Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219811	7.5	危険	The Foreman	-	Foreman における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-5648	2014-04-7 12:21	2012-12-19	Show	GitHub Exploit DB Packet Storm

219812	7.5	危険	Crowbar Novell	-	SUSE Cloud 3 で使用される Crowbar Framework 用 Barclamp におけるセキュリティグループの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0592	2014-04-7 12:01	2014-03-27	Show	GitHub Exploit DB Packet Storm

219813	4.3	警告	Robert Abramski	-	WordPress 用 Uploader プラグインの views/notify.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2287	2014-04-7 11:52	2013-03-1	Show	GitHub Exploit DB Packet Storm

219814	5	警告	Zingiri	-	WordPress 用 Zingiri Forum プラグインの forum.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4920	2014-04-7 11:49	2012-09-14	Show	GitHub Exploit DB Packet Storm

219815	4.3	警告	dotCMS	-	dotCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3484	2014-04-4 18:53	2013-06-18	Show	GitHub Exploit DB Packet Storm

219816	6.8	警告	GNU Project	-	a2ps の fixps スクリプトにおける任意のファイルを削除される脆弱性	CWE-noinfo 情報不足	CVE-2014-0466	2014-04-4 18:24	2014-04-1	Show	GitHub Exploit DB Packet Storm

219817	4.3	警告	Trojita team	-	Trojita の Imap/Tasks/OpenConnectionTask.cpp の OpenConnectionTask::handleStateHelper 関数における平文の使用を誘発される脆弱性	CWE-200 情報漏えい	CVE-2014-2567	2014-04-4 18:12	2014-03-20	Show	GitHub Exploit DB Packet Storm

219818	10	危険	Linux	-	Linux Kernel の net/netfilter/nf_conntrack_proto_dccp.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2523	2014-04-4 18:09	2014-01-6	Show	GitHub Exploit DB Packet Storm

219819	6.8	警告	b2evolution	-	b2evolution の blogs/admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7352	2014-04-4 16:19	2013-04-29	Show	GitHub Exploit DB Packet Storm

219820	6.5	警告	b2evolution	-	b2evolution の blogs/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-2945	2014-04-4 16:18	2013-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295121	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows r…	CWE-79 Cross-site Scripting	CVE-2012-3992	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295122	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3991	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295123	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3989	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295124	-	mozilla	firefox	Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3987	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295125	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (…	CWE-79 Cross-site Scripting	CVE-2012-3985	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295126	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att…	NVD-CWE-Other	CVE-2012-3984	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295127	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…	CWE-416 Use After Free	CVE-2012-3990	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295128	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 might allow user-as…	CWE-416 Use After Free	CVE-2012-3988	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295129	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict calls to DOMWindowUtils (a…	CWE-20 Improper Input Validation	CVE-2012-3986	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

295130	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 allow remote attackers to cause a denial of service (memo…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3983	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm