Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216451	5	警告	Debian Python Software Foundation	-	Python Image Library および Pillow の PIL/IcnsImagePlugin.py におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3589	2014-08-27 12:25	2014-08-13	Show	GitHub Exploit DB Packet Storm

216452	4.3	警告	Apache Software Foundation	-	Apache ActiveMQ の scheduled.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1879	2014-08-26 17:47	2013-03-21	Show	GitHub Exploit DB Packet Storm

216453	7.1	危険	IBM	-	IBM GCM16 および GCM32 Global Console Manager スイッチのファームウェアの systest.php における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-3085	2014-08-26 17:42	2014-07-14	Show	GitHub Exploit DB Packet Storm

216454	6.3	警告	IBM	-	IBM GCM16 および GCM32 Global Console Manager スイッチのファームウェアの prodtest.php における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-3081	2014-08-26 17:42	2014-07-14	Show	GitHub Exploit DB Packet Storm

216455	6.8	警告	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-5333	2014-08-26 17:40	2014-08-12	Show	GitHub Exploit DB Packet Storm

216456	6.8	警告	GNU Project IBM	-	GnuTLS の lib/gnutls_handshake.c の read_server_hello 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3466	2014-08-26 17:40	2014-05-29	Show	GitHub Exploit DB Packet Storm

216457	7.5	危険	Schrack	-	Schrack Technik microControl のファームウェアの Web インターフェースにおけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-5396	2014-08-26 17:32	2014-07-10	Show	GitHub Exploit DB Packet Storm

216458	5	警告	WP Content Source Control project	-	WordPress 用 WP Content Source Control プラグインの downloadfiles/download.php の file_get_contents 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-5368	2014-08-26 16:13	2014-08-19	Show	GitHub Exploit DB Packet Storm

216459	7.2	危険	Little Kernel project	-	MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで配布される Little Kernel ブートローダにおけるデバイスロックおよびカーネルの署名の制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-4325	2014-08-26 15:45	2014-08-5	Show	GitHub Exploit DB Packet Storm

216460	1.9	注意	Little Kernel project	-	MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで配布される Little Kernel ブートローダにおける制御可能なメモリ領域にデータを書き込まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0974	2014-08-26 15:39	2014-07-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294251	-	mcrypt	mcrypt	Stack-based buffer overflow in the check_file_head function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4409	2024-11-21 10:42	2012-11-22	Show	GitHub Exploit DB Packet Storm

294252	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to e…	CWE-416 Use After Free	CVE-2012-4218	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294253	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute…	CWE-416 Use After Free	CVE-2012-4217	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294254	-	mozilla suse opensuse redhat debian canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…	CWE-416 Use After Free	CVE-2012-4216	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294255	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary…	CWE-416 Use After Free	CVE-2012-4213	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294256	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary cod…	CWE-416 Use After Free	CVE-2012-4212	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294257	-	mozilla	firefox	The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4210	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294258	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote atta…	CWE-200 Information Exposure	CVE-2012-4208	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294259	-	mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x befor…	CWE-416 Use After Free	CVE-2012-4215	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

294260	-	mozilla suse opensuse redhat canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…	CWE-416 Use After Free	CVE-2012-4214	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm