Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207151 7.5 危険 Mozilla Foundation - Mozilla Firefox の HTMLVideoElement インターフェースにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-4509 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207152 2.6 注意 Mozilla Foundation - Mozilla Firefox におけるロケーションバーに Web コンテンツと異なる URL を表示される脆弱性 CWE-Other
その他 		CVE-2015-4508 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207153 5.1 警告 Mozilla Foundation - Mozilla Firefox の JavaScript の実装の SavedStacks クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2015-4507 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207154 6.8 警告 Mozilla Foundation - Mozilla Firefox で使用される libvpx の vp9_init_context_buffers 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-4506 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207155 6.6 警告 Mozilla Foundation - Windows 上で稼動する Mozilla Firefox の updater.exe における任意のファイルに書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-4505 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207156 6.4 警告 Mozilla Foundation - Mozilla Firefox の QCMS ライブラリの lut_inverse_interp16 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2015-4504 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207157 5 警告 Mozilla Foundation - Mozilla Firefox の TCP Socket API の実装における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-4503 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207158 4.3 警告 Mozilla Foundation - Mozilla Firefox の js/src/proxy/Proxy.cpp におけるウィンドウへのアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2015-4502 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207159 7.5 危険 Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-4501 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
207160 7.5 危険 Mozilla Foundation - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-4500 2015-09-28 14:19 2015-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
691 7.8 HIGH
Local 		- - libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas import functionality allows an attacker to cause a controlled heap out-of-boun… New CWE-122
CWE-190
CWE-787
Heap-based Buffer Overflow
 Integer Overflow or Wraparound
 Out-of-bounds Write 		CVE-2026-42046 2026-05-12 23:17 2026-05-12 Show GitHub Exploit DB Packet Storm
692 7.3 HIGH
Network 		- - An issue in QuickJS-NG v.0.12.1 allows an attacker to execute arbitrary code via the js_mapped_arguments_mark function New CWE-94
Code Injection 		CVE-2026-37630 2026-05-12 23:17 2026-05-12 Show GitHub Exploit DB Packet Storm
693 8.8 HIGH
Network 		- - EDIMAX BR-6428nS V3 1.15 is vulnerable to Command Injection. An authenticated attacker with access to the network can submit crafted input to the WLAN configuration functionality. Due to insufficient… New CWE-77
Command Injection 		CVE-2026-36734 2026-05-12 23:17 2026-05-12 Show GitHub Exploit DB Packet Storm
694 8.1 HIGH
Network 		- - Command injection vulnerability in automagik-genie 2.5.27 MCP Server allows attackers to execute arbitrary commands via the view_task (aka view) in the readTranscriptFromCommit function in dist/mcp/s… New CWE-78
OS Command  		CVE-2026-30635 2026-05-12 23:17 2026-05-12 Show GitHub Exploit DB Packet Storm
695 7.5 HIGH
Network 		- - A vulnerability in the `_create_model_version()` handler of `mlflow/server/handlers.py` in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files f… New CWE-22
Path Traversal 		CVE-2026-2614 2026-05-12 23:17 2026-05-12 Show GitHub Exploit DB Packet Storm
696 - - - Reserved. Details will be published at disclosure. New - CVE-2026-45391 2026-05-12 23:16 2026-05-12 Show GitHub Exploit DB Packet Storm
697 - - - Reserved. Details will be published at disclosure. New - CVE-2026-45392 2026-05-12 23:16 2026-05-12 Show GitHub Exploit DB Packet Storm
698 - - - Reserved. Details will be published at disclosure. New - CVE-2026-45393 2026-05-12 23:16 2026-05-12 Show GitHub Exploit DB Packet Storm
699 - - - dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-co… New - CVE-2026-2291 2026-05-12 23:15 2026-05-12 Show GitHub Exploit DB Packet Storm
700 - - - Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRP_MJ_REITS command interface, which allows any user process to request a PROCESS_ALL_ACCESS. Cr… New - CVE-2026-3609 2026-05-12 23:15 2026-05-12 Show GitHub Exploit DB Packet Storm