Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233541	9.3	危険	Irssi	-	irssi の ixmmsa.pl スクリプトなどにおける CRLF インジェクションの脆弱性	-	CVE-2007-4396	2012-09-25 16:59	2007-08-18	Show	GitHub Exploit DB Packet Storm

233542	4.3	警告	Nullsoft	-	Winamp におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4392	2012-09-25 16:59	2007-08-17	Show	GitHub Exploit DB Packet Storm

233543	6.8	警告	OWASP	-	OWASP Stinger における入力検証ルーチンを回避される脆弱性	-	CVE-2007-4385	2012-09-25 16:59	2007-08-17	Show	GitHub Exploit DB Packet Storm

233544	6	警告	Netwin Ltd	-	SurgeMail の IMAP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-4377	2012-09-25 16:59	2007-08-16	Show	GitHub Exploit DB Packet Storm

233545	10	危険	Netwin Ltd	-	NetWin SurgeMail における脆弱性	CWE-noinfo 情報不足	CVE-2007-4372	2012-09-25 16:59	2007-08-16	Show	GitHub Exploit DB Packet Storm

233546	6.8	警告	hotscripts	-	Neuron Blog の admin/pages/blog-add.php における任意の PHP ファイルを実行される脆弱性	-	CVE-2007-4371	2012-09-25 16:59	2007-08-15	Show	GitHub Exploit DB Packet Storm

233547	7.5	危険	IBM	-	IBM Rational CQ Web の /main 配下における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4368	2012-09-25 16:59	2007-08-15	Show	GitHub Exploit DB Packet Storm

233548	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	-	CVE-2007-4367	2012-09-25 16:59	2007-08-15	Show	GitHub Exploit DB Packet Storm

233549	10	危険	ネットギア	-	NETGEAR ReadyNAS RAIDiator におけるパスワードを推測される脆弱性	-	CVE-2007-4361	2012-09-25 16:59	2007-08-15	Show	GitHub Exploit DB Packet Storm

233550	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるステータスバーのコンテンツを偽造される脆弱性	-	CVE-2007-4357	2012-09-25 16:59	2007-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1521	7.8	HIGH Local	foxit	pdf_editor pdf_reader	La aplicación no valida correctamente la vida útil y la validez de los punteros internos de la caché de vistas después de que JavaScript cambia el zoom del documento y el estado de la página. Cuando …	CWE-416 Use After Free	CVE-2026-3777	2026-04-15 02:54	2026-04-1	Show	GitHub Exploit DB Packet Storm

1522	5.5	MEDIUM Local	foxit	pdf_editor pdf_reader	The application does not detect or guard against cyclic PDF object references while handling JavaScript in PDF. When pages and annotations are crafted that reference each other in a loop, passing the…	CWE-674 Uncontrolled Recursion	CVE-2026-3778	2026-04-15 02:50	2026-04-1	Show	GitHub Exploit DB Packet Storm

1523	5.5	MEDIUM Local	foxit	pdf_editor pdf_reader	La aplicación no detecta ni protege contra referencias cíclicas de objetos PDF al manejar JavaScript en PDF. Cuando se elaboran páginas y anotaciones que se referencian mutuamente en un bucle, al pas…	CWE-674 Uncontrolled Recursion	CVE-2026-3778	2026-04-15 02:50	2026-04-1	Show	GitHub Exploit DB Packet Storm

1524	4.8	MEDIUM Adjacent	openwrt	luci openwrt	LuCI is the OpenWrt Configuration Interface. Versions prior to both 24.10.5 and 25.12.0, contain a stored XSS vulnerability in the wireless scan modal, where SSID values from scan results are rendere…	CWE-79 Cross-site Scripting	CVE-2026-32721	2026-04-15 02:49	2026-03-20	Show	GitHub Exploit DB Packet Storm

1525	4.8	MEDIUM Adjacent	openwrt	luci openwrt	LuCI es la interfaz de configuración de OpenWrt. Las versiones anteriores a la 24.10.5 y a la 25.12.0 contienen una vulnerabilidad de XSS almacenado en el modal de escaneo inalámbrico, donde los valo…	CWE-79 Cross-site Scripting	CVE-2026-32721	2026-04-15 02:49	2026-03-20	Show	GitHub Exploit DB Packet Storm

1526	8.8	HIGH Network	getqui	qui	qui is a web interface for managing qBittorrent instances. Versions 1.14.1 and below use a permissive CORS policy that reflects arbitrary origins while also returning Access-Control-Allow-Credentials…	CWE-942 NVD-CWE-Other Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-30924	2026-04-15 02:48	2026-03-20	Show	GitHub Exploit DB Packet Storm

1527	8.8	HIGH Network	getqui	qui	qui es una interfaz web para gestionar instancias de qBittorrent. Las versiones 1.14.1 e inferiores utilizan una política CORS permisiva que refleja orígenes arbitrarios y también devuelve Access-Con…	CWE-942 NVD-CWE-Other Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-30924	2026-04-15 02:48	2026-03-20	Show	GitHub Exploit DB Packet Storm

1528	7.5	HIGH Network	windmill	windmill	Windmill is an open-source developer platform for internal code: APIs, background jobs, workflows and UIs. Prior to version 1.603.3, an unauthenticated path traversal vulnerability exists in Windmill…	CWE-22 Path Traversal	CVE-2026-29059	2026-04-15 02:48	2026-03-6	Show	GitHub Exploit DB Packet Storm

1529	7.5	HIGH Network	windmill	windmill	Windmill es una plataforma para desarrolladores de código abierto para código interno: APIs, trabajos en segundo plano, flujos de trabajo e interfaces de usuario. Antes de la versión 1.603.3, existe …	CWE-22 Path Traversal	CVE-2026-29059	2026-04-15 02:48	2026-03-6	Show	GitHub Exploit DB Packet Storm

1530	2.7	LOW Network	oretnom23	computer_and_mobile_repair_shop_management_system	Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL Injection in the file /rsms/admin/services/view_service.php.	CWE-89 SQL Injection	CVE-2026-36947	2026-04-15 02:43	2026-04-13	Show	GitHub Exploit DB Packet Storm