Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
230711 1.9 注意 Linux - Linux Kernel の fs/ext4/extents.c における重要な情報を取得される脆弱性 CWE-362
競合状態
CVE-2012-4508 2013-03-28 18:28 2012-10-28 Show GitHub Exploit DB Packet Storm
230712 2.6 注意 アップル - Apple iOS および Apple Safari で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-0962 2013-03-28 16:24 2013-01-29 Show GitHub Exploit DB Packet Storm
230713 4.3 警告 アップル
Google
- 複数の製品で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2889 2013-03-28 15:54 2012-09-25 Show GitHub Exploit DB Packet Storm
230714 6.8 警告 シマンテック - Symantec Enterprise Vault for File System Archiving における権限を取得される脆弱性 CWE-Other
その他
CVE-2013-1609 2013-03-28 15:32 2013-03-21 Show GitHub Exploit DB Packet Storm
230715 6 警告 IBM - IBM Domino の webadmin.nsf におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-0489 2013-03-28 15:26 2013-03-21 Show GitHub Exploit DB Packet Storm
230716 4.3 警告 IBM - IBM Domino の webadmin.nsf におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-0488 2013-03-28 15:25 2013-03-21 Show GitHub Exploit DB Packet Storm
230717 8.5 危険 IBM - IBM Domino の Java コンソールにおける一時的な資格をハイジャックされる脆弱性 CWE-287
不適切な認証
CVE-2013-0487 2013-03-28 15:23 2013-03-21 Show GitHub Exploit DB Packet Storm
230718 1.5 注意 IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-0525 2013-03-28 15:17 2013-03-21 Show GitHub Exploit DB Packet Storm
230719 4.3 警告 IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5943 2013-03-28 14:27 2013-03-21 Show GitHub Exploit DB Packet Storm
230720 5 警告 IBM - Lotus Domino におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2013-0486 2013-03-28 12:00 2013-03-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294821 7.5 HIGH
Network
mozilla
fedoraproject
opensuse
suse
canonical
debian
redhat
seamonkey
firefox
firefox_esr
thunderbird
fedora
opensuse
suse_linux_enterprise_software_development_kit
suse_linux_enterprise_desktop
suse_linux_enterprise_server
ubuntu_l…
The Web workers implementation in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers to bypass the Same Origin Polic… CWE-346
 Origin Validation Error
CVE-2014-1487 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294822 9.8 CRITICAL
Network
mozilla
fedoraproject
opensuse
suse
debian
canonical
redhat
seamonkey
firefox
firefox_esr
thunderbird
fedora
opensuse
suse_linux_enterprise_software_development_kit
suse_linux_enterprise_desktop
suse_linux_enterprise_server
debian_l…
Use-after-free vulnerability in the imgRequestProxy function in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers t… CWE-416
 Use After Free
CVE-2014-1486 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294823 8.8 HIGH
Network
mozilla
canonical
debian
redhat
fedoraproject
opensuse
suse
seamonkey
firefox
firefox_esr
thunderbird
ubuntu_linux
debian_linux
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_workstation
enterprise_linux_server…
RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent access to discarded data, which allows remote attacke… CWE-787
 Out-of-bounds Write
CVE-2014-1482 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294824 7.5 HIGH
Network
mozilla
fedoraproject
opensuse
suse
redhat
debian
canonical
seamonkey
firefox
firefox_esr
thunderbird
fedora
opensuse
suse_linux_enterprise_software_development_kit
suse_linux_enterprise_desktop
suse_linux_enterprise_server
enterpri…
Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to bypass intended restrictions on window objects by leveraging in… NVD-CWE-noinfo
CVE-2014-1481 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294825 7.5 HIGH
Network
mozilla
canonical
debian
redhat
fedoraproject
opensuse
suse
seamonkey
firefox
firefox_esr
thunderbird
ubuntu_linux
debian_linux
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_workstation
enterprise_linux_server…
The System Only Wrapper (SOW) implementation in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent certain cloning operatio… NVD-CWE-noinfo
CVE-2014-1479 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294826 - mozilla
canonical
opensuse
oracle
seamonkey
firefox
ubuntu_linux
opensuse
solaris
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to cause a denial of service (memory corruption and applicat… CWE-787
 Out-of-bounds Write
CVE-2014-1478 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294827 - hiphop_virtual_machine_for_php_project hiphop_virtual_machine_for_php The libxml_disable_entity_loader function in runtime/ext/ext_simplexml.cpp in HipHop Virtual Machine for PHP (HHVM) before 2.4.0 and 2.3.x before 2.3.3 does not properly disable a certain libxml hand… NVD-CWE-Other
CVE-2014-1439 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294828 9.8 CRITICAL
Network
mozilla
canonical
debian
redhat
fedoraproject
opensuse
suse
seamonkey
firefox
firefox_esr
thunderbird
ubuntu_linux
debian_linux
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_workstation
enterprise_linux_server…
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to c… NVD-CWE-noinfo
CVE-2014-1477 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294829 - easyxdm easyxdm Cross-site scripting (XSS) vulnerability in name.html in easyXDM before 2.4.19 allows remote attackers to inject arbitrary web script or HTML via the location.hash value. CWE-79
Cross-site Scripting
CVE-2014-1403 2024-11-21 11:04 2014-02-6 Show GitHub Exploit DB Packet Storm
294830 - fortinet fortiweb Cross-site scripting (XSS) vulnerability in the web administration interface in FortiGuard FortiWeb 5.0.3 and earlier allows remote authenticated administrators to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting
CVE-2014-1458 2024-11-21 11:04 2014-02-5 Show GitHub Exploit DB Packet Storm