Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2661 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-10992 2026-06-8 12:38 2026-06-4 Show GitHub Exploit DB Packet Storm
2662 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-10993 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2663 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性 CWE-457
初期化されていない変数の使用 		CVE-2026-10994 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2664 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-10995 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2665 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-10996 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2666 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-10997 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2667 4 警告
Local 		Google Google Chrome GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-10998 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2668 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-10999 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2669 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-11000 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
2670 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-11001 2026-06-8 12:37 2026-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310881 9.8 CRITICAL
Network 		apache_authenhook_project apache_authenhook libapache-authenhook-perl 2.00-04 stores usernames and passwords in plaintext in the vhost error log. CWE-200
Information Exposure 		CVE-2010-3845 2024-11-21 10:19 2017-08-9 Show GitHub Exploit DB Packet Storm
310882 - ffmpeg
mplayerhq 		ffmpeg
mplayer 		FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a mal… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3908 2024-11-21 10:19 2011-05-21 Show GitHub Exploit DB Packet Storm
310883 - microsoft windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server 		fxscover.exe in the Fax Cover Page Editor in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold an… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3974 2024-11-21 10:19 2011-04-14 Show GitHub Exploit DB Packet Storm
310884 - microsoft .net_framework The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 does not properly compile function calls, which allows remote attackers to execute arbitrary code via (1) a crafted X… CWE-20
 Improper Input Validation  		CVE-2010-3958 2024-11-21 10:19 2011-04-14 Show GitHub Exploit DB Packet Storm
310885 - horde groupware
dynamic_imp 		Cross-site scripting (XSS) vulnerability in Horde Dynamic IMP (DIMP) before 1.1.5, and Horde Groupware Webmail Edition before 1.2.7, allows remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting 		CVE-2010-3693 2024-11-21 10:19 2011-04-4 Show GitHub Exploit DB Packet Storm
310886 - horde imp
groupware 		Cross-site scripting (XSS) vulnerability in fetchmailprefs.php in Horde IMP before 4.3.8, and Horde Groupware Webmail Edition before 1.2.7, allows remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2010-3695 2024-11-21 10:19 2011-04-1 Show GitHub Exploit DB Packet Storm
310887 - openslp
vmware 		openslp
esxi
esx 		The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.… NVD-CWE-noinfo
CVE-2010-3609 2024-11-21 10:19 2011-03-12 Show GitHub Exploit DB Packet Storm
310888 - apache tomcat Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when running within a SecurityManager, does not make the ServletContext attribute read-only, which allows local web applications to read or write … NVD-CWE-Other
CVE-2010-3718 2024-11-21 10:19 2011-02-11 Show GitHub Exploit DB Packet Storm
310889 - modxcms evolution Directory traversal vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to read arbitrary files via unspecified vectors related to AjaxSearch, a different vulnerability than CVE… CWE-22
Path Traversal 		CVE-2010-3930 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm
310890 - modxcms evolution SQL injection vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via unknown vectors related to AjaxSearch. CWE-89
SQL Injection 		CVE-2010-3929 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm