Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224671	10	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3042	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

224672	7.5	危険	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3041	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

224673	5	警告	TYPO3 Association	-	TYPO3 用の DAM Frontend エクステンションにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3040	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

224674	4.3	警告	Vtiger	-	vtiger CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3101	2012-12-20 18:52	2008-09-3	Show	GitHub Exploit DB Packet Storm

224675	6.5	警告	phplizardo	-	ImperialBB における任意の PHP コードをアップロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-3093	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

224676	7.5	危険	xpoze	-	Xpoze Pro の user.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3089	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

224677	7.5	危険	Simple Machines	-	SMF における脆弱性	CWE-noinfo 情報不足	CVE-2008-3073	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

224678	7.5	危険	Simple Machines	-	Simple Machines Forum における脆弱性	CWE-189 数値処理の問題	CVE-2008-3072	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

224679	2.1	注意	SUSE	-	SUSE openSUSE の sudo におけるパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-3067	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

224680	7.5	危険	v-webmail	-	V-webmail の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3063	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1261	7.5	HIGH Network	mozilla	firefox thunderbird	Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t… New	CWE-125 CWE-416 CWE-787 Out-of-bounds Read Use After Free Out-of-bounds Write	CVE-2026-6784	2026-04-23 01:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

1262	7.5	HIGH Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-6772	2026-04-23 01:04	2026-04-21	Show	GitHub Exploit DB Packet Storm

1263	7.2	HIGH Network	sanjay1313	visitor_management_system	Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without an… New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-37748	2026-04-23 01:02	2026-04-22	Show	GitHub Exploit DB Packet Storm

1264	8.2	HIGH Network	hcltech	bigfix_service_management	HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP request smuggling vulnerabilities arise when websites route HTTP requests through web servers with inconsistent HTTP pars… New	CWE-444 HTTP Request Smuggling	CVE-2025-31958	2026-04-23 01:01	2026-04-22	Show	GitHub Exploit DB Packet Storm

1265	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-190 Integer Overflow or Wraparound	CVE-2026-6783	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1266	7.5	HIGH Network	mozilla	firefox thunderbird	Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-200 Information Exposure	CVE-2026-6782	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1267	5.3	MEDIUM Network	mozilla	firefox thunderbird	Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-20 CWE-79 CWE-119 Improper Input Validation Cross-site Scripting Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6779	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1268	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6775	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm

1269	5.4	MEDIUM Network	mozilla	firefox thunderbird	Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-693 Protection Mechanism Failure	CVE-2026-6774	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm

1270	7.5	HIGH Network	mozilla	firefox thunderbird	Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-190 Integer Overflow or Wraparound	CVE-2026-6773	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm