Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237161	3.5	注意	Commerce Guys	-	Drupal 用 Drupal Commerce モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1639	2012-10-3 13:20	2012-01-25	Show	GitHub Exploit DB Packet Storm

237162	6	警告	Atheme.org	-	Atheme の libathemecore/account.c における異なるユーザにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1576	2012-10-3 13:09	2012-10-1	Show	GitHub Exploit DB Packet Storm

237163	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2011-3027	2012-10-2 17:27	2012-02-15	Show	GitHub Exploit DB Packet Storm

237164	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3021	2012-10-2 17:23	2012-02-15	Show	GitHub Exploit DB Packet Storm

237165	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3016	2012-10-2 17:19	2012-02-15	Show	GitHub Exploit DB Packet Storm

237166	6.8	警告	アップル Google	-	複数の製品で使用される Webkit における URL バーを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2845	2012-10-2 17:08	2011-10-25	Show	GitHub Exploit DB Packet Storm

237167	5	警告	Drupal	-	Drupal の image モジュールにおけるプライベートな画像スタイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1591	2012-10-2 16:26	2012-05-2	Show	GitHub Exploit DB Packet Storm

237168	4.9	警告	Cumin	-	Red Hat Enterprise MRG で使用される Cumin における Condor の属性を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3459	2012-10-2 16:26	2012-09-28	Show	GitHub Exploit DB Packet Storm

237169	4	警告	Cumin レッドハット	-	Red Hat Enterprise MRG で使用される Cumin におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2685	2012-10-2 16:26	2012-09-28	Show	GitHub Exploit DB Packet Storm

237170	4	警告	Drupal	-	Drupal における公開されたすべてのノードを読み取られる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2153	2012-10-2 16:26	2012-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346171	-	easy_software_products gnome kde pdftohtml tetex xpdf debian gentoo redhat suse ubuntu	cups gpdf koffice kpdf pdftohtml tetex xpdf debian_linux linux kde enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linu…	Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly exe…	NVD-CWE-Other	CVE-2004-0888	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346172	-	rob_flynn gentoo slackware ubuntu	gaim linux slackware_linux ubuntu_linux	Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequ…	NVD-CWE-Other	CVE-2004-0891	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346173	-	mozilla conectiva redhat suse	mozilla thunderbird linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ex…	NVD-CWE-Other	CVE-2004-0903	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346174	-	mozilla netscape conectiva redhat	firefox mozilla thunderbird navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation	Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide…	NVD-CWE-Other	CVE-2004-0904	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346175	-	mozilla netscape conectiva redhat suse	firefox mozilla navigator linux enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation suse_linux	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincin…	NVD-CWE-Other	CVE-2004-0905	2017-10-11 10:29	2004-09-14	Show	GitHub Exploit DB Packet Storm

346176	-	mozilla	mozilla thunderbird	The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, whic…	NVD-CWE-Other	CVE-2004-0906	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346177	-	mozilla	mozilla thunderbird	Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive informa…	NVD-CWE-Other	CVE-2004-0908	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346178	-	lesstif x.org xfree86_project gentoo redhat suse	lesstif x11r6 linux fedora_core suse_linux	Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4…	NVD-CWE-Other	CVE-2004-0914	2017-10-11 10:29	2005-01-10	Show	GitHub Exploit DB Packet Storm

346179	-	openpkg squid gentoo redhat trustix ubuntu	openpkg squid linux fedora_core secure_linux ubuntu_linux	The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets w…	CWE-399 Resource Management Errors	CVE-2004-0918	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

346180	-	easy_software_products apple	cups mac_os_x mac_os_x_server	CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.	NVD-CWE-Other	CVE-2004-0923	2017-10-11 10:29	2005-01-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed