Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233711	5.8	警告	The PHP Group	-	PHP の bz2 エクステンションにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3790	2012-09-25 16:47	2007-07-15	Show	GitHub Exploit DB Packet Storm

233712	7.5	危険	inmostore	-	Inmostore の admin/index.php における SQL インジェクションの脆弱性	-	CVE-2007-3789	2012-09-25 16:47	2007-07-15	Show	GitHub Exploit DB Packet Storm

233713	7.8	危険	os-cillation	-	Xfce Terminal の terminal/terminal.c の terminal_helper_execute 関数における任意のコマンドを実行される脆弱性	-	CVE-2007-3770	2012-09-25 16:47	2007-07-15	Show	GitHub Exploit DB Packet Storm

233714	5.8	警告	Netwin Ltd	-	SurgeFTP のミラーサーバ管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3769	2012-09-25 16:47	2007-07-15	Show	GitHub Exploit DB Packet Storm

233715	8.5	危険	Netwin Ltd	-	SurgeFTP のミラーメカニズムにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3768	2012-09-25 16:47	2007-07-15	Show	GitHub Exploit DB Packet Storm

233716	5	警告	ヒューレット・パッカード	-	HP OpenVMS の TCP/IP Services における認証を回避される脆弱性	-	CVE-2007-3730	2012-09-25 16:47	2007-07-12	Show	GitHub Exploit DB Packet Storm

233717	5	警告	ヒューレット・パッカード	-	HP OpenVMS の TCP/IP Services における有効な POP ユーザ名を列挙される脆弱性	-	CVE-2007-3729	2012-09-25 16:47	2007-07-12	Show	GitHub Exploit DB Packet Storm

233718	2.1	注意	マイクロソフト	-	Microsoft Windows XP カーネルのプロセススケジューラにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3724	2012-09-25 16:47	2007-07-12	Show	GitHub Exploit DB Packet Storm

233719	10	危険	IBM	-	IBM DB2 UDB DAS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-3676	2012-09-25 16:47	2008-02-12	Show	GitHub Exploit DB Packet Storm

233720	5	警告	mywebland	-	myWebland myBloggie における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-3650	2012-09-25 16:47	2008-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1311	6.3	MEDIUM Network	mozilla	firefox thunderbird	Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-290 Authentication Bypass by Spoofing	CVE-2026-6762	2026-04-23 02:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

1312	6.5	MEDIUM Network	mozilla	firefox thunderbird	Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-693 Protection Mechanism Failure	CVE-2026-6763	2026-04-23 02:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

1313	5.3	MEDIUM Network	mozilla	firefox thunderbird	Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6767	2026-04-23 02:37	2026-04-21	Show	GitHub Exploit DB Packet Storm

1314	7.8	HIGH Local	civetweb_project	civetweb	Vulnerability related to an unquoted search path in CivetWeb v1.16. This vulnerability allows a local attacker to execute arbitrary code with elevated privileges by placing a malicious executable in … New	CWE-428 Unquoted Search Path or Element	CVE-2026-5789	2026-04-23 02:36	2026-04-22	Show	GitHub Exploit DB Packet Storm

1315	10.0	CRITICAL Network	nwclark	storable	Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigne… New	CWE-121 Stack-based Buffer Overflow	CVE-2017-20230	2026-04-23 02:36	2026-04-22	Show	GitHub Exploit DB Packet Storm

1316	8.1	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.5, all WebSocket endpoints in nginx-ui use a gorilla/websocket Upgrader with CheckOrigin unconditionally returning true… New	CWE-1385 Missing Origin Validation in WebSockets	CVE-2026-34403	2026-04-23 02:35	2026-04-21	Show	GitHub Exploit DB Packet Storm

1317	10.0	CRITICAL Network	atrodo	net\	Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt. Net::Dropbear versions before 0.14 includes versions of Dropbear 2019.78 or earlier. These include versions … New	NVD-CWE-noinfo	CVE-2025-15638	2026-04-23 02:35	2026-04-22	Show	GitHub Exploit DB Packet Storm

1318	9.8	CRITICAL Network	freescout	freescout	FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can access diagnostic and system tools that should be restricted to administrators.… New	CWE-200 CWE-284 CWE-770 Information Exposure Improper Access Control Allocation of Resources Without Limits or Throttling	CVE-2026-40498	2026-04-23 02:34	2026-04-22	Show	GitHub Exploit DB Packet Storm

1319	6.1	MEDIUM Network	freescout	freescout	FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, FreeScout's linkify() function in app/Misc/Helper.php converts plain-text URLs in email bodies into HTML anchor… New	CWE-79 Cross-site Scripting	CVE-2026-40565	2026-04-23 02:34	2026-04-22	Show	GitHub Exploit DB Packet Storm

1320	8.1	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, a user who was disabled by an administrator can use previously issued API tokens for up to the token lifetime. In pr… New	CWE-284 CWE-863 Improper Access Control Incorrect Authorization	CVE-2026-33031	2026-04-23 02:33	2026-04-21	Show	GitHub Exploit DB Packet Storm