Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3091 8.8 重要
Network 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45035 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
3092 7 重要
Local 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45036 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
3093 7.1 重要
Network 		Tabby Tabby Tabbyにおける複数の脆弱性 CWE-184
CWE-601
CVE-2026-45037 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
3094 7.8 重要
Local 		Tabby Tabby Tabbyにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性 CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-45038 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
3095 9.8 緊急
Network 		Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-45772 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
3096 6.5 警告
Network 		Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける複数の脆弱性 CWE-352
CWE-384
CVE-2026-45773 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
3097 7.8 重要
Local 		Zeit, Inc. The Turborepo Language Server Protocol (LSP) Vercel, Inc. (旧 Zeit, Inc.)のThe Turborepo Language Server Protocol (LSP)におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-46508 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
3098 9.1 緊急
Network 		FreeRTOS coreMQTT FreeRTOSのcoreMQTTにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-8686 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
3099 9.1 緊急
Network 		Aden OpenHive AdenのOpenHiveにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-8757 2026-05-21 10:54 2026-05-17 Show GitHub Exploit DB Packet Storm
3100 6.5 警告
Network 		Kilo Code Kilo Code Kilo Codeにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-8765 2026-05-21 10:54 2026-05-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311661 - google chrome The autosuggest feature in the Omnibox implementation in Google Chrome before 5.0.375.127 does not anticipate entry of passwords, which might allow remote attackers to obtain sensitive information by… CWE-200
Information Exposure 		CVE-2010-3118 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311662 - google chrome Google Chrome before 5.0.375.127 does not properly implement the notifications feature, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified ot… NVD-CWE-noinfo
CVE-2010-3117 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311663 - google
apple
webkitgtk
canonical 		chrome
iphone_os
safari
webkitgtk
ubuntu_linux 		Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to… CWE-416
 Use After Free 		CVE-2010-3116 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311664 - google
webkitgtk
canonical 		chrome
webkitgtk
ubuntu_linux 		Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not properly implement the history feature, which might allow remote attackers to spoof the address bar via unspecified vectors. NVD-CWE-noinfo
CVE-2010-3115 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311665 - google
webkitgtk
canonical 		chrome
webkitgtk
ubuntu_linux 		The text-editing implementation in Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not check a node type before performing a cast, which has unspecified impact and attack vectors r… NVD-CWE-noinfo
CVE-2010-3114 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311666 - google
webkitgtk
canonical 		chrome
webkitgtk
ubuntu_linux 		Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5, does not properly handle SVG documents, which allows remote attackers to cause a denial of service (memory corruption) or possibly have u… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3113 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311667 - google chrome Google Chrome before 5.0.375.127 does not properly implement file dialogs, which allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknow… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3112 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311668 - google chrome Google Chrome before 6.0.472.53 does not properly mitigate an unspecified flaw in the Windows kernel, which has unknown impact and attack vectors, a different vulnerability than CVE-2010-2897. NVD-CWE-noinfo
CVE-2010-3111 2024-11-21 10:18 2010-08-25 Show GitHub Exploit DB Packet Storm
311669 - novell iprint Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3109 2024-11-21 10:18 2010-08-24 Show GitHub Exploit DB Packet Storm
311670 - novell iprint Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3108 2024-11-21 10:18 2010-08-24 Show GitHub Exploit DB Packet Storm