Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219561	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の JavaScript エンジンの TypeObject クラスにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1512	2014-04-8 17:07	2014-03-18	Show	GitHub Exploit DB Packet Storm

219562	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品におけるポップアップブロッカーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1511	2014-04-8 17:06	2014-03-18	Show	GitHub Exploit DB Packet Storm

219563	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の Web IDL の実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-1510	2014-04-8 17:05	2014-03-18	Show	GitHub Exploit DB Packet Storm

219564	7.6	危険	Mozilla Foundation	-	複数の Mozilla 製品で使用される Cairo の _cairo_truetype_index_to_ucs4 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-1509	2014-04-8 17:04	2014-03-18	Show	GitHub Exploit DB Packet Storm

219565	6.8	警告	Mozilla Foundation	-	複数の Mozilla 製品の libxul.so!gfxContext::Polygon 関数におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2014-1508	2014-04-8 17:03	2014-03-18	Show	GitHub Exploit DB Packet Storm

219566	6.8	警告	Mozilla Foundation	-	複数の Mozilla 製品の SVG フィルタの実装における重要な変位相関情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1505	2014-04-8 17:03	2014-03-18	Show	GitHub Exploit DB Packet Storm

219567	6.8	警告	Mozilla Foundation	-	複数の Mozilla 製品の mozilla::WaveReader::DecodeAudioData 機能における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2014-1497	2014-04-8 17:02	2014-03-18	Show	GitHub Exploit DB Packet Storm

219568	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-1493	2014-04-8 17:01	2014-03-18	Show	GitHub Exploit DB Packet Storm

219569	4.3	警告	Huawei	-	Huawei Echo Life 光ルータにクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0337	2014-04-8 16:56	2014-04-2	Show	GitHub Exploit DB Packet Storm

219570	5	警告	Net-SNMP	-	Net-SNMP の ICMP-MIB の Linux の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2284	2014-04-8 15:54	2014-02-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295891	-	qualiteam	x-cart	Cross-site scripting (XSS) vulnerability in products_map.php in X-Cart Gold 4.5 allows remote attackers to inject arbitrary web script or HTML via the symb parameter.	CWE-79 Cross-site Scripting	CVE-2012-2570	2024-11-21 10:39	2012-08-16	Show	GitHub Exploit DB Packet Storm

295892	-	microsoft	windows_server_2008 windows_xp windows_7 windows_server_2003 windows_vista	Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Win…	CWE-399 Resource Management Errors	CVE-2012-2527	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295893	-	microsoft	windows_xp	The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP3 does not properly process packets in memory, which allows remote attackers to execute arbitrary code by sending crafted RD…	CWE-94 Code Injection	CVE-2012-2526	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295894	-	microsoft	office	Microsoft Office 2007 SP2 and SP3 and 2010 SP1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Computer Graphics Metafile (CGM) file, …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2524	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295895	-	microsoft	internet_explorer jscript vbscript	Integer overflow in Microsoft Internet Explorer 8 and 9, JScript 5.8, and VBScript 5.8 on 64-bit platforms allows remote attackers to execute arbitrary code by leveraging an incorrect size calculatio…	CWE-189 Numeric Errors	CVE-2012-2523	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295896	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a malformed virtual function table after this …	CWE-94 Code Injection	CVE-2012-2522	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295897	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Asynchronous NULL Objec…	CWE-94 Code Injection	CVE-2012-2521	2024-11-21 10:39	2012-08-15	Show	GitHub Exploit DB Packet Storm

295898	-	d.r.commander	libjpeg-turbo	Heap-based buffer overflow in the get_sos function in jdmarker.c in libjpeg-turbo 1.2.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code vi…	CWE-787 Out-of-bounds Write	CVE-2012-2806	2024-11-21 10:39	2012-08-14	Show	GitHub Exploit DB Packet Storm

295899	-	redhat	certificate_system dogtag_certificate_system	Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System allow remote attackers to inject arbitrary web script or HTML via u…	CWE-79 Cross-site Scripting	CVE-2012-2662	2024-11-21 10:39	2012-08-14	Show	GitHub Exploit DB Packet Storm

295900	-	e-supportportal	escon_supportportal	Multiple cross-site scripting (XSS) vulnerabilities in ESCON SupportPortal Professional Edition 3.0 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a…	CWE-79 Cross-site Scripting	CVE-2012-2590	2024-11-21 10:39	2012-08-13	Show	GitHub Exploit DB Packet Storm