Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233141	10	危険	ingate	-	Ingate Firewall および SIParator の ICMP 実装における脆弱性	CWE-noinfo 情報不足	CVE-2007-6097	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233142	5	警告	ingate	-	Ingate Firewall および SIParator における平文パスワードを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-6096	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233143	4	警告	ingate	-	Ingate Firewall などの SIP コンポーネントにおけるその他のユーザ宛のメッセージを受信される脆弱性	CWE-200 CWE-DesignError	CVE-2007-6095	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233144	4.3	警告	ingate	-	Ingate Firewall などの VPN コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6094	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233145	7.1	危険	ingate	-	Ingate Firewall などの SRTP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6093	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233146	10	危険	ingate	-	Ingate Firewall などの libsrtp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6092	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233147	7.5	危険	jiro	-	JBS の files/login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6091	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233148	4.3	警告	Nuked-Klan	-	Nuked-Klan の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6090	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233149	9.3	危険	mebiblio	-	meBiblio の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6089	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

233150	7.5	危険	hotscripts	-	HotScripts の Clone Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6084	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1301	4.8	MEDIUM Network	cryptomator	cryptomator	Cryptomator is an open-source client-side encryption application for cloud storage. Version 1.19.1 contains a logic flaw in CheckHostTrustController.getAuthority() that allows an attacker to bypass t…	CWE-305 CWE-319 Authentication Bypass by Primary Weakness Cleartext Transmission of Sensitive Information	CVE-2026-33472	2026-04-23 03:44	2026-04-17	Show	GitHub Exploit DB Packet Storm

1302	7.1	HIGH Local	openexr	openexr	OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.4.0 through 3.4.9, 3.3.0 through 3.3.9, …	CWE-190 Integer Overflow or Wraparound	CVE-2026-40250	2026-04-23 03:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

1303	7.1	HIGH Local	openexr	openexr	OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.4.0 through 3.4.9, 3.3.0 through 3.3.9, …	CWE-190 Integer Overflow or Wraparound	CVE-2026-40244	2026-04-23 03:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

1304	5.3	MEDIUM Network	openexr	openexr	OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Versions 3.4.0 through 3.4.9 have a signed integer ove…	CWE-190 Integer Overflow or Wraparound	CVE-2026-39886	2026-04-23 03:41	2026-04-21	Show	GitHub Exploit DB Packet Storm

1305	6.3	MEDIUM Local	nicolargo	glances	Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Cassandra export module (`glances/exports/glances_cassandra/__init__.py`) interpolates `keyspace`, `table`…	CWE-89 SQL Injection	CVE-2026-35588	2026-04-23 03:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

1306	7.5	HIGH Network	littlecms	little_cms	Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.	CWE-696 CWE-190 Incorrect Behavior Order Integer Overflow or Wraparound	CVE-2026-41254	2026-04-23 03:34	2026-04-18	Show	GitHub Exploit DB Packet Storm

1307	7.3	HIGH Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6753	2026-04-23 02:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

1308	7.5	HIGH Network	mozilla	firefox	Mitigation bypass in Firefox for Android. This vulnerability was fixed in Firefox 150.	CWE-200 Information Exposure	CVE-2026-6756	2026-04-23 02:40	2026-04-21	Show	GitHub Exploit DB Packet Storm

1309	6.3	MEDIUM Network	mozilla	firefox thunderbird	Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.	CWE-824 Access of Uninitialized Pointer	CVE-2026-6757	2026-04-23 02:39	2026-04-21	Show	GitHub Exploit DB Packet Storm

1310	9.8	CRITICAL Network	mozilla	firefox thunderbird	Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2026-6760	2026-04-23 02:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed