Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206611 10 危険 Mozilla Foundation - Mozilla Firefox の js/src/vm/Xdr.cpp の XDRBuffer::grow 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-7220 2015-12-17 14:27 2015-12-15 Show GitHub Exploit DB Packet Storm
206612 5 警告 Mozilla Foundation - Mozilla Firefox の HTTP/2 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2015-7219 2015-12-17 14:27 2015-12-15 Show GitHub Exploit DB Packet Storm
206613 5 警告 Mozilla Foundation - Mozilla Firefox の HTTP/2 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2015-7218 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206614 4.3 警告 Mozilla Foundation - Linux GNOME プラットフォーム上で稼動する Mozilla Firefox の gdk-pixbuf 設定におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-7217 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206615 6.8 警告 Mozilla Foundation - Linux GNOME プラットフォーム上で稼動する Mozilla Firefox の gdk-pixbuf 設定におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7216 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206616 5 警告 Mozilla Foundation - Mozilla Firefox の Web ワーカー API の実装の importScripts 関数における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-7215 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206617 5 警告 Mozilla Foundation - Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-7214 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206618 6.8 警告 Mozilla Foundation - 64-bit プラットフォーム上で稼動する Mozilla Firefox の libstagefright における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2015-7213 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206619 7.5 危険 Mozilla Foundation - Mozilla Firefox の mozilla::layers::BufferTextureClient::AllocateForSurface 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2015-7212 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
206620 5 警告 Mozilla Foundation - Mozilla Firefox における Web サイトを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-7211 2015-12-17 14:26 2015-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349281 - mcgallery mcgallery_pro Multiple SQL injection vulnerabilities in mcGallery PRO 2.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id, (2) start, and (3) rand parameters to show.php, and th… NVD-CWE-Other
CVE-2005-4251 2011-03-8 11:27 2005-12-14 Show GitHub Exploit DB Packet Storm
349282 - - - Cross-site scripting (XSS) vulnerability in mcGallery PRO 2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search module parameters. NVD-CWE-Other
CVE-2005-4252 2011-03-8 11:27 2005-12-14 Show GitHub Exploit DB Packet Storm
349283 - dreamlevels dream_poll SQL injection vulnerability in view_Results.php in DreamLevels DreamPoll 3.0 final allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4254 2011-03-8 11:27 2005-12-15 Show GitHub Exploit DB Packet Storm
349284 - wikkawiki wikkawiki Cross-site scripting (XSS) vulnerability in TextSearch in WikkaWiki 1.1.6.0 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded phrase parameter. NVD-CWE-Other
CVE-2005-4255 2011-03-8 11:27 2005-12-15 Show GitHub Exploit DB Packet Storm
349285 - envolution envolution Cross-site scripting (XSS) vulnerability in the News module in Envolution allows remote attackers to inject arbitrary web script or HTML via the (1) startrow and (2) catid parameter. NOTE: this issu… NVD-CWE-Other
CVE-2005-4262 2011-03-8 11:27 2005-12-15 Show GitHub Exploit DB Packet Storm
349286 - triangle_solutions php_support_tickets Multiple SQL injection vulnerabilities in index.php in PHP Support Tickets 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields, and (3) id parame… NVD-CWE-Other
CVE-2005-4264 2011-03-8 11:27 2005-12-15 Show GitHub Exploit DB Packet Storm
349287 - gentoo qt-unixodbc Untrusted search path vulnerability in Qt-UnixODBC before 3.3.4-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary bu… NVD-CWE-Other
CVE-2005-4279 2011-03-8 11:27 2005-12-16 Show GitHub Exploit DB Packet Storm
349288 - - - Untrusted search path vulnerability in CMake before 2.2.0-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build di… NVD-CWE-Other
CVE-2005-4280 2011-03-8 11:27 2005-12-16 Show GitHub Exploit DB Packet Storm
349289 - zaygo hostingcart Cross-site scripting (XSS) vulnerability in Zaygo HostingCart 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via certain search module parameters, possibly the root pa… NVD-CWE-Other
CVE-2005-4281 2011-03-8 11:27 2005-12-16 Show GitHub Exploit DB Packet Storm
349290 - zaygo domaincart Cross-site scripting (XSS) vulnerability in Zaygo DomainCart 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML, possibly via the root parameter to zaygo.cgi. NVD-CWE-Other
CVE-2005-4282 2011-03-8 11:27 2005-12-16 Show GitHub Exploit DB Packet Storm