Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1301	9.1	緊急 Network	i18next	i18next-http-backend	i18nextのi18next-http-backendにおける複数の脆弱性	CWE-22 CWE-74	CVE-2026-41691	2026-06-3 17:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1302	4.7	警告 Network	i18next	i18nextify	i18nextのi18nextifyにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-41692	2026-06-3 17:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1303	10	緊急 Network	th30d4y	OpenLearnX	th30d4yのOpenLearnXにおける複数の脆弱性	CWE-250 CWE-284 CWE-693 CWE-78 CWE-94	CVE-2026-41900	2026-06-3 17:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

1304	6.1	警告 Network	The Go Project	Net	The Go ProjectのNetにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-42502	2026-06-3 17:04	2026-05-22	Show	GitHub Exploit DB Packet Storm

1305	6.1	警告 Network	The Go Project	Net	The Go ProjectのNetにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42506	2026-06-3 17:04	2026-05-22	Show	GitHub Exploit DB Packet Storm

1306	7.8	重要 Local	horsicq	Detect-It-Easy	horsicqのDetect-It-Easyにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-43616	2026-06-3 17:04	2026-05-4	Show	GitHub Exploit DB Packet Storm

1307	9.9	緊急 Network	オラクル	Oracle iAssets	オラクルのOracle iAssetsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46822	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

1308	7.5	重要 Network	fastify	fastify/accepts-serializer	fastifyのfastify/accepts-serializerにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-7768	2026-06-3 17:04	2026-05-4	Show	GitHub Exploit DB Packet Storm

1309	8.8	重要 Local	NanoCo	NanoClaw	NanoCoのNanoClawにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-7875	2026-06-3 17:04	2026-05-6	Show	GitHub Exploit DB Packet Storm

1310	6.5	警告 Network	Synology Inc.	SSL VPN Client	Synology Inc.のSSL VPN Clientにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2021-47960	2026-06-3 17:04	2026-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344981	-	mozilla	firefox	Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a d…	NVD-CWE-Other	CVE-2005-2264	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344982	-	mozilla	firefox mozilla	Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calli…	NVD-CWE-Other	CVE-2005-2265	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344983	-	mozilla	firefox mozilla	Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to call top.focus and other methods in a parent frame, even when the parent is in a different domain, which violates the same origin…	NVD-CWE-Other	CVE-2005-2266	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344984	-	mozilla	firefox	Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is …	NVD-CWE-Other	CVE-2005-2267	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344985	-	mozilla	firefox mozilla	Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a truste…	NVD-CWE-Other	CVE-2005-2268	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344986	-	mozilla	firefox mozilla	Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to…	NVD-CWE-Other	CVE-2005-2269	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344987	-	mozilla	firefox mozilla	Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone base objects, which allows remote attackers to execute arbitrary code by navigating the prototype chain to reach a privileged obj…	NVD-CWE-Other	CVE-2005-2270	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344988	-	yukihiro_matsumoto	ruby	Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-09-01 allows attackers to bypass safe level and taint flag protections and execute disallowed code when Ruby processes a pr…	NVD-CWE-Other	CVE-2005-2337	2017-10-11 10:30	2005-10-8	Show	GitHub Exploit DB Packet Storm

344989	-	vim_development_group	vim	vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr exp…	CWE-78 OS Command	CVE-2005-2368	2017-10-11 10:30	2005-07-26	Show	GitHub Exploit DB Packet Storm

344990	-	ekg	ekg	Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code.	NVD-CWE-Other	CVE-2005-2369	2017-10-11 10:30	2005-07-26	Show	GitHub Exploit DB Packet Storm