Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228581	4.3	警告	ヒューレット・パッカード	-	HP Application Lifecycle Management Quality Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4802	2013-07-30 12:25	2013-07-24	Show	GitHub Exploit DB Packet Storm

228582	5	警告	シスコシステムズ	-	Cisco Identity Services Engine のファイアウォールサブシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3445	2013-07-30 11:02	2013-07-25	Show	GitHub Exploit DB Packet Storm

228583	4	警告	WorldWide Conferencing, LLC	-	Lift の json/JsonParser.scala の JsonParser クラスにおける重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-3300	2013-07-30 10:49	2013-04-5	Show	GitHub Exploit DB Packet Storm

228584	10	危険	ASUSTeK Computer Inc.	-	複数の ASUS ルータ製品のファームウェアの AiCloud 機能における脆弱性	CWE-noinfo 情報不足	CVE-2013-4937	2013-07-29 16:30	2013-07-17	Show	GitHub Exploit DB Packet Storm

228585	6.9	警告	マイクロソフト	-	Microsoft Internet Explorer 6 から 10 における保護メカニズムの昇格ポリシーチェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4015	2013-07-29 13:41	2013-07-18	Show	GitHub Exploit DB Packet Storm

228586	7.8	危険	シスコシステムズ	-	Cisco Video Surveillance Manager における重要な設定、アーカイブ、およびログ情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2013-3431	2013-07-26 14:20	2013-07-24	Show	GitHub Exploit DB Packet Storm

228587	9	危険	シスコシステムズ	-	Cisco Video Surveillance Manager における重要な設定、アーカイブ、およびログ情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-3430	2013-07-26 14:19	2013-07-24	Show	GitHub Exploit DB Packet Storm

228588	7.8	危険	シスコシステムズ	-	Cisco Video Surveillance Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3429	2013-07-26 14:19	2013-07-24	Show	GitHub Exploit DB Packet Storm

228589	4.3	警告	IBM	-	IBM Social Media Analytics におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3999	2013-07-26 14:17	2013-07-18	Show	GitHub Exploit DB Packet Storm

228590	3.5	注意	IBM	-	IBM Cognos Command Center の Web クライアントのヘルプページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3979	2013-07-26 14:16	2013-07-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276301	8.8	HIGH Network	oracle mozilla	linux firefox	Race condition in the GetStaticInstance function in the WebRTC implementation in Mozilla Firefox before 45.0 might allow remote attackers to execute arbitrary code or cause a denial of service (use-a…	NVD-CWE-Other	CVE-2016-1973	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276302	8.8	HIGH Network	mozilla	firefox	Race condition in libvpx in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via unknown vec…	NVD-CWE-Other	CVE-2016-1972	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276303	8.8	HIGH Network	mozilla	firefox	The I420VideoFrame::CreateFrame function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows omits an unspecified status check, which might allow remote attackers to cause a denial…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1971	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276304	8.8	HIGH Network	mozilla	firefox	Integer underflow in the srtp_unprotect function in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service (memory corruption) o…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1970	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276305	8.8	HIGH Network	sil mozilla	graphite2 firefox	The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.6.1, allows remote attackers to cause a denial of service (out-of-bounds write) …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1969	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276306	8.8	HIGH Network	mozilla	firefox	Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted data with brotli comp…	CWE-189 Numeric Errors	CVE-2016-1968	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276307	6.5	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 45.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive inform…	CWE-200 Information Exposure	CVE-2016-1967	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276308	8.8	HIGH Network	oracle mozilla opensuse	linux firefox thunderbird opensuse	The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or ca…	NVD-CWE-Other	CVE-2016-1966	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276309	4.3	MEDIUM Network	mozilla opensuse oracle	firefox opensuse linux	Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle a navigation sequence that returns to the original page, which allows remote attackers to spoof the address bar via vectors invo…	CWE-254 7PK - Security Features	CVE-2016-1965	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm

276310	8.8	HIGH Network	oracle suse opensuse mozilla	linux linux_enterprise leap opensuse firefox thunderbird	Use-after-free vulnerability in the AtomicBaseIncDec function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of se…	NVD-CWE-Other	CVE-2016-1964	2024-11-21 11:47	2016-03-14	Show	GitHub Exploit DB Packet Storm