Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216341	5	警告	DirPHP project	-	DirPHP における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-5115	2014-07-31 14:57	2014-07-27	Show	GitHub Exploit DB Packet Storm

216342	7.8	危険	ヒューレット・パッカード H3C	-	HP および H3C の VPN Firewall Module 製品の SECPATH1000FE および SECBLADEFW におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-4840	2014-07-31 14:23	2014-07-25	Show	GitHub Exploit DB Packet Storm

216343	4.3	警告	Visualware	-	Visualware MyConnection Server の test.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5113	2014-07-30 18:54	2014-07-21	Show	GitHub Exploit DB Packet Storm

216344	4.9	警告	Moodle	-	Moodle の mod/forum/classes/post_form.php におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3553	2014-07-30 18:45	2014-07-21	Show	GitHub Exploit DB Packet Storm

216345	6	警告	Moodle	-	Moodle の auth/shibboleth/index.php の Shibboleth 認証プラグインにおけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2014-3552	2014-07-30 18:45	2014-07-21	Show	GitHub Exploit DB Packet Storm

216346	3.5	注意	Moodle	-	Moodle の advanced-grading の実装におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3551	2014-07-30 18:45	2014-07-21	Show	GitHub Exploit DB Packet Storm

216347	4.3	警告	Moodle	-	Moodle の admin/tool/task/scheduledtasks.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3550	2014-07-30 18:44	2014-07-21	Show	GitHub Exploit DB Packet Storm

216348	4.3	警告	Moodle	-	Moodle の lib/classes/event/user_login_failed.php の get_description 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3549	2014-07-30 18:43	2014-07-21	Show	GitHub Exploit DB Packet Storm

216349	4.3	警告	Moodle	-	Moodle におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3548	2014-07-30 18:43	2014-07-21	Show	GitHub Exploit DB Packet Storm

216350	4.3	警告	Moodle	-	Moodle の badges/renderer.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3547	2014-07-30 18:42	2014-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293531	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote…	CWE-125 Out-of-bounds Read	CVE-2012-3995	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293532	-	mozilla	firefox thunderbird_esr thunderbird seamonkey	The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 d…	CWE-269 Improper Privilege Management	CVE-2012-3993	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293533	-	mozilla suse redhat canonical	firefox thunderbird_esr thunderbird seamonkey linux_enterprise_server linux_enterprise_desktop linux_enterprise_sdk enterprise_linux_server enterprise_linux_workstation ubu…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allow remote attackers to conduct cross-site script…	CWE-79 Cross-site Scripting	CVE-2012-3994	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293534	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows r…	CWE-79 Cross-site Scripting	CVE-2012-3992	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293535	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3991	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293536	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3989	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293537	-	mozilla	firefox	Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3987	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293538	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (…	CWE-79 Cross-site Scripting	CVE-2012-3985	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293539	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att…	NVD-CWE-Other	CVE-2012-3984	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293540	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…	CWE-416 Use After Free	CVE-2012-3990	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm