Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4371	9.1	緊急 Network	Open JS Foundation	fastify/middie	Open JS Foundationの@fastify/middieにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-6270	2026-04-24 11:40	2026-04-16	Show	GitHub Exploit DB Packet Storm

4372	9.9	緊急 Network	ASUSTOR Inc.	data master	ASUSTOR Inc.のdata masterにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-6643	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

4373	9.1	緊急 Network	ASUSTOR Inc.	data master	ASUSTOR Inc.のdata masterにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-6644	2026-04-24 11:40	2026-04-20	Show	GitHub Exploit DB Packet Storm

4374	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6746	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4375	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6747	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4376	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-6748	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4377	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-6749	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4378	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-6750	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4379	7.3	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-6751	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

4380	7.3	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-6752	2026-04-24 11:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348121	-	gabriele_bartolini	ht_check	Cross-site scripting vulnerability (XSS) in the PHP interface for ht://Check 1.1 allows remote web servers to insert arbitrary HTML, including script, via a web page.	NVD-CWE-Other	CVE-2002-1195	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348122	-	mozilla	bugzilla	editproducts.cgi in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, when the "usebuggroups" feature is enabled and more than 47 groups are specified, does not properly calculate bit values f…	NVD-CWE-Other	CVE-2002-1196	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348123	-	mozilla	bugzilla	bugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote attackers to execute arbitrary code via shell metacharacters in a system call to processmail.	NVD-CWE-Other	CVE-2002-1197	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348124	-	mozilla	bugzilla	Bugzilla 2.16.x before 2.16.1 does not properly filter apostrophes from an email address during account creation, which allows remote attackers to execute arbitrary SQL via a SQL injection attack.	NVD-CWE-Other	CVE-2002-1198	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348125	-	ibm	aix	IBM AIX 4.3.3 and AIX 5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a flood of malformed TCP packets without any flags set, which prevents AIX from releasing t…	NVD-CWE-Other	CVE-2002-1201	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348126	-	ibm	secureway_firewall	IBM SecureWay Firewall before 4.2.2 performs extra processing before determining that a packet is invalid and dropping it, which allows remote attackers to cause a denial of service (resource exhaust…	CWE-399 Resource Management Errors	CVE-2002-1203	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348127	-	jason_orcutt	prometheus	Prometheus 6.0 and earlier allows remote attackers to execute arbitrary PHP code via a modified PROMETHEUS_LIBRARY_BASE that points to code stored on a remote server, which is then used in (1) index.…	NVD-CWE-Other	CVE-2002-1211	2016-10-18 11:24	2002-11-12	Show	GitHub Exploit DB Packet Storm

348128	-	gnu	tar	GNU tar 1.13.19 and other versions before 1.13.25 allows remote attackers to overwrite arbitrary files via a symlink attack, as the result of a modification that effectively disabled the security che…	NVD-CWE-Other	CVE-2002-1216	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348129	-	kth	heimdal	Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access.	NVD-CWE-Other	CVE-2002-1225	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

348130	-	kth	heimdal	Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffe…	NVD-CWE-Other	CVE-2002-1226	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm