Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215961	5	警告	WordPress Download Manager	-	WordPress 用 WordPress Download Manager プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-59 リンク解釈の問題	CVE-2014-8585	2014-11-6 16:30	2014-10-26	Show	GitHub Exploit DB Packet Storm

215962	4.3	警告	Web-Dorado	-	WordPress 用 Web Dorado Spider Video Player プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8584	2014-11-6 16:29	2014-11-3	Show	GitHub Exploit DB Packet Storm

215963	7.5	危険	clip-share NuevoLab.com.	-	ClipShare 用 Nuevolab Nuevoplayer の midroll.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8339	2014-11-6 15:50	2014-10-28	Show	GitHub Exploit DB Packet Storm

215964	6.5	警告	EllisLab, Inc.	-	EllisLab ExpressionEngine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5387	2014-11-6 15:49	2014-10-3	Show	GitHub Exploit DB Packet Storm

215965	6.8	警告	Axway	-	Axway SecureTransport におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7057	2014-11-6 15:49	2013-12-11	Show	GitHub Exploit DB Packet Storm

215966	5	警告	Epicor Software	-	Epicor Enterprise におけるデータベース接続のパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4311	2014-11-6 15:49	2014-09-30	Show	GitHub Exploit DB Packet Storm

215967	5	警告	レッドハット	-	FreeIPA のディレクトリサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0336	2014-11-6 15:48	2013-02-26	Show	GitHub Exploit DB Packet Storm

215968	7.5	危険	Joomla! Akeeba	-	複数の製品で使用される Akeeba 製品における暗号化を回避される脆弱性	CWE-310 暗号の問題	CVE-2014-7228	2014-11-6 15:48	2014-09-30	Show	GitHub Exploit DB Packet Storm

215969	5	警告	Plone Foundation Zope Foundation	-	Plone で使用される Zope における値を推測される脆弱性	CWE-310 暗号の問題	CVE-2012-6661	2014-11-6 11:05	2012-10-24	Show	GitHub Exploit DB Packet Storm

215970	5	警告	Plone Foundation	-	Plone のエラーページにおける乱数を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-5508	2014-11-6 11:05	2012-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293461	-		mozilla suse opensuse canonical redhat debian	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey…	NVD-CWE-noinfo	CVE-2012-5842	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293462	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 implement cross-origin wrappers with a filtering …	CWE-79 Cross-site Scripting	CVE-2012-5841	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293463	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…	CWE-416 Use After Free	CVE-2012-5840	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293464	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.…	CWE-787 Out-of-bounds Write	CVE-2012-5839	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293465	-		mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving…	CWE-94 Code Injection	CVE-2012-5836	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293466	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows…	CWE-190 Integer Overflow or Wraparound	CVE-2012-5835	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293467	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey befor…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5833	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293468	8.8	HIGH Network	mozilla redhat canonical opensuse suse	firefox seamonkey thunderbird thunderbird_esr enterprise_linux_server enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_server_eus enterprise_linux_eus	Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allow…	CWE-416 Use After Free	CVE-2012-5830	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293469	-		mozilla suse opensuse redhat canonical debian	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…	CWE-787 Out-of-bounds Write	CVE-2012-5829	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293470	-		vmware	esxi esx	The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.	CWE-20 Improper Input Validation	CVE-2012-5703	2024-11-21 10:45	2012-11-20	Show	GitHub Exploit DB Packet Storm