Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200871	9.8	緊急 Network	Zoho Corporation	-	ZOHO WebNMS Framework における認証を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2016-6603	2017-02-7 14:23	2016-07-4	Show	GitHub Exploit DB Packet Storm

200872	9.8	緊急 Network	Zoho Corporation	-	ZOHO WebNMS Framework における平文のパスワードを取得される脆弱性	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2016-6602	2017-02-7 14:23	2016-07-4	Show	GitHub Exploit DB Packet Storm

200873	7.5	重要 Network	Zoho Corporation	-	ZOHO WebNMS Framework のファイルダウンロード機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6601	2017-02-7 14:23	2016-07-4	Show	GitHub Exploit DB Packet Storm

200874	9.8	緊急 Network	Zoho Corporation	-	ZOHO WebNMS Framework のファイルアップロード機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6600	2017-02-7 14:23	2016-07-4	Show	GitHub Exploit DB Packet Storm

200875	9.8	緊急 Network	Michael Davis	-	python-jose における脆弱性	CWE-361 時間とステータス	CVE-2016-7036	2017-02-7 14:20	2016-09-5	Show	GitHub Exploit DB Packet Storm

200876	9.8	緊急 Network	The GIFLIB project	-	GIFLIB の gifcolor.c における脆弱性	CWE-415 CWE-416	CVE-2016-3177	2017-02-7 14:19	2016-03-15	Show	GitHub Exploit DB Packet Storm

200877	6.5	警告 Network	moment project	-	Node.js 用 moment パッケージの duration 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-4055	2017-02-7 13:38	2016-01-27	Show	GitHub Exploit DB Packet Storm

200878	8.8	重要 Network	Grails project	-	Grails Console におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-6521	2017-02-7 12:02	2016-07-1	Show	GitHub Exploit DB Packet Storm

200879	7.5	重要 Network	Dominik Reichl	-	KeePass の自動更新機能における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-5119	2017-02-7 11:54	2016-06-1	Show	GitHub Exploit DB Packet Storm

200880	6.1	警告 Network	mustache project	-	Node.js 用 mustache パッケージにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8862	2017-02-7 11:48	2015-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290771	-	mozilla	thunderbird firefox	Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote attackers to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use UTF-8 charac…	NVD-CWE-Other	CVE-2014-1558	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290772	-	oracle mozilla debian	solaris firefox_esr thunderbird firefox debian_linux	The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data dur…	CWE-94 Code Injection	CVE-2014-1557	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290773	-	mozilla	firefox_esr thunderbird firefox	Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScrip…	CWE-94 Code Injection	CVE-2014-1556	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290774	-	mozilla	firefox_esr thunderbird firefox	Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbit…	NVD-CWE-Other	CVE-2014-1555	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290775	-	mozilla	thunderbird firefox	Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not properly implement the sandbox attribute of the IFRAME element, which allows remote attackers to bypass intended restrictions on same-or…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1552	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290776	-	mozilla	firefox firefox_esr thunderbird	Use-after-free vulnerability in the FontTableRec destructor in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 on Windows allows remote attackers to execute arb…	NVD-CWE-Other	CVE-2014-1551	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290777	-	mozilla	thunderbird firefox	Use-after-free vulnerability in the MediaInputPort class in Mozilla Firefox before 31.0 and Thunderbird before 31.0 allows remote attackers to execute arbitrary code or cause a denial of service (hea…	NVD-CWE-Other	CVE-2014-1550	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290778	-	mozilla	thunderbird firefox	The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1549	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290779	-	mozilla	thunderbird firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote attackers to cause a denial of service (memory corruption and applic…	NVD-CWE-noinfo	CVE-2014-1548	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

290780	-	mozilla	firefox_esr thunderbird firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to cause a denial of servic…	NVD-CWE-noinfo	CVE-2014-1547	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm