Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219321	6.5	警告	Jasig	-	uPortal における任意のポートレットを設定される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3417	2014-06-2 15:18	2014-05-23	Show	GitHub Exploit DB Packet Storm

219322	6.5	警告	Jasig	-	uPortal における任意のポートレットを管理される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3416	2014-06-2 15:17	2014-05-22	Show	GitHub Exploit DB Packet Storm

219323	5	警告	Attiks	-	Drupal 用 Google Authenticator login モジュールにおけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2013-4178	2014-06-2 15:05	2013-05-15	Show	GitHub Exploit DB Packet Storm

219324	5	警告	Attiks	-	Drupal 用 Google Authenticator login モジュールにおける二要素認証の要件を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4177	2014-06-2 15:05	2013-05-15	Show	GitHub Exploit DB Packet Storm

219325	5	警告	シスコシステムズ	-	Cisco Wide Area Application Services におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3285	2014-06-2 14:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219326	5.8	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の VOSS の Web フレームワークにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-3283	2014-06-2 14:25	2014-05-28	Show	GitHub Exploit DB Packet Storm

219327	4	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の VOSS の Web フレームワークにおける重要な番号変換情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3282	2014-06-2 14:24	2014-05-28	Show	GitHub Exploit DB Packet Storm

219328	5	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の VOSS の Web フレームワークにおけるアカウント名を列挙される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3279	2014-06-2 14:22	2014-05-28	Show	GitHub Exploit DB Packet Storm

219329	4	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager の VOSS における重要なユーザおよびグループ情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2014-3277	2014-06-2 14:21	2014-05-28	Show	GitHub Exploit DB Packet Storm

219330	4.3	警告	Apache Software Foundation	-	Apache HBase における双方向認証を無効にされる脆弱性	CWE-287 不適切な認証	CVE-2013-2193	2014-06-2 14:14	2013-07-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296401	-	mozilla suse opensuse redhat debian canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…	CWE-416 Use After Free	CVE-2012-4216	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296402	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary…	CWE-416 Use After Free	CVE-2012-4213	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296403	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary cod…	CWE-416 Use After Free	CVE-2012-4212	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296404	-	mozilla	firefox	The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4210	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296405	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote atta…	CWE-200 Information Exposure	CVE-2012-4208	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296406	-	mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x befor…	CWE-416 Use After Free	CVE-2012-4215	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296407	-	mozilla suse opensuse redhat canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…	CWE-416 Use After Free	CVE-2012-4214	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296408	-	mozilla suse opensuse redhat canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do not prevent use of a "top" frame name-attribut…	CWE-79 Cross-site Scripting	CVE-2012-4209	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296409	-	mozilla suse opensuse redhat debian canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do…	CWE-79 Cross-site Scripting	CVE-2012-4207	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

296410	-	mozilla	firefox	Untrusted search path vulnerability in the installer in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 on Windows allows local users to gain privileges via a Trojan horse DLL in the …	NVD-CWE-Other	CVE-2012-4206	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm