Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199931	8.6	重要 Network	Debian Inspire IRCd	-	InspIRCd の dns.cpp の DNS::GetResult 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-8702	2016-04-21 16:05	2015-04-16	Show	GitHub Exploit DB Packet Storm

199932	7.5	重要 Network	Debian Canonical Fedora Project libssh	-	libssh の package_cb.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-3146	2016-04-21 16:00	2015-04-30	Show	GitHub Exploit DB Packet Storm

199933	4.3	警告 Network	Tryton Debian	-	trytond の model/modelstorage.py におけるアクセス制限を回避される脆弱性が存在します。	CWE-264 認可・権限・アクセス制御	CVE-2015-0861	2016-04-21 15:50	2015-12-17	Show	GitHub Exploit DB Packet Storm

199934	5.3	警告 Network	Redmine Debian	-	Redmine の app/views/journals/index.builder における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-8537	2016-04-21 15:47	2015-12-5	Show	GitHub Exploit DB Packet Storm

199935	7.4	重要 Network	Redmine Debian	-	Redmine の app/controllers/application_controller.rb の valid_back_url 関数におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2015-8474	2016-04-21 15:47	2015-09-13	Show	GitHub Exploit DB Packet Storm

199936	4.3	警告 Network	Redmine Debian	-	Redmine の Issues API における changeset のメッセージの重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-8473	2016-04-21 15:47	2015-11-14	Show	GitHub Exploit DB Packet Storm

199937	5.3	警告 Network	Redmine Debian	-	Redmine の app/views/timelog/_form.html.erb における issues の subjects に関する重要な情報を取得される脆弱性	CWE-Other その他	CVE-2015-8346	2016-04-21 15:47	2015-11-14	Show	GitHub Exploit DB Packet Storm

199938	5.5	警告 Local	Fedora Project The GIFLIB project	-	giflib の giffix の giffix.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-7555	2016-04-21 15:45	2015-12-21	Show	GitHub Exploit DB Packet Storm

199939	6.1	警告 Local	Huawei	-	Huawei P8 および Mate S スマートフォンのソフトウェアの Video0 ドライバにおけるスタックメモリから重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2015-8682	2016-04-21 15:45	2015-12-25	Show	GitHub Exploit DB Packet Storm

199940	4.3	警告 Network	Huawei	-	Huawei FusionCompute のソフトウェアにおける重要な "ロールおよびパーミッション" 情報を取得される脆弱性	CWE-200 CWE-264	CVE-2015-8336	2016-04-21 15:45	2015-11-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1231	6.5	MEDIUM Network	mozilla	firefox thunderbird	Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-693 Protection Mechanism Failure	CVE-2026-6763	2026-04-23 02:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

1232	5.3	MEDIUM Network	mozilla	firefox thunderbird	Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6767	2026-04-23 02:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

1233	7.8	HIGH Local	civetweb_project	civetweb	Vulnerability related to an unquoted search path in CivetWeb v1.16. This vulnerability allows a local attacker to execute arbitrary code with elevated privileges by placing a malicious executable in … New	CWE-428 Unquoted Search Path or Element	CVE-2026-5789	2026-04-23 02:36	2026-04-22	Show	GitHub Exploit DB Packet Storm

1234	10.0	CRITICAL Network	nwclark	storable	Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigne… New	CWE-121 Stack-based Buffer Overflow	CVE-2017-20230	2026-04-23 02:36	2026-04-22	Show	GitHub Exploit DB Packet Storm

1235	8.1	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.5, all WebSocket endpoints in nginx-ui use a gorilla/websocket Upgrader with CheckOrigin unconditionally returning true… New	CWE-1385 Missing Origin Validation in WebSockets	CVE-2026-34403	2026-04-23 02:35	2026-04-21	Show	GitHub Exploit DB Packet Storm

1236	10.0	CRITICAL Network	atrodo	net\	Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt. Net::Dropbear versions before 0.14 includes versions of Dropbear 2019.78 or earlier. These include versions … New	NVD-CWE-noinfo	CVE-2025-15638	2026-04-23 02:35	2026-04-22	Show	GitHub Exploit DB Packet Storm

1237	9.8	CRITICAL Network	freescout	freescout	FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can access diagnostic and system tools that should be restricted to administrators.… New	CWE-200 CWE-284 CWE-770 Information Exposure Improper Access Control Allocation of Resources Without Limits or Throttling	CVE-2026-40498	2026-04-23 02:34	2026-04-22	Show	GitHub Exploit DB Packet Storm

1238	6.1	MEDIUM Network	freescout	freescout	FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, FreeScout's linkify() function in app/Misc/Helper.php converts plain-text URLs in email bodies into HTML anchor… New	CWE-79 Cross-site Scripting	CVE-2026-40565	2026-04-23 02:34	2026-04-22	Show	GitHub Exploit DB Packet Storm

1239	8.1	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, a user who was disabled by an administrator can use previously issued API tokens for up to the token lifetime. In pr… New	CWE-284 CWE-863 Improper Access Control Incorrect Authorization	CVE-2026-33031	2026-04-23 02:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

1240	7.5	HIGH Network	emqx	nanomq	NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Versions prior to 0.24.11 have a remotely triggerable heap buffer overflow in the `uri_param_parse` function of NanoMQ's REST API… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-32135	2026-04-23 02:32	2026-04-21	Show	GitHub Exploit DB Packet Storm