Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 225041 | 3.5 | 注意 | TYPO3 Association | - | TYPO3 の Backend History モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6145 | 2013-07-3 16:04 | 2012-11-8 | Show | GitHub Exploit DB Packet Storm |
| 225042 | 6.5 | 警告 | TYPO3 Association | - | TYPO3 の Backend History モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-6144 | 2013-07-3 16:03 | 2012-11-8 | Show | GitHub Exploit DB Packet Storm |
| 225043 | 9 | 危険 | IBM | - | IBM IMS Enterprise Suite の SOAP Gateway における任意のコマンドを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-3003 | 2013-07-3 16:00 | 2013-06-4 | Show | GitHub Exploit DB Packet Storm |
| 225044 | 4.3 | 警告 | IBM | - | IBM Sterling B2B Integrator および Sterling File Gateway におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0455 | 2013-07-3 15:56 | 2013-06-6 | Show | GitHub Exploit DB Packet Storm |
| 225045 | 4.3 | 警告 | シスコシステムズ | - | Cisco TelePresence TC ソフトウェアの SIP の実装における意図しない NOTIFY メッセージの使用を誘発される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-3401 | 2013-07-3 15:48 | 2013-07-1 | Show | GitHub Exploit DB Packet Storm |
| 225046 | 6.6 | 警告 | シスコシステムズ | - | Cisco Desktop Collaboration Experience DX650 の不特定の Android API におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-3399 | 2013-07-3 15:45 | 2013-07-1 | Show | GitHub Exploit DB Packet Storm |
| 225047 | 6.8 | 警告 | シスコシステムズ | - | 複数の Cisco セキュリティ アプライアンスの Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-3395 | 2013-07-3 15:36 | 2013-07-1 | Show | GitHub Exploit DB Packet Storm |
| 225048 | 5.8 | 警告 | Atlassian | - | Atlassian Crowd における任意のファイルを読まれる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-3925 | 2013-07-3 15:16 | 2013-06-19 | Show | GitHub Exploit DB Packet Storm |
| 225049 | 6.8 | 警告 | Services project | - | Drupal 用 Services モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-2158 | 2013-07-3 14:56 | 2013-06-5 | Show | GitHub Exploit DB Packet Storm |
| 225050 | 6.9 | 警告 | FreeBSD | - | FreeBSD のカーネルにおけるファイルシステムの書き込み権限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2171 | 2013-07-3 13:55 | 2013-06-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 277941 | - |
oracle mozilla |
solaris firefox |
Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-… |
CWE-200
Information Exposure |
CVE-2015-2742 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277942 | - |
mozilla oracle |
firefox solaris firefox_esr |
Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 do not enforce key pinning upon encountering an X.509 certificate problem that generates a user dialog, which al… |
CWE-310
Cryptographic Issues |
CVE-2015-2741 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277943 | - |
mozilla canonical novell debian oracle |
thunderbird firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remot… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2740 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277944 | - |
mozilla canonical novell debian oracle |
firefox ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit debian_linux firefox_esr solaris thunderbird |
The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2739 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277945 | - |
canonical suse debian mozilla oracle |
ubuntu_linux linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux firefox firefox_esr thunderbi… |
The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1… |
CWE-17
Code |
CVE-2015-2738 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277946 | - |
mozilla canonical oracle suse debian |
firefox_esr firefox ubuntu_linux solaris linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux
The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from …
|
CWE-17
|
Code
CVE-2015-2737
|
2024-11-21 11:27 |
2015-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
| |
| 277947 | - |
mozilla oracle canonical novell debian |
firefox thunderbird firefox_esr solaris ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which all… |
CWE-17
Code |
CVE-2015-2736 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277948 | - |
mozilla canonical novell debian oracle |
firefox firefox_esr thunderbird ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to … |
CWE-17
Code |
CVE-2015-2735 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277949 | - |
suse mozilla canonical debian oracle |
linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server firefox_esr firefox ubuntu_linux debian_linux thunderbi… |
The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 r… |
CWE-17
Code |
CVE-2015-2734 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277950 | - |
mozilla oracle novell |
firefox solaris firefox_esr suse_linux_enterprise_server suse_linux_enterprise_desktop |
Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbit… |
NVD-CWE-Other
|
CVE-2015-2733 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm |