Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233741	2.1	注意	NetBSD	-	NetBSD の display driver allocattr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-3654	2012-09-25 16:47	2007-09-17	Show	GitHub Exploit DB Packet Storm

233742	6.8	警告	ヒューレット・パッカード	-	HP Digital Imaging の hpqvwocx.dll における絶対パストラバーサルの脆弱性	-	CVE-2007-3649	2012-09-25 16:47	2007-07-10	Show	GitHub Exploit DB Packet Storm

233743	7.8	危険	Linux	-	Linux kernel の net/netfilter/nf_conntrack_h323_asn1.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2007-3642	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233744	7.5	危険	mkportal	-	MKPortal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3637	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233745	6.8	警告	LimeSurvey	-	LimeSurvey における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3632	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233746	10	危険	levent veysi portal	-	Levent Veysi Portal の oku.asp における SQL インジェクションの脆弱性	-	CVE-2007-3629	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233747	5	警告	PEAR	-	PEAR Structures-DataGrid-DataSource-MDB2 の MDB2.php における "生成されたソートクエリを操作される" 脆弱性	-	CVE-2007-3628	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233748	7.5	危険	php lite	-	PHP Lite Calendar Express における SQL インジェクションの脆弱性	-	CVE-2007-3627	2012-09-25 16:47	2007-07-9	Show	GitHub Exploit DB Packet Storm

233749	7.8	危険	日立	-	Hitachi TPBroker の ADM デーモンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2007-3626	2012-09-25 16:47	2007-07-6	Show	GitHub Exploit DB Packet Storm

233750	4.3	警告	日立	-	Hitachi JP1/HiCommand Device Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3623	2012-09-25 16:47	2007-07-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1341	5.3	MEDIUM Network	mozilla	firefox thunderbird	Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-476 CWE-824 NULL Pointer Dereference Access of Uninitialized Pointer	CVE-2026-6778	2026-04-23 01:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

1342	7.5	HIGH Network	mozilla	firefox thunderbird	Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t… New	CWE-125 CWE-416 CWE-787 Out-of-bounds Read Use After Free Out-of-bounds Write	CVE-2026-6784	2026-04-23 01:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

1343	7.5	HIGH Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-6772	2026-04-23 01:04	2026-04-21	Show	GitHub Exploit DB Packet Storm

1344	7.2	HIGH Network	sanjay1313	visitor_management_system	Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without an… New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-37748	2026-04-23 01:02	2026-04-22	Show	GitHub Exploit DB Packet Storm

1345	8.2	HIGH Network	hcltech	bigfix_service_management	HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP request smuggling vulnerabilities arise when websites route HTTP requests through web servers with inconsistent HTTP pars… New	CWE-444 HTTP Request Smuggling	CVE-2025-31958	2026-04-23 01:01	2026-04-22	Show	GitHub Exploit DB Packet Storm

1346	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-190 Integer Overflow or Wraparound	CVE-2026-6783	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1347	7.5	HIGH Network	mozilla	firefox thunderbird	Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-200 Information Exposure	CVE-2026-6782	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1348	5.3	MEDIUM Network	mozilla	firefox thunderbird	Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-20 CWE-79 CWE-119 Improper Input Validation Cross-site Scripting Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6779	2026-04-23 00:18	2026-04-21	Show	GitHub Exploit DB Packet Storm

1349	5.3	MEDIUM Network	mozilla	firefox thunderbird	Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-6775	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm

1350	5.4	MEDIUM Network	mozilla	firefox thunderbird	Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. New	CWE-693 Protection Mechanism Failure	CVE-2026-6774	2026-04-23 00:17	2026-04-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed