Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218851 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の vmtypedarrayobject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1514 2014-04-8 17:09 2014-03-18 Show GitHub Exploit DB Packet Storm
218852 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の TypedArrayObject.cpp における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-1513 2014-04-8 17:08 2014-03-18 Show GitHub Exploit DB Packet Storm
218853 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンの TypeObject クラスにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1512 2014-04-8 17:07 2014-03-18 Show GitHub Exploit DB Packet Storm
218854 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品におけるポップアップブロッカーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1511 2014-04-8 17:06 2014-03-18 Show GitHub Exploit DB Packet Storm
218855 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の Web IDL の実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1510 2014-04-8 17:05 2014-03-18 Show GitHub Exploit DB Packet Storm
218856 7.6 危険 Mozilla Foundation - 複数の Mozilla 製品で使用される Cairo の _cairo_truetype_index_to_ucs4 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1509 2014-04-8 17:04 2014-03-18 Show GitHub Exploit DB Packet Storm
218857 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の libxul.so!gfxContext::Polygon 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-1508 2014-04-8 17:03 2014-03-18 Show GitHub Exploit DB Packet Storm
218858 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の SVG フィルタの実装における重要な変位相関情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1505 2014-04-8 17:03 2014-03-18 Show GitHub Exploit DB Packet Storm
218859 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の mozilla::WaveReader::DecodeAudioData 機能における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-1497 2014-04-8 17:02 2014-03-18 Show GitHub Exploit DB Packet Storm
218860 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1493 2014-04-8 17:01 2014-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296301 - phpmoneybooks phpmoneybooks Directory traversal vulnerability in index.php in phpMoneyBooks before 1.0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter. CWE-22
Path Traversal 		CVE-2012-1669 2024-11-21 10:37 2014-11-18 Show GitHub Exploit DB Packet Storm
296302 - orangehrm orangehrm Multiple cross-site scripting (XSS) vulnerabilities in OrangeHRM before 2.7 allow remote attackers to inject arbitrary web script or HTML via the (1) newHspStatus parameter to plugins/ajaxCalls/haltR… CWE-79
Cross-site Scripting 		CVE-2012-1507 2024-11-21 10:37 2014-09-17 Show GitHub Exploit DB Packet Storm
296303 - orangehrm orangehrm SQL injection vulnerability in the updateStatus function in lib/models/benefits/Hsp.php in OrangeHRM before 2.7 allows remote authenticated users to execute arbitrary SQL commands via the hspSummaryI… CWE-89
SQL Injection 		CVE-2012-1506 2024-11-21 10:37 2014-09-17 Show GitHub Exploit DB Packet Storm
296304 - synology diskstation_manager
synology_photo_station 		Cross-site scripting (XSS) vulnerability in Synology Photo Station 5 for DiskStation Manager (DSM) 3.2-1955 allows remote attackers to inject arbitrary web script or HTML via the name parameter to ph… CWE-79
Cross-site Scripting 		CVE-2012-1556 2024-11-21 10:37 2014-09-12 Show GitHub Exploit DB Packet Storm
296305 - sixapart movable_type Cross-site scripting (XSS) vulnerability in Six Apart (formerly Six Apart KK) Movable Type (MT) Pro 5.13 allows remote attackers to inject arbitrary web script or HTML via the comment section. CWE-79
Cross-site Scripting 		CVE-2012-1503 2024-11-21 10:37 2014-08-29 Show GitHub Exploit DB Packet Storm
296306 - apache ofbiz Multiple cross-site scripting (XSS) vulnerabilities in Apache Open For Business Project (aka OFBiz) 10.04.x before 10.04.02 allow remote attackers to inject arbitrary web script or HTML via (1) a par… CWE-79
Cross-site Scripting 		CVE-2012-1621 2024-11-21 10:37 2014-06-19 Show GitHub Exploit DB Packet Storm
296307 - phppgadmin_project
opensuse 		phppgadmin
opensuse 		Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a functio… CWE-79
Cross-site Scripting 		CVE-2012-1600 2024-11-21 10:37 2014-05-14 Show GitHub Exploit DB Packet Storm
296308 - danielb finder Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2012-1561 2024-11-21 10:37 2014-04-8 Show GitHub Exploit DB Packet Storm
296309 - cms_tree_page_view_project cms_tree_page_view Cross-site scripting (XSS) vulnerability in the cms_tpv_admin_head function in functions.php in the CMS Tree Page View plugin before 0.8.9 for WordPress allows remote attackers to inject arbitrary we… CWE-79
Cross-site Scripting 		CVE-2012-1834 2024-11-21 10:37 2014-04-8 Show GitHub Exploit DB Packet Storm
296310 - fedoraproject
redhat 		fedora
enterprise_linux 		The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bi… NVD-CWE-noinfo
CVE-2012-1568 2024-11-21 10:37 2013-03-1 Show GitHub Exploit DB Packet Storm