Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 219901 | 5 | 警告 | TIBCO Software | - | 複数の TIBCO 製品における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2014-2541 | 2014-04-10 11:54 | 2014-04-8 | Show | GitHub Exploit DB Packet Storm |
| 219902 | 4.3 | 警告 | ClipBucket | - | ClipBucket におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6644 | 2014-04-9 13:51 | 2012-01-9 | Show | GitHub Exploit DB Packet Storm |
| 219903 | 7.5 | 危険 | ClipBucket | - | ClipBucket の includes/functions.php の update_counter 関数における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-6643 | 2014-04-9 13:50 | 2012-01-9 | Show | GitHub Exploit DB Packet Storm |
| 219904 | 4.3 | 警告 | ClipBucket | - | ClipBucket におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6642 | 2014-04-9 13:50 | 2012-01-9 | Show | GitHub Exploit DB Packet Storm |
| 219905 | 4.3 | 警告 | danielb | - | Drupal 用 Finder モジュールのオートコンプリート機能におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6645 | 2014-04-9 12:21 | 2012-02-8 | Show | GitHub Exploit DB Packet Storm |
| 219906 | 4.3 | 警告 | danielb | - | Drupal 用 Finder モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1561 | 2014-04-9 12:21 | 2012-02-8 | Show | GitHub Exploit DB Packet Storm |
| 219907 | 7.5 | 危険 | Advanced Forum Signatures Project | - | MyBB 用 Advanced Forum Signatures プラグインの signature.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-5278 | 2014-04-9 12:12 | 2011-10-10 | Show | GitHub Exploit DB Packet Storm |
| 219908 | 7.5 | 危険 | Advanced Forum Signatures Project | - | MyBB 用 Advanced Forum Signatures プラグインの signature.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-5277 | 2014-04-9 11:59 | 2011-10-10 | Show | GitHub Exploit DB Packet Storm |
| 219909 | 4.3 | 警告 | SilverStripe | - | SilverStripe の SSViewer.php の process 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4958 | 2014-04-9 11:02 | 2011-10-17 | Show | GitHub Exploit DB Packet Storm |
| 219910 | 6.9 | 警告 | Fedora Project David Paleino |
- | WICD の D-Bus インターフェースの SetWiredProperty 関数における任意の構成設定を書き込まれる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-2095 | 2014-04-9 10:55 | 2012-04-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 295051 | - | mcrypt | mcrypt | Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via vectors invol… |
CWE-134
Use of Externally-Controlled Format String |
CVE-2012-4426 | 2024-11-21 10:42 | 2012-11-22 | Show | GitHub Exploit DB Packet Storm | |
| 295052 | - | mcrypt | mcrypt | Stack-based buffer overflow in the check_file_head function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2012-4409 | 2024-11-21 10:42 | 2012-11-22 | Show | GitHub Exploit DB Packet Storm | |
| 295053 | - |
mozilla canonical suse opensuse |
firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server |
Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to e… |
CWE-416
Use After Free |
CVE-2012-4218 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295054 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute… |
CWE-416
Use After Free |
CVE-2012-4217 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295055 | - |
mozilla suse opensuse redhat debian canonical |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en… |
Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S… |
CWE-416
Use After Free |
CVE-2012-4216 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295056 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary… |
CWE-416
Use After Free |
CVE-2012-4213 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295057 | - |
mozilla canonical suse opensuse |
firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server |
Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary cod… |
CWE-416
Use After Free |
CVE-2012-4212 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295058 | - | mozilla | firefox | The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which al… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2012-4210 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295059 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote atta… |
CWE-200
Information Exposure |
CVE-2012-4208 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 295060 | - |
mozilla suse opensuse canonical redhat |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li… |
Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x befor… |
CWE-416
Use After Free |
CVE-2012-4215 | 2024-11-21 10:42 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm |