Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258871	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の imgContainer::InternalAddFrameHelper 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0164	2010-04-6 16:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

258872	4.3	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0171	2010-04-5 14:54	2010-03-23	Show	GitHub Exploit DB Packet Storm

258873	4.3	警告	Mozilla Foundation	-	Mozilla Firefox における同一生成元ポリシーを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0170	2010-04-5 14:53	2010-03-23	Show	GitHub Exploit DB Packet Storm

258874	7.5	危険	Heartlogic	-	HL-SiteManager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1331	2010-04-2 15:02	2010-04-2	Show	GitHub Exploit DB Packet Storm

258875	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の Web Open Fonts Format デコーダにおける整数オーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-1028	2010-04-2 14:05	2010-03-19	Show	GitHub Exploit DB Packet Storm

258876	5	警告	富士通アクセラテクノロジ	-	Accela BizSearch のローカル収集におけるアクセス権限に関する脆弱性	CWE-200 情報漏えい	-	2010-04-2 14:05	2010-03-10	Show	GitHub Exploit DB Packet Storm

258877	1.9	注意	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel における SCSI ホストの属性に任意の変更を加えられる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3556	2010-04-2 14:02	2010-01-19	Show	GitHub Exploit DB Packet Storm

258878	10	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000e ドライバにおけるイーサネットフレームの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2009-4538	2010-04-2 14:02	2010-01-12	Show	GitHub Exploit DB Packet Storm

258879	6.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の poll_mode_io ファイルにおけるドライバの I/O モードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3939	2010-04-2 14:00	2009-11-16	Show	GitHub Exploit DB Packet Storm

258880	6.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel におけるドライバの動作およびログレベルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3889	2010-04-2 14:00	2009-11-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1441	-		-	-	In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dm_suspended_md The function dm_blk_report_zones tests if the device is suspended with the "dm_suspende…	-	CVE-2026-46327	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1442	-		-	-	In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spi_transfer struct initialisation Make sure that the spi_transfer struct is zeroed out before us…	-	CVE-2026-46326	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1443	-		-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE The current implementation incorrectly handles memory regions …	-	CVE-2026-46325	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1444	6.1	MEDIUM Network	-	-	Multiple reflected Cross-Site Scripting (XSS) vulnerabilities in damasac thaipalliative_lte through version 3.0 allow remote attackers to inject arbitrary web script or HTML via the idFormMain parame…	CWE-79 Cross-site Scripting	CVE-2026-38579	2026-06-9 23:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

1445	-		-	-	A vulnerability in the quarantine and restore workflow of the X-VPN macOS website versions 77.0 through 77.5 allow a local attacker to leverage a race condition and symlink manipulation to achieve pr…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-2638	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1446	8.3	HIGH Network	-	-	Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-11640	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1447	8.8	HIGH Network	-	-	Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation of user input for git shell commands directly invoked with exe…	CWE-78 CWE-77 OS Command Command Injection	CVE-2026-11572	2026-06-9 23:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1448	6.5	MEDIUM Network	google	chrome	Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)	CWE-693 Protection Mechanism Failure	CVE-2026-11288	2026-06-9 22:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

1449	6.5	MEDIUM Network	google	chrome	Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)	CWE-1300 CWE-203 Improper Protection of Physical Side Channels Information Exposure Through Discrepancy	CVE-2026-11289	2026-06-9 22:58	2026-06-5	Show	GitHub Exploit DB Packet Storm

1450	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda AC1206 v15.03.06.23 was discovered to contain multiple stack overflows in the fromGstDhcpSetSer function via the username and password parameters. These vulne…	CWE-121 Stack-based Buffer Overflow	CVE-2026-36789	2026-06-9 22:57	2026-06-9	Show	GitHub Exploit DB Packet Storm