Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219241 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品の ShellExecute API における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1807 2014-05-15 14:27 2014-05-13 Show GitHub Exploit DB Packet Storm
219242 10 危険 マイクロソフト - Microsoft .NET Framework の .NET Remoting の実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1806 2014-05-15 14:26 2014-05-13 Show GitHub Exploit DB Packet Storm
219243 6.8 警告 マイクロソフト - 複数の Microsoft Windows 製品のグループポリシーの実装における重要な認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-1812 2014-05-15 14:25 2014-05-13 Show GitHub Exploit DB Packet Storm
219244 6.8 警告 マイクロソフト - Microsoft Office の MSCOMCTL ライブラリにおける ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1809 2014-05-15 14:25 2014-05-13 Show GitHub Exploit DB Packet Storm
219245 4.3 警告 マイクロソフト - Microsoft Office 2013 における重要なトークン情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1808 2014-05-15 14:24 2014-05-13 Show GitHub Exploit DB Packet Storm
219246 4.3 警告 マイクロソフト - 複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1754 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
219247 9 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0251 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
219248 5 警告 Haxx
アップル
Canonical		 - cURL および libcurl の cookie.c における Cookie を盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1944 2014-05-14 18:45 2013-04-12 Show GitHub Exploit DB Packet Storm
219249 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5670 2014-05-14 18:44 2012-12-20 Show GitHub Exploit DB Packet Storm
219250 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5669 2014-05-14 18:43 2012-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291721 - mozilla firefox Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1695 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291722 - mozilla firefox
thunderbird
thunderbird_esr 		The PreserveWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly handle the lack … CWE-20
 Improper Input Validation  		CVE-2013-1694 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291723 - mozilla firefox
thunderbird
thunderbird_esr 		The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to read pixel v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1693 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291724 - mozilla firefox
thunderbird
thunderbird_esr 		Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD requ… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1692 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291725 - mozilla firefox The Profiler implementation in Mozilla Firefox before 22.0 parses untrusted data during UI rendering, which allows user-assisted remote attackers to execute arbitrary JavaScript code via a crafted we… CWE-94
Code Injection 		CVE-2013-1688 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291726 - mozilla firefox
thunderbird
thunderbird_esr 		The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x befor… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1687 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291727 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in the mozilla::ResetDir function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows… CWE-399
 Resource Management Errors 		CVE-2013-1686 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291728 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.… CWE-399
 Resource Management Errors 		CVE-2013-1685 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291729 - mozilla firefox
thunderbird
thunderbird_esr 		Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and … CWE-399
 Resource Management Errors 		CVE-2013-1684 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm
291730 - mozilla firefox Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 22.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe… NVD-CWE-noinfo
CVE-2013-1683 2024-11-21 10:50 2013-06-26 Show GitHub Exploit DB Packet Storm