Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4041 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-6770 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4042 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-6771 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4043 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-6772 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4044 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-6773 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4045 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-6774 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4046 5.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-6775 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4047 7.8 重要
Local 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-6776 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4048 5.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-20
CWE-352
CWE-400
CVE-2026-6777 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4049 5.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-476
CWE-824
CVE-2026-6778 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
4050 5.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-20
CWE-79
CVE-2026-6779 2026-04-24 11:39 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347841 - fasttrack
grokster
music_city_networks 		kazaa
grokster
morpheus 		fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, whic… NVD-CWE-Other
CVE-2002-0314 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
347842 - fasttrack
grokster
music_city_networks 		kazaa
grokster
morpheus 		fasttrack p2p, as used in (1) KaZaA, (2) grokster, and (3) morpheus allows remote attackers to spoof other users by modifying the username and network information in the message header. NVD-CWE-Other
CVE-2002-0315 2016-10-18 11:18 2002-06-25 Show GitHub Exploit DB Packet Storm
347843 - nullsoft shoutcast_server Buffer overflow in admin.cgi for Nullsoft Shoutcast Server 1.8.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an argument with a large number of backsl… NVD-CWE-Other
CVE-2002-0199 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347844 - cyberstop cyberstop_web_server Cyberstop Web Server for Windows 0.1 allows remote attackers to cause a denial of service via an HTTP request for an MS-DOS device name. NVD-CWE-Other
CVE-2002-0200 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347845 - cyberstop cyberstop_web_server Cyberstop Web Server for Windows 0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request, possibly triggering a buffer overflo… NVD-CWE-Other
CVE-2002-0201 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347846 - gnu chess Buffer overflow in GNU Chess (gnuchess) 5.02 and earlier, if modified or used in a networked capacity contrary to its own design as a single-user application, may allow local or remote attackers to e… NVD-CWE-Other
CVE-2002-0204 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347847 - plumtree plumtree_corporate_portal Cross-site scripting (CSS) vulnerability in error.asp for Plumtree Corporate Portal 3.5 through 4.5 allows remote attackers to execute arbitrary script on other clients via the "Description" paramete… NVD-CWE-Other
CVE-2002-0205 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347848 - hosting_controller hosting_controller The login for Hosting Controller 1.1 through 1.4.1 returns different error messages when a valid or invalid user is provided, which allows remote attackers to determine the existence of valid usernam… NVD-CWE-Other
CVE-2002-0212 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347849 - xinet
sgi 		k-ashare
irix 		xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON file, which is copied to the .HSicon file in a shared directory. NVD-CWE-Other
CVE-2002-0213 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm
347850 - dcscripts dcforum retrieve_password.pl in DCForum 6.x and 2000 generates predictable new passwords based on a sessionID, which allows remote attackers to request a new password on behalf of another user and use the se… NVD-CWE-Other
CVE-2002-0226 2016-10-18 11:17 2002-05-16 Show GitHub Exploit DB Packet Storm