Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223901 6.8 警告 Pluck CMS - Pluck の data/inc/lib/pcltar.lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6253 2012-12-20 19:10 2009-02-24 Show GitHub Exploit DB Packet Storm
223902 7.2 危険 smcfancontrol - smcFanControl の smc プログラムにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6252 2012-12-20 19:10 2009-02-24 Show GitHub Exploit DB Packet Storm
223903 6.8 警告 scripts - phpFan の includes/init.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6251 2012-12-20 19:10 2009-02-24 Show GitHub Exploit DB Packet Storm
223904 7.5 危険 scripts-for-sites - SFS EZ Top Sites の topsite.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6247 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223905 7.5 危険 scripts-for-sites - SFS EZ Webring の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6246 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223906 7.5 危険 scripts-for-sites - SFS EZ BIZ PRO の track.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6245 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223907 7.5 危険 scripts-for-sites - SFS EZ Gaming Cheats の view_reviews.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6244 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223908 7.5 危険 scripts-for-sites - SFS Hotscripts-like Site の showcategory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6243 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223909 7.5 危険 scripts-for-sites - SFS EZ e-store の SearchResults.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6242 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
223910 7.5 危険 scripts-for-sites - SFS Hotscripts-like Site の software-description.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6237 2012-12-20 19:10 2009-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2191 10.0 CRITICAL
Network 		mozilla firefox
thunderbird 		Escape de sandbox en el componente Gráficos: WebRender. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, y Thunderbird < 140.8. NVD-CWE-noinfo
CWE-693
 Protection Mechanism Failure 		CVE-2026-2761 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2192 10.0 CRITICAL
Network 		mozilla firefox
thunderbird 		Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thun… NVD-CWE-noinfo
CWE-1384
CVE-2026-2760 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2193 10.0 CRITICAL
Network 		mozilla firefox
thunderbird 		Escape de sandbox debido a condiciones de límite incorrectas en el componente Graphics: WebRender. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thun… NVD-CWE-noinfo
CWE-1384
CVE-2026-2760 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2194 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Incorrect boundary conditions in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8. NVD-CWE-noinfo
CWE-1384
CVE-2026-2759 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2195 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Condiciones de contorno incorrectas en el componente Graphics: ImageLib. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, y Thunde… NVD-CWE-noinfo
CWE-1384
CVE-2026-2759 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2196 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8. CWE-416
 Use After Free 		CVE-2026-2758 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2197 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Uso después de liberación en el componente JavaScript: GC. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, y Thunderbird < 140… CWE-416
 Use After Free 		CVE-2026-2758 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2198 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8. NVD-CWE-noinfo
CWE-1384
CVE-2026-2757 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2199 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		Condiciones de contorno incorrectas en el componente WebRTC: Audio/Video. Esta vulnerabilidad afecta a Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140.8, Thunderbird < 148, y Thund… NVD-CWE-noinfo
CWE-1384
CVE-2026-2757 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm
2200 9.8 CRITICAL
Network 		mozilla firefox Malicious scripts could cause desynchronization between the address bar and web content before a response is received in Firefox iOS, allowing attacker-controlled pages to be presented under spoofed … NVD-CWE-noinfo
CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-2634 2026-04-14 00:17 2026-02-24 Show GitHub Exploit DB Packet Storm