Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1591 4.3 警告
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品における認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-0887 2026-01-27 17:33 2026-01-13 Show GitHub Exploit DB Packet Storm
1592 5.3 警告
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-0888 2026-01-27 17:33 2026-01-13 Show GitHub Exploit DB Packet Storm
1593 5.4 警告
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-0890 2026-01-27 17:33 2026-01-13 Show GitHub Exploit DB Packet Storm
1594 8.1 重要
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-0891 2026-01-27 17:33 2026-01-13 Show GitHub Exploit DB Packet Storm
1595 9.8 緊急
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-0892 2026-01-27 17:33 2026-01-13 Show GitHub Exploit DB Packet Storm
1596 9.8 緊急
Network 		シスコシステムズ Cisco Unified Communications Manager IM and Presence Service
Cisco Unity Connection
Cisco Unified Communications Manager 		シスコシステムズのCisco Unified Communications Manager等の複数製品におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-20045 2026-01-27 17:33 2026-01-21 Show GitHub Exploit DB Packet Storm
1597 4.3 警告
Network 		NetApp ONTAP NetAppのONTAPにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-22050 2026-01-27 17:33 2026-01-12 Show GitHub Exploit DB Packet Storm
1598 9.8 緊急
Network 		Docmost Docmost Docmostにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-22249 2026-01-27 17:33 2026-01-15 Show GitHub Exploit DB Packet Storm
1599 9.8 緊急
Network 		Tencent WeKnora TencentのWeKnoraにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-22687 2026-01-27 17:33 2026-01-10 Show GitHub Exploit DB Packet Storm
1600 8.8 重要
Network 		Tencent WeKnora TencentのWeKnoraにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-22688 2026-01-27 17:32 2026-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283411 - coolplayer coolplayer Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long (1… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6609 2018-10-16 06:55 2008-01-1 Show GitHub Exploit DB Packet Storm
283412 - simpleforum simpleforum Cross-site scripting (XSS) vulnerability in simpleforum.cgi in SimpleForum 4.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchkey parameter in a search act… CWE-79
Cross-site Scripting 		CVE-2007-6616 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283413 - feng feng Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute arbitrary code via (1) a long first line … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6626 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283414 - feng feng Integer overflow in the RTSP_remove_msg function in RTSP_lowlevel.c in LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code … CWE-189
Numeric Errors 		CVE-2007-6627 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283415 - feng feng LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via (1) a malformed Transport header, which triggers misparsing in parse_transp… NVD-CWE-Other
CVE-2007-6628 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283416 - feng feng Interpretation conflict in LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a User-Agent header line that contains a carriag… NVD-CWE-Other
CVE-2007-6629 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283417 - feng feng The Url_init function in utils/url.c in Netembryo 0.0.4, when used by LScube Feng, allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a malformed URI contain… NVD-CWE-Other
CVE-2007-6630 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283418 - lscube libnemesi Multiple buffer overflows in LScube libnemesi 0.6.4-rc1 and earlier allow remote attackers to execute arbitrary code via (1) a reply that begins with a long version string, which triggers an overflow… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6631 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283419 - netbizcity faqmasterflexplus Multiple cross-site scripting (XSS) vulnerabilities in FAQMasterFlexPlus, possibly 1.5 or 1.52, allow remote attackers to inject arbitrary web script or HTML via (1) the cat_name parameter to faq.php… CWE-79
Cross-site Scripting 		CVE-2007-6633 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm
283420 - netbizcity faqmasterflexplus Multiple SQL injection vulnerabilities in FAQMasterFlexPlus, possibly 1.5 or 1.52, allow remote attackers to execute arbitrary SQL commands via the category_id parameter to faq.php, and unspecified o… CWE-89
SQL Injection 		CVE-2007-6634 2018-10-16 06:55 2008-01-4 Show GitHub Exploit DB Packet Storm