Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4471	9.1	緊急 Network	lollms	lollms web ui	lollmsのlollms web uiにおける複数の脆弱性	CWE-306 CWE-918	CVE-2026-33340	2026-04-21 10:49	2026-03-24	Show	GitHub Exploit DB Packet Storm

4472	7.2	重要 Network	JetBrains	YouTrack	JetBrainsのYouTrackにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-1336 テンプレートエンジンで使用される特殊な要素の不適切な無効化	CVE-2026-33392	2026-04-21 10:49	2026-04-17	Show	GitHub Exploit DB Packet Storm

4473	6.3	警告 Network	Check MK	Check MK	Check MKにおける区切り文字の不適切な無害化に関する脆弱性	CWE-140 区切り文字の不適切な無害化	CVE-2026-33455	2026-04-21 10:49	2026-04-10	Show	GitHub Exploit DB Packet Storm

4474	7.6	重要 Network	Check MK	Check MK	Check MKにおける区切り文字の不適切な無害化に関する脆弱性	CWE-140 区切り文字の不適切な無害化	CVE-2026-33456	2026-04-21 10:49	2026-04-10	Show	GitHub Exploit DB Packet Storm

4475	6.3	警告 Network	Check MK	Check MK	Check MKにおける区切り文字の不適切な無害化に関する脆弱性	CWE-140 区切り文字の不適切な無害化	CVE-2026-33457	2026-04-21 10:48	2026-04-10	Show	GitHub Exploit DB Packet Storm

4476	7.5	重要 Network	goxmldsig project	goxmldsig	goxmldsig projectのgoxmldsigにおける複数の脆弱性	CWE-347 CWE-682	CVE-2026-33487	2026-04-21 10:48	2026-03-26	Show	GitHub Exploit DB Packet Storm

4477	8.7	重要 Local	Craig J. Bass (craigjbass)	ClearanceKit	Craig J. Bass (craigjbass)のClearanceKitにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-33631	2026-04-21 10:48	2026-03-26	Show	GitHub Exploit DB Packet Storm

4478	7.5	重要 Network	Moby Project	buildkit	Moby Projectのbuildkitにおける複数の脆弱性	CWE-22 CWE-59	CVE-2026-33748	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

4479	8.8	重要 Network	Intermesh	Group-Office	Intermesh BVのGroup-OfficeにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33755	2026-04-21 10:48	2026-03-27	Show	GitHub Exploit DB Packet Storm

4480	7.5	重要 Network	saleor	saleor	saleorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33756	2026-04-21 10:48	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	7.5	HIGH Network	mozilla	firefox thunderbird	Denial-of-service due to invalid pointer in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-8968	2026-05-20 23:56	2026-05-19	Show	GitHub Exploit DB Packet Storm

112	8.1	HIGH Network	mozilla	firefox thunderbird	Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. New	CWE-693 Protection Mechanism Failure	CVE-2026-8969	2026-05-20 23:55	2026-05-19	Show	GitHub Exploit DB Packet Storm

113	9.1	CRITICAL Network	mozilla	firefox thunderbird	Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. New	CWE-942 Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-8948	2026-05-20 23:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

114	7.5	HIGH Network	mozilla	firefox thunderbird	Integer overflow in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-190 Integer Overflow or Wraparound	CVE-2026-8949	2026-05-20 23:49	2026-05-19	Show	GitHub Exploit DB Packet Storm

115	6.5	MEDIUM Network	mozilla	firefox	Spoofing issue in the Toolbar component in Firefox for Android. This vulnerability was fixed in Firefox 151. New	CWE-290 Authentication Bypass by Spoofing	CVE-2026-8951	2026-05-20 23:48	2026-05-19	Show	GitHub Exploit DB Packet Storm

116	6.5	MEDIUM Network	mozilla	firefox thunderbird	Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. New	CWE-346 Origin Validation Error	CVE-2026-8971	2026-05-20 23:41	2026-05-19	Show	GitHub Exploit DB Packet Storm

117	9.8	CRITICAL Network	mozilla	firefox thunderbird	Integer overflow in the Networking: JAR component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-190 Integer Overflow or Wraparound	CVE-2026-8956	2026-05-20 23:31	2026-05-19	Show	GitHub Exploit DB Packet Storm

118	9.6	CRITICAL Network	mozilla	firefox thunderbird	Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-20 CWE-119 CWE-693 Improper Input Validation Incorrect Access of Indexable Resource ('Range Error') Protection Mechanism Failure	CVE-2026-8959	2026-05-20 23:28	2026-05-19	Show	GitHub Exploit DB Packet Storm

119	7.8	HIGH Local	-	-	In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`… New	CWE-305 Authentication Bypass by Primary Weakness	CVE-2026-41054	2026-05-20 23:25	2026-05-20	Show	GitHub Exploit DB Packet Storm

120	7.8	HIGH Local	-	-	MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability New	CWE-122 Heap-based Buffer Overflow	CVE-2026-22554	2026-05-20 23:25	2026-05-20	Show	GitHub Exploit DB Packet Storm