Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3601	5.4	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-23942	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3602	5.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品における高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-23943	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3603	7.8	重要 Local	Uderzo Software	SpaceSniffer	Uderzo SoftwareのSpaceSnifferにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-26738	2026-05-25 10:25	2026-03-10	Show	GitHub Exploit DB Packet Storm

3604	9.8	緊急 Network	zlib	zlib	Ruby-lang.orgのZlibにおける複数の脆弱性	CWE-120 CWE-131	CVE-2026-27820	2026-05-25 10:25	2026-04-16	Show	GitHub Exploit DB Packet Storm

3605	7.8	重要 Local	Louis Pilfold	Gleam	Louis PilfoldのGleamにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32146	2026-05-25 10:25	2026-04-11	Show	GitHub Exploit DB Packet Storm

3606	4.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32147	2026-05-25 10:25	2026-04-21	Show	GitHub Exploit DB Packet Storm

3607	7.8	重要 Local	Elixir-ecto	Postgrex	Elixir-ectoのPostgrexにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-32687	2026-05-25 10:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

3608	7.5	重要 Network	マイクロソフト	go-ntlmssp	マイクロソフトのgo-ntlmsspにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-32952	2026-05-25 10:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3609	7.5	重要 Network	Mtrudel	Bandit	MtrudelのBanditにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-39803	2026-05-25 10:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

3610	7.5	重要 Network	Mtrudel	Bandit	MtrudelのBanditにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-39806	2026-05-25 10:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311551	-		netartmedia	car_portal	Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) car_id parameter to index.php …	CWE-79 Cross-site Scripting	CVE-2010-3418	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311552	-		google	chrome	Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows attackers to obtain potentially sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2010-3417	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311553	9.8	CRITICAL Network	google	chrome	Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified othe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3416	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311554	-		google	chrome	Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3415	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311555	-		google	chrome	Google Chrome before 6.0.472.59 on Mac OS X does not properly implement file dialogs, which allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3414	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311556	-		google	chrome	Unspecified vulnerability in the pop-up blocking functionality in Google Chrome before 6.0.472.59 allows remote attackers to cause a denial of service (application crash) via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3413	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311557	-		google	chrome	Race condition in the console implementation in Google Chrome before 6.0.472.59 has unspecified impact and attack vectors.	CWE-362 Race Condition	CVE-2010-3412	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311558	-		google	chrome	Google Chrome before 6.0.472.59 on Linux does not properly handle cursors, which might allow attackers to cause a denial of service (assertion failure) via unspecified vectors.	CWE-617 Reachable Assertion	CVE-2010-3411	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311559	-		ibm	lotus_domino	Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows rem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3407	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311560	-		ibm	aix	Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM AIX 5.3 allows local users to leverage system group membership and delete files via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3406	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm