Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 204051 | 7.5 |
重要
Network |
fedorahosted.org | - | TGCaptcha2 における反射攻撃を実行される脆弱性 |
CWE-Other
その他 |
CVE-2016-1000032 | 2016-10-31 17:32 | 2016-03-9 | Show | GitHub Exploit DB Packet Storm |
| 204052 | 7.2 |
重要
Network |
Huge-IT | - | Joomla! 用 Huge-IT Slider におけるクロスサイトスクリプティングの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2016-1000122 | 2016-10-31 17:09 | 2016-07-22 | Show | GitHub Exploit DB Packet Storm |
| 204053 | 4.8 |
警告
Network |
Huge-IT | - | Joomla! 用 Huge-IT Slider におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2016-1000121 | 2016-10-31 17:09 | 2016-07-22 | Show | GitHub Exploit DB Packet Storm |
| 204054 | 7.2 |
重要
Network |
Huge-IT | - | Joomla! 用 Huge-IT Catalog における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2016-1000120 | 2016-10-31 17:09 | 2016-07-17 | Show | GitHub Exploit DB Packet Storm |
| 204055 | 9.8 |
緊急
Network |
Apache Software Foundation | - | Apache Commons FileUpload の DiskFileItem におけるファイルを操作される脆弱性 |
CWE-Other
その他 |
CVE-2016-1000031 | 2016-10-31 16:54 | 2016-04-20 | Show | GitHub Exploit DB Packet Storm |
| 204056 | 3.7 |
低
Network |
GNOME Project レッドハット |
- | Shotwell における TLS/SSL 証明書の検証不備の脆弱性 |
CWE-Other
その他 |
CVE-2016-1000033 | 2016-10-31 16:49 | 2016-09-2 | Show | GitHub Exploit DB Packet Storm |
| 204057 | 7.5 |
重要
Network |
Ruckus Wireless, Inc. | - | Ruckus Wireless H500 の Web 管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-1000215 | 2016-10-31 15:41 | 2016-08-3 | Show | GitHub Exploit DB Packet Storm |
| 204058 | 5.3 |
警告
Network |
Ruckus Wireless, Inc. | - | Ruckus Wireless H500 の Web 管理インターフェースにおける認証を回避される脆弱性 |
CWE-200 CWE-287 |
CVE-2016-1000214 | 2016-10-31 15:41 | 2016-08-3 | Show | GitHub Exploit DB Packet Storm |
| 204059 | 8.8 |
重要
Network |
Ruckus Wireless, Inc. | - | Ruckus Wireless H500 の Web 管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2016-1000213 | 2016-10-31 15:41 | 2016-08-3 | Show | GitHub Exploit DB Packet Storm |
| 204060 | 7.6 |
重要
Network |
オラクル | - | Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における LDAP に関する脆弱性 |
CWE-Other
その他 |
CVE-2016-8296 | 2016-10-31 11:56 | 2016-10-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 22, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292031 | - |
fedoraproject mozilla oracle |
fedora firefox solaris |
Mozilla Firefox before 29.0 on Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scr… |
NVD-CWE-noinfo
|
CVE-2014-1527 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292032 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis… |
CWE-269
Improper Privilege Management |
CVE-2014-1526 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292033 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292034 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292035 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292036 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292037 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292038 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292039 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292040 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |