Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2691	8.8	重要 Network	n8n	n8n	n8nにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42229	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2692	6.1	警告 Network	n8n	n8n	n8nにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-42230	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2693	8.8	重要 Network	n8n	n8n	n8nにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42231	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2694	8.8	重要 Network	n8n	n8n	n8nにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42232	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2695	9.8	緊急 Network	n8n	n8n	n8nにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42233	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2696	8.8	重要 Network	n8n	n8n	n8nにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42234	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2697	9.6	緊急 Network	n8n	n8n	n8nにおける複数の脆弱性	CWE-79 CWE-87	CVE-2026-42235	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2698	7.5	重要 Network	n8n	n8n	n8nにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42236	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2699	8.8	重要 Network	n8n	n8n	n8nにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42237	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

2700	9.8	緊急 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42238	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312421	6.5	MEDIUM Network	mozilla	thunderbird firefox	Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Firefox ESR < 115.17, Thunderbird < 128.4, and Thunderbird < 132.	CWE-203 Information Exposure Through Discrepancy	CVE-2024-10463	2024-11-4 22:31	2024-10-29	Show	GitHub Exploit DB Packet Storm

312422	6.5	MEDIUM Network	mozilla	thunderbird firefox	A clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.	CWE-290 Authentication Bypass by Spoofing	CVE-2024-10465	2024-11-4 22:30	2024-10-29	Show	GitHub Exploit DB Packet Storm

312423	6.5	MEDIUM Network	mozilla	thunderbird firefox	Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerabi…	CWE-125 Out-of-bounds Read	CVE-2024-10464	2024-11-4 22:30	2024-10-29	Show	GitHub Exploit DB Packet Storm

312424	5.3	MEDIUM Network	mozilla	firefox thunderbird	Potential race conditions in IndexedDB could have caused memory corruption, leading to a potentially exploitable crash. This vulnerability affects Firefox < 132 and Thunderbird < 132.	CWE-362 Race Condition	CVE-2024-10468	2024-11-4 22:29	2024-10-29	Show	GitHub Exploit DB Packet Storm

312425	7.5	HIGH Network	mozilla	thunderbird firefox	By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become unresponsive. This vulnerability affects Firefox < 132, Firefox ESR < 12…	NVD-CWE-noinfo	CVE-2024-10466	2024-11-4 22:29	2024-10-29	Show	GitHub Exploit DB Packet Storm

312426	8.8	HIGH Network	mozilla	thunderbird firefox	Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could…	CWE-787 Out-of-bounds Write	CVE-2024-10467	2024-11-4 22:26	2024-10-29	Show	GitHub Exploit DB Packet Storm

312427	6.1	MEDIUM Network	mozilla	thunderbird firefox	In multipart/x-mixed-replace responses, `Content-Disposition: attachment` in the response header was not respected and did not force a download, which could allow XSS attacks. This vulnerability affe…	CWE-79 Cross-site Scripting	CVE-2024-10461	2024-11-4 22:25	2024-10-29	Show	GitHub Exploit DB Packet Storm

312428	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tracing: Free buffers when a used dynamic event is removed After 65536 dynamic events have been added and removed, the "type" fie…	CWE-416 Use After Free	CVE-2022-49006	2024-11-4 22:16	2024-10-22	Show	GitHub Exploit DB Packet Storm

312429	-		-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.	-	CVE-2024-48342	2024-11-4 16:15	2024-11-4	Show	GitHub Exploit DB Packet Storm

312430	10.0	CRITICAL Network	-	-	IDExpert from CHANGING Information Technology does not properly validate a specific parameter in the administrator interface, allowing remote attackers with administrative privileges to inject and ex…	CWE-78 OS Command	CVE-2024-10653	2024-11-4 16:15	2024-11-1	Show	GitHub Exploit DB Packet Storm