Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245241 7.5 危険 エフ・セキュア - 複数の F-Secure アンチウイルス製品におけるマルウェアを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0910 2012-06-26 15:55 2008-02-22 Show GitHub Exploit DB Packet Storm
245242 7.8 危険 bea systems - BEA Plumtree Collaboration SP2 における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-0904 2012-06-26 15:55 2008-02-22 Show GitHub Exploit DB Packet Storm
245243 4.9 警告 bea systems - BEA WebLogic Portal MP1 におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0896 2012-06-26 15:55 2008-02-22 Show GitHub Exploit DB Packet Storm
245244 6.8 警告 アップル - Apple Safari における重要なメモリコンテンツを取得される脆弱性 CWE-DesignError
CVE-2008-0894 2012-06-26 15:55 2008-02-21 Show GitHub Exploit DB Packet Storm
245245 7.5 危険 BEAシステムズ - BEA WebLogic Portal Maintenance Pack 2 におけるセッションを傍受される脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-0870 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
245246 4.3 警告 BEAシステムズ - BEA WebLogic Workshop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0869 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
245247 4.3 警告 BEAシステムズ - BEA WebLogic Portal Maintenance Pack 1 の Groupspace におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0868 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
245248 4.3 警告 bea systems - BEA AquaLogic Interaction MP1 の portal/server.pt におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0867 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
245249 4.3 警告 BEAシステムズ - BEA WebLogic Workshop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0866 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
245250 5 警告 BEAシステムズ - BEA WebLogic Portal における浮動可能な WLP ポートレットのインスタンスに対して資格を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0865 2012-06-26 15:55 2008-02-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
451 8.6 HIGH
Network 		mozilla firefox
thunderbird 		Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. Update CWE-668
CWE-693
 Exposure of Resource to Wrong Sphere
 Protection Mechanism Failure 		CVE-2026-8958 2026-05-21 00:01 2026-05-19 Show GitHub Exploit DB Packet Storm
452 9.3 CRITICAL
Network 		mozilla firefox
thunderbird 		Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. Update CWE-346
 Origin Validation Error 		CVE-2026-8950 2026-05-21 00:00 2026-05-19 Show GitHub Exploit DB Packet Storm
453 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Spoofing issue in the Web Speech component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-8963 2026-05-20 23:57 2026-05-19 Show GitHub Exploit DB Packet Storm
454 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-8964 2026-05-20 23:57 2026-05-19 Show GitHub Exploit DB Packet Storm
455 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-8968 2026-05-20 23:56 2026-05-19 Show GitHub Exploit DB Packet Storm
456 8.1 HIGH
Network 		mozilla firefox
thunderbird 		Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-693
 Protection Mechanism Failure 		CVE-2026-8969 2026-05-20 23:55 2026-05-19 Show GitHub Exploit DB Packet Storm
457 9.1 CRITICAL
Network 		mozilla firefox
thunderbird 		Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-942
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2026-8948 2026-05-20 23:53 2026-05-19 Show GitHub Exploit DB Packet Storm
458 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-8949 2026-05-20 23:49 2026-05-19 Show GitHub Exploit DB Packet Storm
459 6.5 MEDIUM
Network 		mozilla firefox Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151. CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-8951 2026-05-20 23:48 2026-05-19 Show GitHub Exploit DB Packet Storm
460 6.5 MEDIUM
Network 		mozilla firefox
thunderbird 		Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-346
 Origin Validation Error 		CVE-2026-8971 2026-05-20 23:41 2026-05-19 Show GitHub Exploit DB Packet Storm