Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4601 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8951 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4602 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8952 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4603 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8955 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4604 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-8956 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4605 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8957 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4606 8.6 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-668
CWE-693
CVE-2026-8958 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4607 9.6 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-20
CWE-693
CVE-2026-8959 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4608 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8960 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4609 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8961 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4610 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-8962 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345911 - mozilla firefox
seamonkey
thunderbird 		Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) and possibly execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2006-4565 2018-10-18 06:37 2006-09-16 Show GitHub Exploit DB Packet Storm
345912 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) via a malformed JavaScript regular expression that … NVD-CWE-Other
CVE-2006-4566 2018-10-18 06:37 2006-09-16 Show GitHub Exploit DB Packet Storm
345913 - mozilla firefox
thunderbird 		Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self-signed certificates for the auto-update mechanism, which might allow remote user-assisted attacker… NVD-CWE-Other
CVE-2006-4567 2018-10-18 06:37 2006-09-16 Show GitHub Exploit DB Packet Storm
345914 - mozilla firefox
seamonkey 		Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].documen… CWE-79
Cross-site Scripting 		CVE-2006-4568 2018-10-18 06:37 2006-09-16 Show GitHub Exploit DB Packet Storm
345915 - mozilla firefox The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked popups" display in the context of the Location bar instead of the subframe from which the popup originated, which might make it … NVD-CWE-Other
CVE-2006-4569 2018-10-18 06:37 2006-09-16 Show GitHub Exploit DB Packet Storm
345916 - digium asterisk Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response. NVD-CWE-Other
CVE-2006-4345 2018-10-18 06:36 2006-08-25 Show GitHub Exploit DB Packet Storm
345917 - digium asterisk Asterisk 1.2.10 supports the use of client-controlled variables to determine filenames in the Record function, which allows remote attackers to (1) execute code via format string specifiers or (2) ov… NVD-CWE-Other
CVE-2006-4346 2018-10-18 06:36 2006-08-25 Show GitHub Exploit DB Packet Storm
345918 - kochsuite_component kochsuite_component PHP remote file inclusion vulnerability in config.kochsuite.php in the Kochsuite (com_kochsuite) 0.9.4 component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL … NVD-CWE-Other
CVE-2006-4348 2018-10-18 06:36 2006-08-25 Show GitHub Exploit DB Packet Storm
345919 - oneorzero oneorzero SQL injection vulnerability in index.php in OneOrZero 1.6.4.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-4350 2018-10-18 06:36 2006-08-25 Show GitHub Exploit DB Packet Storm
345920 - oneorzero oneorzero Cross-site scripting (XSS) vulnerability in index.php in OneOrZero 1.6.4.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2006-4351 2018-10-18 06:36 2006-08-25 Show GitHub Exploit DB Packet Storm