Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
481 5.9 警告
Network 		ImageMagick ImageMagick ImageMagickにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-48994 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
482 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-49218 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
483 5.5 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-200
CWE-22
CWE-78
CWE-863
CVE-2026-49219 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
484 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-49233 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
485 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-49234 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
486 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-49235 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
487 5.5 警告
Local 		NSA Ghidra NSAのGhidraにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-49495 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
488 6.1 警告
Local 		NSA Ghidra NSAのGhidraにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-49496 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
489 3.3
Local 		NSA Ghidra NSAのGhidraにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-49497 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
490 8.8 重要
Network 		NSA Ghidra NSAのGhidraにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-49498 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309991 - ca internet_security_suite_plus_2010 Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to t… CWE-189
Numeric Errors 		CVE-2010-4502 2024-11-21 10:21 2010-12-9 Show GitHub Exploit DB Packet Storm
309992 - mrcgiguy freeticket Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY (MCG) FreeTicket 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) name,… CWE-89
SQL Injection 		CVE-2010-4500 2024-11-21 10:21 2010-12-9 Show GitHub Exploit DB Packet Storm
309993 - phpmyadmin phpmyadmin error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted BBcode tag containing "@" characters, as de… CWE-79
Cross-site Scripting 		CVE-2010-4480 2024-11-21 10:21 2010-12-9 Show GitHub Exploit DB Packet Storm
309994 - google
xmlsoft
apple
opensuse
suse
fedoraproject
redhat
debian
hp
apache 		chrome
libxml2
mac_os_x
itunes
safari
iphone_os
opensuse
suse_linux_enterprise_server
fedora
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_worksta… 		Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have un… CWE-415
 Double Free 		CVE-2010-4494 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
309995 - google
debian 		chrome
debian_linux 		Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events. CWE-416
 Use After Free 		CVE-2010-4493 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
309996 - google
debian 		chrome
debian_linux 		Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG animations. CWE-416
 Use After Free 		CVE-2010-4492 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
309997 - google chrome Google Chrome before 8.0.552.215 does not properly restrict privileged extensions, which allows remote attackers to cause a denial of service (memory corruption) via a crafted extension. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-4491 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
309998 - google chrome Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via malformed video content that triggers an indexi… NVD-CWE-noinfo
CVE-2010-4490 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
309999 - google chrome libvpx, as used in Google Chrome before 8.0.552.215 and possibly other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WebM video. NOTE: this vulner… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-4489 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm
310000 - google chrome Google Chrome before 8.0.552.215 does not properly handle HTTP proxy authentication, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. CWE-287
Improper Authentication 		CVE-2010-4488 2024-11-21 10:21 2010-12-8 Show GitHub Exploit DB Packet Storm