Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223891	7.8	危険	rakhisoftware	-	RakhiSoftware Price Comparison Script における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-6279	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223892	4.3	警告	rakhisoftware	-	RakhiSoftware Price Comparison Script の product.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6278	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223893	7.5	危険	rakhisoftware	-	RakhiSoftware Price Comparison Script の product.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6277	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223894	6.8	警告	tbmnet	-	TBmnetCMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6271	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223895	7.5	危険	sadi samami	-	WEBBDOMAIN Multi Languages WebShop Online の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6268	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

223896	7.5	危険	ultrastats	-	Ultrastats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6260	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223897	4.3	警告	quadcomm	-	QuadComm Q-Shop の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6259	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223898	7.5	危険	quadcomm	-	QuadComm Q-Shop の users.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6258	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223899	6.5	警告	vBulletin Solutions, Inc.	-	vBulletin の admincp/admincalendar.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6256	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

223900	6.5	警告	vBulletin Solutions, Inc.	-	vBulletin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6255	2012-12-20 19:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1631	5.4	MEDIUM Network	mozilla	firefox	The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow attackers to open arbitrary website URLs or internal pages if a user was tricked into clicking a link. T… New	CWE-601 Open Redirect	CVE-2025-54144	2026-04-14 00:17	2025-08-20	Show	GitHub Exploit DB Packet Storm

1632	5.4	MEDIUM Network	mozilla	firefox	El esquema de URL utilizado por Firefox para facilitar la búsqueda de consultas de texto podría permitir incorrectamente a los atacantes abrir URL de sitios web arbitrarios o páginas internas si un u… New	CWE-601 Open Redirect	CVE-2025-54144	2026-04-14 00:17	2025-08-20	Show	GitHub Exploit DB Packet Storm

1633	9.8	CRITICAL Network	mozilla	firefox	Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page. This vulnerability was fixed in Firefox for iOS… New	CWE-693 Protection Mechanism Failure	CVE-2025-54143	2026-04-14 00:17	2025-08-20	Show	GitHub Exploit DB Packet Storm

1634	9.8	CRITICAL Network	mozilla	firefox	Los iframes de la sandbox en páginas web podrían permitir descargas al dispositivo, eludiendo las restricciones de espacio aislado esperadas declaradas en la página principal. Esta vulnerabilidad afe… New	CWE-693 Protection Mechanism Failure	CVE-2025-54143	2026-04-14 00:17	2025-08-20	Show	GitHub Exploit DB Packet Storm

1635	8.8	HIGH Network	mozilla	firefox thunderbird	An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing array index sizes. This vulnerability was fixed in Firefox 138.0.4, Firefox ESR 128.10.1, Firefox ES… Update	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2025-4919	2026-04-14 00:17	2025-05-18	Show	GitHub Exploit DB Packet Storm

1636	8.8	HIGH Network	mozilla	firefox thunderbird	Un atacante logró realizar una lectura o escritura fuera de los límites en un objeto JavaScript al confundir el tamaño del índice de la matriz. Esta vulnerabilidad afecta a Firefox (versión anterior … Update	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2025-4919	2026-04-14 00:17	2025-05-18	Show	GitHub Exploit DB Packet Storm

1637	9.8	CRITICAL Network	mozilla	firefox thunderbird	An attacker was able to perform an out-of-bounds read or write on a JavaScript `Promise` object. This vulnerability was fixed in Firefox 138.0.4, Firefox ESR 128.10.1, Firefox ESR 115.23.1, Thunderbi… Update	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2025-4918	2026-04-14 00:17	2025-05-18	Show	GitHub Exploit DB Packet Storm

1638	9.8	CRITICAL Network	mozilla	firefox thunderbird	Un atacante logró realizar una lectura o escritura fuera de los límites en un objeto "Promise" de JavaScript. Esta vulnerabilidad afecta a Firefox (versión anterior a 138.0.4), Firefox ESR (versión a… Update	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2025-4918	2026-04-14 00:17	2025-05-18	Show	GitHub Exploit DB Packet Storm

1639	8.1	HIGH Network	mozilla	firefox thunderbird	Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbit… Update	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-4093	2026-04-14 00:17	2025-04-29	Show	GitHub Exploit DB Packet Storm

1640	8.1	HIGH Network	mozilla	firefox thunderbird	Error de seguridad de memoria presente en Firefox ESR 128.9 y Thunderbird 128.9. Este error mostró evidencia de corrupción de memoria y presumimos que, con suficiente esfuerzo, podría haberse explota… Update	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-4093	2026-04-14 00:17	2025-04-29	Show	GitHub Exploit DB Packet Storm