Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233131	4.3	警告	Liferay	-	Liferay Enterprise Portal の c/portal/login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6173	2012-09-25 16:59	2007-11-29	Show	GitHub Exploit DB Packet Storm

233132	6.8	警告	iaprcommence	-	IAPR COMMENCE における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6147	2012-09-25 16:59	2007-11-27	Show	GitHub Exploit DB Packet Storm

233133	6.8	警告	mp3	-	Mp3 ToolBox の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6139	2012-09-25 16:59	2007-11-27	Show	GitHub Exploit DB Packet Storm

233134	7.5	危険	p3mbo	-	Content Injector の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6137	2012-09-25 16:59	2007-11-27	Show	GitHub Exploit DB Packet Storm

233135	4.3	警告	m2scripts	-	M2Scripts の MySpace Sctipts Poll Creator におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6136	2012-09-25 16:59	2007-11-27	Show	GitHub Exploit DB Packet Storm

233136	10	危険	irc services	-	IRC Services における脆弱性	CWE-noinfo 情報不足	CVE-2007-6123	2012-09-25 16:59	2007-11-26	Show	GitHub Exploit DB Packet Storm

233137	5	警告	irc services	-	IRC Services の encrypt.c の default_encrypt 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6122	2012-09-25 16:59	2007-11-26	Show	GitHub Exploit DB Packet Storm

233138	5	警告	ihu	-	IHU におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6103	2012-09-25 16:59	2007-11-23	Show	GitHub Exploit DB Packet Storm

233139	10	危険	ingate	-	Ingate Firewall および SIParator における不正な操作を実施される脆弱性	CWE-DesignError	CVE-2007-6099	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233140	7.5	危険	ingate	-	Ingate Firewall および SIParator における有効なログイン認証情報を推測される脆弱性	CWE-DesignError	CVE-2007-6098	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1341	5.3	MEDIUM Network	mozilla	firefox thunderbird	Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-476 CWE-824 NULL Pointer Dereference Access of Uninitialized Pointer	CVE-2026-6778	2026-04-23 01:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

1342	7.5	HIGH Network	mozilla	firefox thunderbird	Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t…	CWE-125 CWE-416 CWE-787 Out-of-bounds Read Use After Free Out-of-bounds Write	CVE-2026-6784	2026-04-23 01:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

1343	7.5	HIGH Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-6772	2026-04-23 01:04	2026-04-21	Show	GitHub Exploit DB Packet Storm

1344	7.2	HIGH Network	sanjay1313	visitor_management_system	Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without an…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-37748	2026-04-23 01:02	2026-04-22	Show	GitHub Exploit DB Packet Storm

1345	8.2	HIGH Network	hcltech	bigfix_service_management	HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP request smuggling vulnerabilities arise when websites route HTTP requests through web servers with inconsistent HTTP pars…	CWE-444 HTTP Request Smuggling	CVE-2025-31958	2026-04-23 01:01	2026-04-22	Show	GitHub Exploit DB Packet Storm

1346	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-190 Integer Overflow or Wraparound	CVE-2026-6783	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1347	7.5	HIGH Network	mozilla	firefox thunderbird	Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-200 Information Exposure	CVE-2026-6782	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1348	5.3	MEDIUM Network	mozilla	firefox thunderbird	Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-20 CWE-79 CWE-119 Improper Input Validation Cross-site Scripting Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6779	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1349	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6775	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm

1350	5.4	MEDIUM Network	mozilla	firefox thunderbird	Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-693 Protection Mechanism Failure	CVE-2026-6774	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm