Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216841 4.3 警告 IBM
Apache Software Foundation
オラクル		 - Apache Tomcat の org/apache/catalina/connector/CoyoteAdapter.java におけるセッション固定攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0033 2014-10-21 10:43 2014-01-31 Show GitHub Exploit DB Packet Storm
216842 7.5 危険 Epicor Software - Epicor Procurement における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-4313 2014-10-20 18:33 2014-10-3 Show GitHub Exploit DB Packet Storm
216843 4.3 警告 Epicor Software - Epicor Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4312 2014-10-20 18:33 2014-09-30 Show GitHub Exploit DB Packet Storm
216844 4.3 警告 CloudBees - CloudBees Jenkins 用 Monitoring プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3678 2014-10-20 18:18 2014-10-1 Show GitHub Exploit DB Packet Storm
216845 4 警告 IBM - IBM WebSphere Portal における認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-4761 2014-10-20 18:17 2014-10-7 Show GitHub Exploit DB Packet Storm
216846 4.3 警告 Textpattern - Textpattern CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4737 2014-10-20 18:14 2014-09-20 Show GitHub Exploit DB Packet Storm
216847 4.9 警告 Linux - Linux Kernel の fs/namespace.c の pivot_root の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-7970 2014-10-20 18:12 2014-10-9 Show GitHub Exploit DB Packet Storm
216848 10 危険 Kriesi - WordPress 用 Enfold テーマのフォルダフレームワークにおける脆弱性 CWE-noinfo
情報不足 		CVE-2014-7297 2014-10-20 18:12 2014-10-7 Show GitHub Exploit DB Packet Storm
216849 6.4 警告 Linux - 特定の Intel プロセッサ上で稼働する Linux Kernel の net/core/utils.c 内の net_get_random_once の実装における IP 通信を偽装される脆弱性 CWE-200
情報漏えい 		CVE-2014-7284 2014-10-20 18:11 2014-05-31 Show GitHub Exploit DB Packet Storm
216850 5 警告 IBM - IBM Security QRadar SIEM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3091 2014-10-20 18:10 2014-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291781 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in the nsFrameList::FirstChild function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1680 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291782 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in the mozilla::plugins::child::_geturlnotify function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x… CWE-399
 Resource Management Errors 		CVE-2013-1679 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291783 - mozilla firefox
thunderbird
thunderbird_esr 		The _cairo_xlib_surface_add_glyph function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1678 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291784 - mozilla firefox
thunderbird
thunderbird_esr 		The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers… CWE-399
 Resource Management Errors 		CVE-2013-1677 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291785 - mozilla firefox
thunderbird
thunderbird_esr 		The SelectionIterator::GetNextSegment function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1676 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291786 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbit… CWE-399
 Resource Management Errors 		CVE-2013-1674 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291787 - mozilla firefox The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1673 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291788 - mozilla firefox
thunderbird
thunderbird_esr 		The Mozilla Maintenance Service in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 on Windows allows local users to bypa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1672 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291789 - mozilla firefox Mozilla Firefox before 21.0 does not properly implement the INPUT element, which allows remote attackers to obtain the full pathname via a crafted web site. CWE-20
 Improper Input Validation  		CVE-2013-1671 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm
291790 - mozilla firefox
thunderbird
thunderbird_esr 		The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acqui… CWE-264
CWE-79
Permissions, Privileges, and Access Controls
Cross-site Scripting 		CVE-2013-1670 2024-11-21 10:50 2013-05-16 Show GitHub Exploit DB Packet Storm