Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231791	4.3	警告	The Cacti Group	-	Cacti の logout.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5223	2012-10-29 15:25	2011-12-11	Show	GitHub Exploit DB Packet Storm

231792	7.5	危険	Scripte24Shop	-	PHP Flirt-Projekt の rub2_w.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5222	2012-10-29 15:22	2012-10-25	Show	GitHub Exploit DB Packet Storm

231793	4.3	警告	WebSVN	-	WebSVN の svnlook.php 内の getLog 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5221	2012-10-29 15:19	2010-04-20	Show	GitHub Exploit DB Packet Storm

231794	4.3	警告	Cristopher Shi	-	PHP-SCMS の templates/default/Admin/Login.html におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5220	2012-10-29 15:18	2012-10-25	Show	GitHub Exploit DB Packet Storm

231795	5	警告	Ian Back	-	mPDF の examples/show_code.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-5219	2012-10-29 15:18	2012-10-25	Show	GitHub Exploit DB Packet Storm

231796	7.5	危険	DotA OpenStats	-	DotA OpenStats における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5218	2012-10-29 15:17	2012-10-25	Show	GitHub Exploit DB Packet Storm

231797	5	警告	日立	-	日立の JP1/ServerConductor/DeploymentManager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-5217	2012-10-29 15:13	2011-12-15	Show	GitHub Exploit DB Packet Storm

231798	7.5	危険	Rustici Software	-	WordPress 用 SCORM Cloud For WordPress プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5216	2012-10-29 15:05	2012-10-25	Show	GitHub Exploit DB Packet Storm

231799	7.5	危険	2daybiz	-	Video Community Portal の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5215	2012-10-29 15:04	2012-10-25	Show	GitHub Exploit DB Packet Storm

231800	4.3	警告	BrowserCRM	-	BrowserCRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5214	2012-10-29 15:03	2012-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292551	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3989	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292552	-	mozilla	firefox	Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3987	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292553	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (…	CWE-79 Cross-site Scripting	CVE-2012-3985	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292554	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att…	NVD-CWE-Other	CVE-2012-3984	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292555	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…	CWE-416 Use After Free	CVE-2012-3990	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292556	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 might allow user-as…	CWE-416 Use After Free	CVE-2012-3988	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292557	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict calls to DOMWindowUtils (a…	CWE-20 Improper Input Validation	CVE-2012-3986	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292558	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 allow remote attackers to cause a denial of service (memo…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3983	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292559	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey b…	NVD-CWE-noinfo	CVE-2012-3982	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292560	-	freebsd	freebsd	The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted ASCONF chunk.	NVD-CWE-Other	CVE-2012-3549	2024-11-21 10:41	2012-10-10	Show	GitHub Exploit DB Packet Storm