Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258481 9.3 危険 アドビシステムズ
Google		 - Google Chrome における Adobe Acrobat の JavaScript の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1598 2010-10-19 14:56 2009-05-11 Show GitHub Exploit DB Packet Storm
258482 6.8 警告 Google - Google Chrome で使用される Skia における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1442 2010-10-19 14:56 2009-05-5 Show GitHub Exploit DB Packet Storm
258483 9.3 危険 Google - Google Chrome の ParamTraits::Read 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1441 2010-10-19 14:56 2009-05-5 Show GitHub Exploit DB Packet Storm
258484 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1514 2010-10-19 14:55 2009-04-20 Show GitHub Exploit DB Packet Storm
258485 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングを誘導される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1414 2010-10-19 14:55 2009-04-24 Show GitHub Exploit DB Packet Storm
258486 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングを誘導される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1413 2010-10-19 14:55 2009-04-24 Show GitHub Exploit DB Packet Storm
258487 7.8 危険 Google - Google Chrome における IsWebSafeScheme 制限を満たしていない URL をタブで開かれる脆弱性 CWE-200
情報漏えい 		CVE-2009-1412 2010-10-19 14:54 2009-04-24 Show GitHub Exploit DB Packet Storm
258488 5 警告 Google - Google Chrome の V8 JavaScript エンジンにおける同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0276 2010-10-19 14:54 2009-01-28 Show GitHub Exploit DB Packet Storm
258489 5 警告 Google - Google Chrome における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0411 2010-10-19 14:54 2009-01-28 Show GitHub Exploit DB Packet Storm
258490 2.1 注意 Google - Google Chrome の JavaScript 実装における偽装したポップアップメッセージに従って行動させられる脆弱性 CWE-Other
その他 		CVE-2008-5915 2010-10-19 14:54 2009-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197371 7.5 HIGH
Network 		av-data_project av-data An issue was discovered in the av-data crate before 0.3.0 for Rust. A raw pointer is dereferenced, leading to a read of an arbitrary memory address, sometimes causing a segfault. CWE-476
 NULL Pointer Dereference 		CVE-2021-25904 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197372 7.5 HIGH
Network 		cache_project cache An issue was discovered in the cache crate through 2021-01-01 for Rust. A raw pointer is dereferenced. CWE-476
 NULL Pointer Dereference 		CVE-2021-25903 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197373 7.5 HIGH
Network 		glsl-layout_project glsl-layout An issue was discovered in the glsl-layout crate before 0.4.0 for Rust. When a panic occurs, map_array can perform a double drop. NVD-CWE-noinfo
CVE-2021-25902 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197374 5.3 MEDIUM
Network 		lazy-init_project lazy-init An issue was discovered in the lazy-init crate through 2021-01-17 for Rust. Lazy lacks a Send bound, leading to a data race. NVD-CWE-noinfo
CWE-125
Out-of-bounds Read 		CVE-2021-25901 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197375 9.8 CRITICAL
Network 		servo smallvec An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insert_many. CWE-787
 Out-of-bounds Write 		CVE-2021-25900 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197376 7.5 HIGH
Network 		dgtl huemagic node-red-contrib-huemagic 3.0.0 is affected by hue/assets/..%2F Directory Traversal.in the res.sendFile API, used in file hue-magic.js, to fetch an arbitrary file. CWE-22
Path Traversal 		CVE-2021-25864 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197377 8.8 HIGH
Adjacent 		open5gs open5gs Open5GS 2.1.3 listens on 0.0.0.0:3000 and has a default password of 1423 for the admin account. CWE-287
Improper Authentication 		CVE-2021-25863 2024-11-21 14:55 2021-01-27 Show GitHub Exploit DB Packet Storm
197378 7.5 HIGH
Network 		themeum qubely The Qubely WordPress plugin before 1.8.6 allows unauthenticated user to send arbitrary e-mails to arbitrary addresses via the qubely_send_form_data AJAX action. NVD-CWE-Other
CVE-2021-24916 2024-11-21 14:54 2023-08-8 Show GitHub Exploit DB Packet Storm
197379 4.8 MEDIUM
Network 		lesterchan wp-postratings The WP-PostRatings WordPress plugin before 1.86.1 does not sanitise the postratings_image parameter from its options page (wp-admin/admin.php?page=wp-postratings/postratings-options.php). Even though… CWE-352
 Origin Validation Error 		CVE-2021-25117 2024-11-21 14:54 2024-01-17 Show GitHub Exploit DB Packet Storm
197380 7.2 HIGH
Network 		menu_item_visibility_control_project menu_item_visibility_control The Menu Item Visibility Control WordPress plugin through 0.5 doesn't sanitize and validate the "Visibility logic" option for WordPress menu items, which could allow highly privileged users to execut… NVD-CWE-Other
CVE-2021-24942 2024-11-21 14:54 2022-12-26 Show GitHub Exploit DB Packet Storm