Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 231741 | 7.5 | 危険 | phpreactor | - | Reactor における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3066 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231742 | 5 | 警告 | sendcard | - | SendCard における重要な情報を取得される脆弱性 | - | CVE-2007-3059 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231743 | 6.8 | 警告 | XOOPS | - | XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-3057 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231744 | 4.3 | 警告 | WebSVN | - | WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-3056 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231745 | 7.5 | 危険 | postnuke software foundation | - | PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性 | - | CVE-2007-3052 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231746 | 7.5 | 危険 | revokesoft | - | RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性 | - | CVE-2007-3051 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231747 | 10 | 危険 | Vonage | - | Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性 | - | CVE-2007-3047 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231748 | 4.3 | 警告 | シマンテック | - | Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性 | - | CVE-2007-3022 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231749 | 7.5 | 危険 | シマンテック | - | Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性 | - | CVE-2007-3021 | 2012-12-20 18:19 | 2007-06-5 | Show | GitHub Exploit DB Packet Storm |
| 231750 | 9.3 | 危険 | zenturi | - | Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2007-2987 | 2012-12-20 18:19 | 2007-06-1 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 297701 | - |
mozilla redhat canonical suse |
firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri… |
The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote… |
CWE-125
Out-of-bounds Read |
CVE-2012-3995 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297702 | - | mozilla |
firefox thunderbird_esr thunderbird seamonkey |
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 d… |
CWE-269
Improper Privilege Management |
CVE-2012-3993 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297703 | - |
mozilla suse redhat canonical |
firefox thunderbird_esr thunderbird seamonkey linux_enterprise_server linux_enterprise_desktop linux_enterprise_sdk enterprise_linux_server enterprise_linux_workstation ubu… |
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allow remote attackers to conduct cross-site script… |
CWE-79
Cross-site Scripting |
CVE-2012-3994 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297704 | - |
mozilla redhat canonical suse |
firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri… |
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows r… |
CWE-79
Cross-site Scripting |
CVE-2012-3992 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297705 | - |
mozilla redhat canonical suse |
firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri… |
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2012-3991 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297706 | - |
mozilla canonical suse |
firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server |
Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2012-3989 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297707 | - | mozilla | firefox | Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2012-3987 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297708 | - |
mozilla canonical suse |
firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server |
Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (… |
CWE-79
Cross-site Scripting |
CVE-2012-3985 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297709 | - |
mozilla canonical suse |
firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server |
Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att… |
NVD-CWE-Other
|
CVE-2012-3984 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm | |
| 297710 | - |
mozilla redhat canonical suse debian |
firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri… |
Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S… |
CWE-416
Use After Free |
CVE-2012-3990 | 2024-11-21 10:41 | 2012-10-11 | Show | GitHub Exploit DB Packet Storm |