Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223731	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6779	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223732	7.5	危険	scripts-for-sites	-	SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6778	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223733	7.5	危険	scripts-for-sites	-	SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6776	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223734	6.8	警告	shopsystem-forum	-	K&S Shopsoftware の admin/editor/images.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2008-6768	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223735	10	危険	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるアプリケーションをアップグレードされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6767	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223736	5	警告	viart	-	ViArt Shop の cart_save.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-6766	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223737	5	警告	viart	-	ViArt Shop における任意のショッピングカートの中身にアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6765	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223738	4.3	警告	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるオープンリダイレクトの脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6762	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223739	4.3	警告	viart	-	ViArt Shop における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6760	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223740	4.3	警告	viart	-	ViArt Shop における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6759	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2571	7.3	HIGH Network	mozilla	firefox thunderbird	Una URL manipulada que contiene caracteres Unicode específicos podría haber ocultado el verdadero origen de la página, lo que podría dar lugar a un ataque de suplantación de identidad. Esta vulnerabi…	CWE-290 Authentication Bypass by Spoofing	CVE-2025-3029	2026-04-14 00:16	2025-04-1	Show	GitHub Exploit DB Packet Storm

2572	6.5	MEDIUM Network	mozilla	firefox thunderbird	JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability was fixed in Firefox 137, Firefox ESR 115.22, Firefox ESR 128.9, Thunde…	CWE-416 Use After Free	CVE-2025-3028	2026-04-14 00:16	2025-04-1	Show	GitHub Exploit DB Packet Storm

2573	6.5	MEDIUM Network	mozilla	firefox thunderbird	La ejecución de código JavaScript al transformar un documento con XSLTProcessor podría provocar un use-after-free. Esta vulnerabilidad afecta a Firefox < 137, Firefox ESR < 115.22, Firefox ESR …	CWE-416 Use After Free	CVE-2025-3028	2026-04-14 00:16	2025-04-1	Show	GitHub Exploit DB Packet Storm

2574	10.0	CRITICAL Network	mozilla	firefox	Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to retu…	NVD-CWE-noinfo CWE-668 Exposure of Resource to Wrong Sphere	CVE-2025-2857	2026-04-14 00:16	2025-03-27	Show	GitHub Exploit DB Packet Storm

2575	10.0	CRITICAL Network	mozilla	firefox	Tras la reciente fuga de la sandbox de Chrome (CVE-2025-2783), varios desarrolladores de Firefox identificaron un patrón similar en nuestro código IPC. Un proceso secundario comprometido podía provoc…	NVD-CWE-noinfo CWE-668 Exposure of Resource to Wrong Sphere	CVE-2025-2857	2026-04-14 00:16	2025-03-27	Show	GitHub Exploit DB Packet Storm

2576	6.3	MEDIUM Network	mozilla	thunderbird	By crafting a malformed file name for an attachment in a multipart message, an attacker can trick Thunderbird into including a directory listing of /tmp when the message is forwarded or edited as a n…	CWE-22 Path Traversal	CVE-2025-2830	2026-04-14 00:16	2025-04-16	Show	GitHub Exploit DB Packet Storm

2577	6.3	MEDIUM Network	mozilla	thunderbird	Al manipular un nombre de archivo mal formado para un archivo adjunto en un mensaje multiparte, un atacante puede engañar a Thunderbird para que incluya la lista de directorio /tmp al reenviar o edit…	CWE-22 Path Traversal	CVE-2025-2830	2026-04-14 00:16	2025-04-16	Show	GitHub Exploit DB Packet Storm

2578	8.8	HIGH Network	mozilla	firefox thunderbird	Thunderbird's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the user-privileged…	CWE-22 Path Traversal	CVE-2025-2817	2026-04-14 00:16	2025-04-29	Show	GitHub Exploit DB Packet Storm

2579	8.8	HIGH Network	mozilla	firefox thunderbird	El mecanismo de actualización de Mozilla Firefox permitía que un proceso de usuario de integridad media interfiriera con el actualizador a nivel de SYSTEM manipulando el comportamiento de bloqueo de …	CWE-22 Path Traversal	CVE-2025-2817	2026-04-14 00:16	2025-04-29	Show	GitHub Exploit DB Packet Storm

2580	5.4	MEDIUM Network	mozilla	firefox	Malicious websites utilizing a server-side redirect to an internal error page could result in a spoofed website URL. This vulnerability was fixed in Firefox for iOS 136.	CWE-601 Open Redirect	CVE-2025-27426	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm