Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218431 5 警告 マイクロソフト - Microsoft Internet Explorer 8 から 11 における XSS フィルタを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6328 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
218432 9.3 危険 マイクロソフト - Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6327 2014-12-12 10:56 2014-12-9 Show GitHub Exploit DB Packet Storm
218433 4.3 警告 YOURLS - YOURLS の管理者パネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8488 2014-12-11 17:51 2014-10-25 Show GitHub Exploit DB Packet Storm
218434 5 警告 Apache Software Foundation - Apache CloudStack における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-7807 2014-12-11 16:44 2014-12-8 Show GitHub Exploit DB Packet Storm
218435 10 危険 DIGICOM - Digicom DG-5514T ADSL ルータのファームウェアにおける管理者権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-8496 2014-12-11 15:36 2014-11-8 Show GitHub Exploit DB Packet Storm
218436 4.3 警告 Scalix.com - Scalix Web Access のメール管理ログインパネルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9352 2014-12-11 15:29 2014-10-31 Show GitHub Exploit DB Packet Storm
218437 6.4 警告 Magnus Auvinen - Teeworlds の engine/server/server.cpp におけるメモリを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9351 2014-12-11 15:18 2014-11-21 Show GitHub Exploit DB Packet Storm
218438 5 警告 FFmpeg - FFmpeg の libavcodec/hevc_ps.c の ff_hevc_decode_nal_sps 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9319 2014-12-11 15:03 2014-11-28 Show GitHub Exploit DB Packet Storm
218439 7.5 危険 FFmpeg - FFmpeg の libavcodec/rawdec.c の raw_decode 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9318 2014-12-11 15:03 2014-11-27 Show GitHub Exploit DB Packet Storm
218440 7.5 危険 FFmpeg - FFmpeg の libavcodec/pngdec.c の decode_ihdr_chunk 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9317 2014-12-11 15:02 2014-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297941 - remotesensing libtiff Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1960 2024-11-21 10:50 2013-07-4 Show GitHub Exploit DB Packet Storm
297942 - mozilla firefox The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1700 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297943 - mozilla firefox The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof t… CWE-310
Cryptographic Issues 		CVE-2013-1699 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297944 - mozilla firefox The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1698 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297945 - mozilla firefox
thunderbird
thunderbird_esr 		The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly restrict use of Defa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1697 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297946 - mozilla firefox Mozilla Firefox before 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote attackers to conduct clickjacking attacks via a crafted web site that uses the HTTP… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1696 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297947 - mozilla firefox Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1695 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297948 - mozilla firefox
thunderbird
thunderbird_esr 		The PreserveWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly handle the lack … CWE-20
 Improper Input Validation  		CVE-2013-1694 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297949 - mozilla firefox
thunderbird
thunderbird_esr 		The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to read pixel v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1693 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
297950 - mozilla firefox
thunderbird
thunderbird_esr 		Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD requ… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1692 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm