Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3131 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2025-14870 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3132 5.6 警告
Network 		デル elastic cloud storage
Dell ObjectScale 		デルのelastic cloud storage等の複数製品における認証回避の脆弱性 CWE-302
認証回避の脆弱性 		CVE-2025-43992 2026-05-18 12:08 2026-05-11 Show GitHub Exploit DB Packet Storm
3133 6.7 警告
Local 		フォーティネット FortiAP-U
FortiAP
FortiAP-W2 		フォーティネットのFortiAP-U等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53680 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3134 7.2 重要
Network 		フォーティネット FortiMail フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-53681 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3135 8.8 重要
Network 		フォーティネット FortiOS フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-53844 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3136 6.7 警告
Local 		フォーティネット FortiAP
FortiAP-W2 		フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53870 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3137 5.3 警告
Network 		strapi strapi strapiにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-64526 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3138 5.3 警告
Network 		フォーティネット FortiManager
FortiAnalyzer 		フォーティネットのFortiAnalyzer等の複数製品における潜在的に危険な関数の使用に関する脆弱性 CWE-676
潜在的に危険な関数の使用 		CVE-2025-67604 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3139 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1184 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3140 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1322 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312031 - apache myfaces shared/util/StateUtils.java in Apache MyFaces 1.1.x before 1.1.8, 1.2.x before 1.2.9, and 2.0.x before 2.0.1 uses an encrypted View State without a Message Authentication Code (MAC), which makes it e… CWE-310
Cryptographic Issues 		CVE-2010-2057 2024-11-21 10:15 2010-10-21 Show GitHub Exploit DB Packet Storm
312032 - microsoft windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server 		Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows… CWE-189
Numeric Errors 		CVE-2010-1883 2024-11-21 10:15 2010-10-14 Show GitHub Exploit DB Packet Storm
312033 8.8 HIGH
Network 		google
apple
opensuse 		chrome
safari
opensuse 		WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to … CWE-704
 Incorrect Type Conversion or Cast 		CVE-2010-1822 2024-11-21 10:15 2010-10-5 Show GitHub Exploit DB Packet Storm
312034 - google chrome Use-after-free vulnerability in WebKit, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related … CWE-416
 Use After Free 		CVE-2010-1825 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312035 - google
apple 		chrome
itunes 		Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a… CWE-416
 Use After Free 		CVE-2010-1824 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312036 - google
apple 		chrome
itunes
safari 		Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via ve… CWE-416
 Use After Free 		CVE-2010-1823 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312037 8.8 HIGH
Network 		google
redhat
canonical
opensuse
fedoraproject 		chrome
enterprise_linux
ubuntu_linux
opensuse
fedora 		Use-after-free vulnerability in page/Geolocation.cpp in WebCore in WebKit before r59859, as used in Google Chrome before 5.0.375.70, allows remote attackers to execute arbitrary code or cause a denia… CWE-416
 Use After Free 		CVE-2010-1772 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312038 8.8 HIGH
Network 		google
redhat
canonical
opensuse
fedoraproject 		chrome
enterprise_linux
ubuntu_linux
opensuse
fedora 		Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as used in Google Chrome before 5.0.375.70, allows remote attackers to obtain sensi… CWE-193
 Off-by-one Error 		CVE-2010-1773 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312039 - google chrome Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hij… CWE-352
 Origin Validation Error 		CVE-2010-1767 2024-11-21 10:15 2010-09-25 Show GitHub Exploit DB Packet Storm
312040 - apple mac_os_x_server
mac_os_x 		Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x through 10.6.4 does not properly handle errors, which allows remote attackers to bypass the password requirement for shared-folder access b… CWE-287
Improper Authentication 		CVE-2010-1820 2024-11-21 10:15 2010-09-22 Show GitHub Exploit DB Packet Storm