google	-	Google Chrome の URL 正規化における脆弱性	CWE-DesignError	CVE-2010-2105	2010-11-24 14:40	2010-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319771	-		-	-	An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via `aut…	CWE-285 Improper Authorization	CVE-2024-6840	2024-09-13 02:15	2024-09-13	Show	GitHub Exploit DB Packet Storm

319772	8.8	HIGH Network	phpgurukul	job_portal	File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of which could allow an authenticated user to execute an RCE via webshell.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-8463	2024-09-13 02:15	2024-09-5	Show	GitHub Exploit DB Packet Storm

319773	4.7	MEDIUM Physics	arm	trusted_firmware-m	An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.	NVD-CWE-Other	CVE-2023-51712	2024-09-13 02:11	2024-09-6	Show	GitHub Exploit DB Packet Storm

319774	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity tests to TCP_QUEUE_SEQ Qingyu Li reported a syzkaller bug where the repro changes RCV SEQ _after_ restoring data …	NVD-CWE-noinfo	CVE-2021-4442	2024-09-13 01:58	2024-08-29	Show	GitHub Exploit DB Packet Storm

319775	5.9	MEDIUM Network	identityautomation	rapididentity	RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive authentication attempts and allows a remote attacker to cause a denial of service via the username parame…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2024-45589	2024-09-13 01:54	2024-09-6	Show	GitHub Exploit DB Packet Storm

319776	6.1	MEDIUM Network	linuxos	shakal-ng	A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3.3. Affected is an unknown function of the file comments/views.py. The manipulation of the argument nex…	CWE-601 Open Redirect	CVE-2024-8412	2024-09-13 01:47	2024-09-5	Show	GitHub Exploit DB Packet Storm

319777	7.2	HIGH Network	funnelforms	funnelforms_free	The Funnelforms Free plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'af2_add_font' function in all versions up to, and including, 3.7.3.2. Thi…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-6311	2024-09-13 01:46	2024-08-28	Show	GitHub Exploit DB Packet Storm

319778	7.5	HIGH Network	eclipse	vert.x	In Eclipse Vert.x version 4.3.0 to 4.5.9, the gRPC server does not limit the maximum length of message payload (Maven GAV: io.vertx:vertx-grpc-server and io.vertx:vertx-grpc-client). This is fix…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-8391	2024-09-13 01:44	2024-09-5	Show	GitHub Exploit DB Packet Storm

319779	5.5	MEDIUM Local	dpgaspar	flask_app_builder	Flask-AppBuilder is an application development framework. Prior to version 4.5.1, the auth DB login form default cache directives allows browser to locally store sensitive data. This can be an issue …	NVD-CWE-Other	CVE-2024-45314	2024-09-13 01:39	2024-09-5	Show	GitHub Exploit DB Packet Storm

319780	5.4	MEDIUM Network	wpsocio	wp_telegram_widget_and_join_link	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Socio WP Telegram Widget and Join Link allows Stored XSS.This issue affects WP Telegram…	CWE-79 Cross-site Scripting	CVE-2024-43309	2024-09-13 01:39	2024-08-19	Show	GitHub Exploit DB Packet Storm