Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230651 7.5 危険 tpvgames - MPCS の admin.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2293 2012-12-20 18:52 2008-05-18 Show GitHub Exploit DB Packet Storm
230652 7.5 危険 シマンテック - Symantec Altiris Deployment Solution の axengine.exe における暗号化されたドメイン資格情報を推測される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-2291 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230653 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の Agent ユーザインターフェースにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2290 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230654 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の tooltip 要素における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2289 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230655 3.6 注意 シマンテック - Symantec Altiris Deployment Solution におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2288 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230656 7.2 危険 シマンテック - Symantec Altiris Deployment Solution における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2287 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230657 7.5 危険 シマンテック - Symantec Altiris Deployment Solution の axengine.exe における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2286 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230658 5 警告 Canonical - Ubuntu Linux 上で稼動する ssh-vulnkey ツールにおける CVE-2008-0166 を悪用される脆弱性 CWE-310
暗号の問題 		CVE-2008-2285 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230659 7.5 危険 thomas voecking - Internet Photoshow および Internet Photoshow SE の admin.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2282 2012-12-20 18:52 2008-05-18 Show GitHub Exploit DB Packet Storm
230660 4.3 警告 scriptphp - Script PHP PicEngine の admin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2280 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291431 - adobe shockwave_player Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5334 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291432 - adobe shockwave_player Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5333 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291433 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before 11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux, Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380… CWE-94
Code Injection 		CVE-2013-5332 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291434 - mozilla
fedoraproject
oracle
canonical
redhat
suse
opensuse 		firefox
seamonkey
fedora
solaris
ubuntu_linux
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_… 		Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attacker… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2013-5614 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291435 9.8 CRITICAL
Network 		mozilla
fedoraproject
opensuse
suse
redhat
canonical 		firefox_esr
firefox
thunderbird
seamonkey
fedora
opensuse
suse_linux_enterprise_software_development_kit
suse_linux_enterprise_desktop
suse_linux_enterprise_server
enterpri… 		Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows … CWE-416
 Use After Free 		CVE-2013-5613 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291436 - mozilla
fedoraproject
oracle
canonical
redhat
suse
opensuse 		firefox
seamonkey
fedora
solaris
ubuntu_linux
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_… 		Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 makes it easier for remote attackers to inject arbitrary web script or HTML by leveraging a Same Orig… CWE-79
Cross-site Scripting 		CVE-2013-5612 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291437 9.8 CRITICAL
Network 		mozilla
fedoraproject
opensuse
suse
canonical
redhat 		firefox_esr
firefox
thunderbird
seamonkey
fedora
opensuse
suse_linux_enterprise_software_development_kit
suse_linux_enterprise_desktop
suse_linux_enterprise_server
ubuntu_l… 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allow remote attackers to c… NVD-CWE-noinfo
CVE-2013-5609 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291438 - adobe flash_player
air
air_sdk 		Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before 11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux, Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380… CWE-94
Code Injection 		CVE-2013-5331 2024-11-21 10:57 2013-12-12 Show GitHub Exploit DB Packet Storm
291439 - ibm rational_requirements_composer
rational_quality_manager
rational_team_concert 		Cross-site scripting (XSS) vulnerability in the search implementation in IBM Rational Quality Manager (RQM) 2.0 through 2.0.1.1, 3.x before 3.0.1.6 iFix 1, and 4.x before 4.0.5, as used in Rational T… CWE-79
Cross-site Scripting 		CVE-2013-5404 2024-11-21 10:57 2013-12-11 Show GitHub Exploit DB Packet Storm
291440 - ibm forms_viewer Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary code via an XFDL form with a long fontname value. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5447 2024-11-21 10:57 2013-12-10 Show GitHub Exploit DB Packet Storm