Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3481 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-7320 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3482 9.6 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-7321 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3483 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-416
CVE-2026-7322 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3484 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-7324 2026-05-7 12:01 2026-04-28 Show GitHub Exploit DB Packet Storm
3485 7.5 重要
Network 		Wireshark Wireshark Wiresharkにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-7375 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3486 7.5 重要
Network 		Wireshark Wireshark WiresharkにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-7376 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3487 7.5 重要
Network 		Wireshark Wireshark Wiresharkにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-7378 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3488 7.5 重要
Network 		Wireshark Wireshark Wiresharkにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-7379 2026-05-7 12:01 2026-04-30 Show GitHub Exploit DB Packet Storm
3489 6.1 警告
Network 		dragonexpert Recent Threads on Index dragonexpertのRecent Threads on Indexにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-25309 2026-05-7 12:01 2026-04-29 Show GitHub Exploit DB Packet Storm
3490 6.4 警告
Local 		レッドハット Web Terminal レッドハットのWeb Terminalにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-57853 2026-05-7 12:01 2026-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306651 - vwar virtual_war article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to cause a denial of service (memory consumption) via a large integer in the ratearticleselect parameter. CWE-189
Numeric Errors 		CVE-2010-5279 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306652 - vwar virtual_war Virtual War (aka VWar) 1.6.1 R2 uses static session cookies that depend only on a user's password, which makes it easier for remote attackers to bypass timeout and logout actions, and retain access f… CWE-255
Credentials Management 		CVE-2010-5067 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306653 - vwar virtual_war The createRandomPassword function in includes/functions_common.php in Virtual War (aka VWar) 1.6.1 R2 uses a small range of values to select the seed argument for the PHP mt_srand function, which mak… CWE-310
Cryptographic Issues 		CVE-2010-5066 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306654 - vwar virtual_war popup.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to bypass intended member restrictions and read news posts via a modified newsid parameter in a printnews action. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5065 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306655 - vwar virtual_war Multiple cross-site scripting (XSS) vulnerabilities in Virtual War (aka VWar) 1.6.1 R2 allow remote attackers to inject arbitrary web script or HTML via (1) the Additional Information field to challe… CWE-79
Cross-site Scripting 		CVE-2010-5064 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306656 - vwar virtual_war SQL injection vulnerability in article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the ratearticleselect parameter. CWE-89
SQL Injection 		CVE-2010-5063 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306657 - modx modx_revolution Directory traversal vulnerability in manager/controllers/default/resource/tvs.php in MODx Revolution 2.0.2-pl, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to read… CWE-22
Path Traversal 		CVE-2010-5278 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306658 - karim_ratib views_bulk_operations Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions an… NVD-CWE-noinfo
CVE-2010-5277 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306659 - memcache_project memcache The Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal does not properly handle the $user object in memcache_admin, which might "lead to a role change not being recognized until th… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5276 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
306660 - memcache_project memcache Cross-site scripting (XSS) vulnerability in memcache_admin in the Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal allows remote attackers to inject arbitrary web script or HTML … CWE-79
Cross-site Scripting 		CVE-2010-5275 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm