Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2831	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-8963	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2832	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-8964	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2833	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-8965	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2834	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-8966	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2835	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-8967	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2836	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-8968	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2837	8.1	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-8969	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2838	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-8970	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2839	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-8971	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

2840	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-8972	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306671	-	wordpress	wordpress	Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Media security."	NVD-CWE-noinfo	CVE-2011-3122	2024-11-21 10:29	2011-08-11	Show	GitHub Exploit DB Packet Storm

306672	-	mcafee	saas_endpoint_protection	The myCIOScn ActiveX control (myCIOScn.dll) in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to write to arbitrary files by specifying an arbitrary filename in the MyCioSc…	CWE-94 Code Injection	CVE-2011-3007	2024-11-21 10:29	2011-08-11	Show	GitHub Exploit DB Packet Storm

306673	-	mcafee	saas_endpoint_protection	The MyAsUtil ActiveX control in MyAsUtil5.2.0.603.dll in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to bypass the MyASUtil.SecureObjectFactory.CreateSecureObject domain…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-3006	2024-11-21 10:29	2011-08-11	Show	GitHub Exploit DB Packet Storm

306674	-	novell	mobility_pack data_synchronizer	The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 does not properly restrict caching of HTTPS responses, which makes it easier for remote attackers to obtain sensit…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-3014	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306675	-	novell	mobility_pack data_synchronizer	WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 supports weak SSL ciphers, which makes it easier for remote attackers to obtain access via a brute-for…	CWE-310 Cryptographic Issues	CVE-2011-3013	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306676	-	tremulous urbanterror ioquake3 worldofpadman	tremulous iourbanterror ioquake3_engine world_of_padman	The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions before writing to the quake3 directory, wh…	CWE-20 Improper Input Validation	CVE-2011-3012	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306677	-	mozilla	bugzilla	Bugzilla 4.1.x before 4.1.3 generates different responses for certain assignee queries depending on whether the group name is valid, which allows remote attackers to determine the existence of privat…	NVD-CWE-Other	CVE-2011-2979	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306678	-	mozilla	bugzilla	Bugzilla 2.16rc1 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6, 3.7.x, 4.0.x before 4.0.2, and 4.1.x before 4.1.3 does not prevent changes to the confirmation e-…	CWE-20 Improper Input Validation	CVE-2011-2978	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306679	-	mozilla	bugzilla	Bugzilla 3.6.x before 3.6.6, 3.7.x, 4.0.x before 4.0.2, and 4.1.x before 4.1.3 on Windows does not delete the temporary files associated with uploaded attachments, which allows local users to obtain …	NVD-CWE-Other	CVE-2011-2977	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm

306680	-	mozilla	bugzilla	Cross-site scripting (XSS) vulnerability in Bugzilla 2.16rc1 through 2.22.7, 3.0.x through 3.3.x, and 3.4.x before 3.4.12 allows remote attackers to inject arbitrary web script or HTML via vectors in…	CWE-79 Cross-site Scripting	CVE-2011-2976	2024-11-21 10:29	2011-08-10	Show	GitHub Exploit DB Packet Storm