Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248531 7.5 危険 ay system solutions - Ay System Solutions CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4441 2012-06-26 15:37 2006-08-29 Show GitHub Exploit DB Packet Storm
248532 7.5 危険 ay system solutions - Ay System Solutions CMS の main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4440 2012-06-26 15:37 2006-08-29 Show GitHub Exploit DB Packet Storm
248533 6.4 警告 Doctor Web - Linux の Dr.Web Scanner の SpIDer におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-4438 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
248534 5.1 警告 efiction - eFiction の index.php における権限を取得される脆弱性 - CVE-2006-4427 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248535 5.1 警告 albert - AES の AES/modules/auth/phpsecurityadmin/include/logout.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4426 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248536 5.1 警告 coinsoft technologies - phpCOIN における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4425 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248537 5.1 警告 coinsoft technologies - phpCOIN の coin_includes/constants.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4424 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248538 7.5 危険 BIGACE - Bigace における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4423 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248539 7.2 危険 アップル - Apple Remote Desktop におけるパッケージを変更される脆弱性 - CVE-2006-4413 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
248540 5 警告 シスコシステムズ - Cisco NAC におけるローカルおよびリモート保護メカニズムを回避される脆弱性 - CVE-2006-4430 2012-06-26 15:37 2005-08-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2751 9.1 CRITICAL
Network 		mozilla firefox
thunderbird 		Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-942
 Permissive Cross-domain Policy with Untrusted Domains 		CVE-2026-8948 2026-05-20 23:53 2026-05-19 Show GitHub Exploit DB Packet Storm
2752 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-8949 2026-05-20 23:49 2026-05-19 Show GitHub Exploit DB Packet Storm
2753 6.5 MEDIUM
Network 		mozilla firefox Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151. CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-8951 2026-05-20 23:48 2026-05-19 Show GitHub Exploit DB Packet Storm
2754 6.5 MEDIUM
Network 		mozilla firefox
thunderbird 		Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-346
 Origin Validation Error 		CVE-2026-8971 2026-05-20 23:41 2026-05-19 Show GitHub Exploit DB Packet Storm
2755 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Integer overflow in the Networking: JAR component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-8956 2026-05-20 23:31 2026-05-19 Show GitHub Exploit DB Packet Storm
2756 9.6 CRITICAL
Network 		mozilla firefox
thunderbird 		Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-20
CWE-119
CWE-693
 Improper Input Validation 
Incorrect Access of Indexable Resource ('Range Error') 
 Protection Mechanism Failure 		CVE-2026-8959 2026-05-20 23:28 2026-05-19 Show GitHub Exploit DB Packet Storm
2757 8.8 HIGH
Network 		- - Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with template rendering capabilities to pass arbitrary PH… CWE-693
 Protection Mechanism Failure 		CVE-2026-24425 2026-05-20 23:25 2026-05-20 Show GitHub Exploit DB Packet Storm
2758 7.3 HIGH
Network 		- - An authorization vulnerability exists in Innoshop 0.6.0. After logging into the frontend, an attacker can directly access backend application interfaces, leading to further dangerous operations. CWE-284
Improper Access Control 		CVE-2026-39250 2026-05-20 23:25 2026-05-20 Show GitHub Exploit DB Packet Storm
2759 4.3 MEDIUM
Network 		- - Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be execute… CWE-862
 Missing Authorization 		CVE-2026-44392 2026-05-20 23:25 2026-05-20 Show GitHub Exploit DB Packet Storm
2760 4.0 MEDIUM
Local 		- - HCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecure Use of Base Image Version'. Using outdated or insecure base images may introduce known vulnerabilities, potentially i… - CVE-2025-31973 2026-05-20 23:23 2026-05-20 Show GitHub Exploit DB Packet Storm