Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226261 4.3 警告 Hiox Softwares Pvt Ltd. - HIOX Guest Book の add.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-1620 2014-01-23 16:44 2014-01-5 Show GitHub Exploit DB Packet Storm
226262 6.8 警告 Expat - Expat におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0340 2014-01-23 16:33 2013-02-21 Show GitHub Exploit DB Packet Storm
226263 7.5 危険 CUBIC FACTORY - CUBIC CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-1619 2014-01-23 16:28 2014-01-8 Show GitHub Exploit DB Packet Storm
226264 7.8 危険 Ecava - Ecava IntegraXor の SCADA サーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-0753 2014-01-23 16:17 2014-01-16 Show GitHub Exploit DB Packet Storm
226265 2.6 注意 httplib2 Project
Canonical
- httplib2 における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認
CVE-2013-2037 2014-01-23 16:11 2013-04-23 Show GitHub Exploit DB Packet Storm
226266 7.5 危険 UAEPD - UAEPD Shopping Cart Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-1618 2014-01-23 15:57 2014-01-8 Show GitHub Exploit DB Packet Storm
226267 5.8 警告 FreeBSD - FreeBSD で使用される bsnmpd の lib/snmpagent.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-1452 2014-01-23 15:49 2014-01-14 Show GitHub Exploit DB Packet Storm
226268 6.5 警告 Open Dynamics - Collabtive の managetimetracker.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-6872 2014-01-23 15:44 2013-11-26 Show GitHub Exploit DB Packet Storm
226269 4.3 警告 IBM - 複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6746 2014-01-23 15:36 2013-12-23 Show GitHub Exploit DB Packet Storm
226270 10 危険 IBM - IBM Java SDK における脆弱性 CWE-noinfo
情報不足
CVE-2013-0485 2014-01-23 15:36 2013-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274311 8.8 HIGH
Network
mozilla
oracle
firefox
linux
Use-after-free vulnerability in the nsNodeUtils::NativeAnonymousChildListChange function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary c… CWE-416
 Use After Free
CVE-2016-5264 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274312 8.8 HIGH
Network
mozilla
oracle
firefox
linux
The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary cod… CWE-704
 Incorrect Type Conversion or Cast
CVE-2016-5263 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274313 6.1 MEDIUM
Network
mozilla
oracle
firefox
linux
Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 process JavaScript event-handler attributes of a MARQUEE element within a sandboxed IFRAME element that lacks the sandbox="allow-scripts" … CWE-79
Cross-site Scripting
CVE-2016-5262 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274314 8.8 HIGH
Network
mozilla firefox Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR < 45.4 allows remote attackers to execute arbitrary code or cause a denial of… CWE-190
 Integer Overflow or Wraparound
CVE-2016-5261 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274315 6.5 MEDIUM
Network
mozilla firefox Mozilla Firefox before 48.0 mishandles changes from 'INPUT type="password"' to 'INPUT type="text"' within a single Session Manager session, which might allow attackers to discover cleartext passwords… CWE-200
Information Exposure
CVE-2016-5260 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274316 8.8 HIGH
Network
mozilla
oracle
firefox
linux
Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via a scrip… CWE-416
 Use After Free
CVE-2016-5259 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274317 8.8 HIGH
Network
oracle
mozilla
linux
firefox
Use-after-free vulnerability in the WebRTC socket thread in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code by leveraging incorrect free… CWE-416
 Use After Free
CVE-2016-5258 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274318 8.8 HIGH
Network
mozilla firefox Use-after-free vulnerability in the js::PreliminaryObjectArray::sweep function in Mozilla Firefox before 48.0 allows remote attackers to execute arbitrary code via crafted JavaScript that is mishandl… CWE-416
 Use After Free
CVE-2016-5255 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274319 9.8 CRITICAL
Network
mozilla
oracle
firefox
linux
Use-after-free vulnerability in the nsXULPopupManager::KeyDown function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows attackers to execute arbitrary code or cause a denial of… CWE-416
 Use After Free
CVE-2016-5254 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm
274320 4.7 MEDIUM
Local
mozilla firefox The Updater in Mozilla Firefox before 48.0 on Windows allows local users to write to arbitrary files via vectors involving the callback application-path parameter and a hard link. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5253 2024-11-21 11:53 2016-08-5 Show GitHub Exploit DB Packet Storm