Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231901	6.8	警告	X7 Group	-	X7 Chat におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6047	2012-11-28 15:02	2012-11-27	Show	GitHub Exploit DB Packet Storm

231902	10	危険	PHP Enter	-	PHP Enter の admin/banners.php における horad.php への任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-6046	2012-11-28 14:57	2012-11-27	Show	GitHub Exploit DB Packet Storm

231903	4.3	警告	ramui.com	-	Ramui Forum の gb/user/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6045	2012-11-28 14:56	2012-11-27	Show	GitHub Exploit DB Packet Storm

231904	10	危険	Joobi	-	Joomla! 用 Jstore コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-5286	2012-11-28 14:55	2012-11-26	Show	GitHub Exploit DB Packet Storm

231905	6.8	警告	Open Dynamics	-	Collabtive の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-5285	2012-11-28 14:32	2012-11-26	Show	GitHub Exploit DB Packet Storm

231906	4.3	警告	Open Dynamics	-	Collabtive におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5284	2012-11-28 14:31	2012-11-26	Show	GitHub Exploit DB Packet Storm

231907	6.8	警告	OpenText	-	OpenText ECM におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-5283	2012-11-28 14:30	2012-11-26	Show	GitHub Exploit DB Packet Storm

231908	4.3	警告	OpenText	-	OpenText ECM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5282	2012-11-28 14:29	2012-11-26	Show	GitHub Exploit DB Packet Storm

231909	6.8	警告	net4visions	-	IBrowser TinyMCE プラグインの CMScout 内の ibrowser.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-5281	2012-11-28 14:27	2012-11-26	Show	GitHub Exploit DB Packet Storm

231910	7.5	危険	Joomla-CBE	-	Joomla! 用 CBE コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-5280	2012-11-28 14:26	2012-11-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293531	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote…	CWE-125 Out-of-bounds Read	CVE-2012-3995	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293532	-	mozilla	firefox thunderbird_esr thunderbird seamonkey	The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 d…	CWE-269 Improper Privilege Management	CVE-2012-3993	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293533	-	mozilla suse redhat canonical	firefox thunderbird_esr thunderbird seamonkey linux_enterprise_server linux_enterprise_desktop linux_enterprise_sdk enterprise_linux_server enterprise_linux_workstation ubu…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allow remote attackers to conduct cross-site script…	CWE-79 Cross-site Scripting	CVE-2012-3994	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293534	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows r…	CWE-79 Cross-site Scripting	CVE-2012-3992	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293535	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3991	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293536	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3989	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293537	-	mozilla	firefox	Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3987	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293538	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (…	CWE-79 Cross-site Scripting	CVE-2012-3985	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293539	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att…	NVD-CWE-Other	CVE-2012-3984	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

293540	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…	CWE-416 Use After Free	CVE-2012-3990	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm