Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215231 6.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1502 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215232 5.8 警告 Mozilla Foundation - Android 上で稼働する Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1501 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215233 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1500 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215234 5.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるドメイン名を偽装される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1499 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215235 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey の crypto.generateCRMFRequest メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-310
CVE-2014-1498 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215236 9.3 危険 Mozilla Foundation - Mozilla Firefox OS の DeviceStorage API におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1507 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215237 6.4 警告 Mozilla Foundation - Android 上で稼働する Mozilla Firefox の Android 版クラッシュレポーターにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1506 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215238 6.9 警告 Mozilla Foundation - 複数の Mozilla 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1496 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215239 9.3 危険 Mozilla Foundation - Mozilla Firefox および SeaMonkey のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1494 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
215240 4.3 警告 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0382 2014-03-19 16:52 2014-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290221 - lead_technologies leadtools_raster_variant_object_library A certain ActiveX control in LeadTools Raster Variant Object Library (LTRVR14e.dll) 14.5.0.44 allows remote attackers to overwrite arbitrary files via the WriteDataToFile method. NVD-CWE-Other
CVE-2007-2851 2017-10-11 10:32 2007-05-25 Show GitHub Exploit DB Packet Storm
290222 - h\+h vcdapilibapi_activex_control
virtual_cd 		The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote attackers to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait fu… NVD-CWE-Other
CVE-2007-2853 2017-10-11 10:32 2007-05-25 Show GitHub Exploit DB Packet Storm
290223 - bti-tracker bti-tracker Multiple SQL injection vulnerabilities in account_change.php in BtiTracker 1.4.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) style or (2) langue parameter. NVD-CWE-Other
CVE-2007-2854 2017-10-11 10:32 2007-05-25 Show GitHub Exploit DB Packet Storm
290224 - spamassassin spamassassin SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrar… NVD-CWE-Other
CVE-2007-2873 2017-10-11 10:32 2007-06-12 Show GitHub Exploit DB Packet Storm
290225 - linux linux_kernel The VFAT compat ioctls in the Linux kernel before 2.6.21.2, when run on a 64-bit system, allow local users to corrupt a kernel_dirent struct and cause a denial of service (system crash) via unknown v… NVD-CWE-Other
CVE-2007-2878 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm
290226 - microsoft visual_basic Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service (CPU consumption) or execute arbitrary code via a Visual Basic Proj… CWE-399
CWE-20
 Resource Management Errors
 Improper Input Validation  		CVE-2007-2884 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm
290227 - microsoft visual_basic Failed exploit attempts will likely cause a denial of service condition. CWE-399
CWE-20
 Resource Management Errors
 Improper Input Validation  		CVE-2007-2884 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm
290228 - ezb_systems ultraiso Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string (filename) in a .cue file, a related issue to CVE… NVD-CWE-Other
CVE-2007-2888 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm
290229 - ezb_systems ultraiso Successful exploitation requires that the targeted user has the .BIN file in the same directory as the .CUE file. NVD-CWE-Other
CVE-2007-2888 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm
290230 - dokeos open_source_learning_and_knowledge_management_tool SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the scormcontopen parameter. NVD-CWE-Other
CVE-2007-2889 2017-10-11 10:32 2007-05-30 Show GitHub Exploit DB Packet Storm