Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1151 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8961 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
1152 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-8962 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1153 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8963 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1154 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-8964 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1155 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-8965 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1156 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-8966 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1157 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-8967 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1158 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-8968 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1159 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-8969 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
1160 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8970 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319311 7.5 HIGH
Network 		frrouting
redhat 		frrouting
enterprise_linux 		An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value. NVD-CWE-noinfo
CVE-2024-44070 2024-08-31 01:19 2024-08-19 Show GitHub Exploit DB Packet Storm
319312 5.4 MEDIUM
Network 		cryoutcreations tempera Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Tempera allows Stored XSS.This issue affects Tempera: from n/a through 1.8… CWE-79
Cross-site Scripting 		CVE-2024-43951 2024-08-31 01:17 2024-08-30 Show GitHub Exploit DB Packet Storm
319313 5.4 MEDIUM
Network 		cryoutcreations esotera Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Esotera allows Stored XSS.This issue affects Esotera: from n/a through 1.2… CWE-79
Cross-site Scripting 		CVE-2024-43952 2024-08-31 01:16 2024-08-30 Show GitHub Exploit DB Packet Storm
319314 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-8064 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319315 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-7712 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319316 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-7051 2024-08-31 01:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319317 6.1 MEDIUM
Network 		gianniporto intothedark Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gianni Porto IntoTheDark allows Reflected XSS.This issue affects IntoTheDark: from n/a thr… CWE-79
Cross-site Scripting 		CVE-2024-43958 2024-08-31 01:15 2024-08-30 Show GitHub Exploit DB Packet Storm
319318 6.5 MEDIUM
Network 		stitionai devika stitionai/devika main branch as of commit cdfb782b0e634b773b10963c8034dc9207ba1f9f is vulnerable to Local File Read (LFI) by Prompt Injection. The integration of Google Gimini 1.0 Pro with `HarmBlock… CWE-74
Injection 		CVE-2024-6331 2024-08-31 01:15 2024-08-4 Show GitHub Exploit DB Packet Storm
319319 4.8 MEDIUM
Network 		pagebuilderaddons web_and_woocommerce_addons_for_wpbakery_builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Page Builder Addons Web and WooCommerce Addons for WPBakery Builder allows Stored XSS.This… CWE-79
Cross-site Scripting 		CVE-2024-43960 2024-08-31 01:12 2024-08-30 Show GitHub Exploit DB Packet Storm
319320 6.1 MEDIUM
Network 		waspthemes yellowpencil Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WaspThemes YellowPencil Visual CSS Style Editor allows Reflected XSS.This issue affects Ye… CWE-79
Cross-site Scripting 		CVE-2024-43963 2024-08-31 01:10 2024-08-30 Show GitHub Exploit DB Packet Storm