Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224051	4.3	警告	WordPress.org	-	WordPress 用の Page Flip Image Gallery プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5752	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

224052	7.5	危険	Pligg	-	Pligg CMS の evb/check_url.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5739	2012-12-20 19:10	2008-12-26	Show	GitHub Exploit DB Packet Storm

224053	7.5	危険	PHP-Fusion	-	PHP-Fusion 用の Team Impact TI Blog System モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5733	2012-12-20 19:10	2008-12-26	Show	GitHub Exploit DB Packet Storm

224054	7.5	危険	stormboards aaronnemisis	-	stormBoards の thread.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5726	2012-12-20 19:10	2008-12-26	Show	GitHub Exploit DB Packet Storm

224055	10	危険	sawstudio	-	SAWStudio におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5722	2012-12-20 19:10	2008-12-26	Show	GitHub Exploit DB Packet Storm

224056	7.8	危険	Fabrice Bellard	-	Qemu の monitor.c における VNC パスワードを推測される脆弱性	CWE-189 数値処理の問題	CVE-2008-5714	2012-12-20 19:10	2008-12-24	Show	GitHub Exploit DB Packet Storm

224057	7.5	危険	slimcms	-	SlimCMS の redirect.php における管理ユーザを作成される脆弱性	CWE-287 不適切な認証	CVE-2008-5708	2012-12-20 19:10	2008-12-24	Show	GitHub Exploit DB Packet Storm

224058	6.9	警告	verlihub-project	-	Verlihub のデーモンにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5706	2012-12-20 19:10	2008-12-22	Show	GitHub Exploit DB Packet Storm

224059	9.3	危険	verlihub-project	-	Verlihub のデーモンにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5705	2012-12-20 19:10	2008-12-22	Show	GitHub Exploit DB Packet Storm

224060	4.3	警告	Skype Technologies S.A.	-	Firefox 用の Skype エクステンションにおける任意のデータをクリップボードに上書きされる脆弱性	CWE-DesignError	CVE-2008-5697	2012-12-20 19:10	2008-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2581	5.4	MEDIUM Network	mozilla	firefox	Sitios web maliciosos que utilicen una redirección del lado del servidor a una página de error interno podrían permitir mostrar una URL falsa para el sitio web. Esta vulnerabilidad afecta a Firefox p…	CWE-601 Open Redirect	CVE-2025-27426	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm

2582	4.3	MEDIUM Network	mozilla	firefox	Scanning certain QR codes that included text with a website URL could allow the URL to be opened without presenting the user with a confirmation alert first. This vulnerability was fixed in Firefox f…	CWE-287 Improper Authentication	CVE-2025-27425	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm

2583	4.3	MEDIUM Network	mozilla	firefox	Escanear ciertos códigos QR que incluían texto con la URL de un sitio web podría permitir que la URL se abriera sin presentar primero al usuario una alerta de confirmación. Esta vulnerabilidad afecta…	CWE-287 Improper Authentication	CVE-2025-27425	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm

2584	4.3	MEDIUM Network	mozilla	firefox	Websites redirecting to a non-HTTP scheme URL could allow a website address to be spoofed for a malicious page. This vulnerability was fixed in Firefox for iOS 136.	CWE-601 Open Redirect	CVE-2025-27424	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm

2585	4.3	MEDIUM Network	mozilla	firefox	Los sitios web que redireccionan a una URL con un esquema que no sea HTTP podrían permitir que la dirección de un sitio web se falsifique para una página maliciosa. Esta vulnerabilidad afecta a Firef…	CWE-601 Open Redirect	CVE-2025-27424	2026-04-14 00:16	2025-03-4	Show	GitHub Exploit DB Packet Storm

2586	7.0	HIGH Network	mozilla	thunderbird	Certain crafted MIME email messages that claimed to contain an encrypted OpenPGP message, which instead contained an OpenPGP signed message, were wrongly shown as being encrypted. This vulnerability …	CWE-290 Authentication Bypass by Spoofing	CVE-2025-26696	2026-04-14 00:16	2025-03-11	Show	GitHub Exploit DB Packet Storm

2587	7.0	HIGH Network	mozilla	thunderbird	Algunos mensajes de correo electrónico con MIME manipulados a medida que afirmaban contener un mensaje OpenPGP cifrado, cuando en realidad contenían un mensaje firmado con OpenPGP, se mostraban errón…	CWE-290 Authentication Bypass by Spoofing	CVE-2025-26696	2026-04-14 00:16	2025-03-11	Show	GitHub Exploit DB Packet Storm

2588	5.3	MEDIUM Local	mozilla	thunderbird	When requesting an OpenPGP key from a WKD server, an incorrect padding size was used and a network observer could have learned the length of the requested email address. This vulnerability was fixed …	NVD-CWE-noinfo	CVE-2025-26695	2026-04-14 00:16	2025-03-11	Show	GitHub Exploit DB Packet Storm

2589	5.3	MEDIUM Local	mozilla	thunderbird	Al solicitar una clave OpenPGP a un servidor WKD, se utilizó un tamaño de relleno incorrecto y un observador de la red podría haber descubierto la longitud de la dirección de correo electrónico solic…	NVD-CWE-noinfo	CVE-2025-26695	2026-04-14 00:16	2025-03-11	Show	GitHub Exploit DB Packet Storm

2590	6.5	MEDIUM Network	mozilla	firefox	Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address. This vulnerability was fixed in Firefox for iOS 134.	CWE-346 Origin Validation Error	CVE-2025-23109	2026-04-14 00:16	2025-01-11	Show	GitHub Exploit DB Packet Storm