Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240411	7.5	危険	mam-moodle alpha component	-	Mambo 用の Mam-moodle alpha コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3951	2012-09-25 15:35	2006-07-10	Show	GitHub Exploit DB Packet Storm

240412	6.8	警告	Mambo Foundation	-	Mambo 用の artlinks コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3949	2012-09-25 15:35	2006-08-1	Show	GitHub Exploit DB Packet Storm

240413	6.8	警告	Mambo Foundation	-	Mambo 用の Mambatstaff における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3947	2012-09-25 15:35	2006-08-1	Show	GitHub Exploit DB Packet Storm

240414	4.9	警告	neoscale systems	-	NeoScale Systems CryptoStor 700 シリーズアプライアンスにおけるスマートカード認証を回避される脆弱性	-	CVE-2006-3896	2012-09-25 15:35	2006-12-19	Show	GitHub Exploit DB Packet Storm

240415	7.5	危険	IBM	-	IBM IDS におけるバッファオーバーフローの脆弱性	-	CVE-2006-3862	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

240416	4	警告	IBM	-	IBM IDS における任意のデータベースを作成される脆弱性	-	CVE-2006-3861	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

240417	7.5	危険	IBM	-	IBM IDS における任意のコマンドを実行される脆弱性	-	CVE-2006-3860	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

240418	4	警告	IBM	-	IBM IDS における任意のファイルを上書きされる脆弱性	-	CVE-2006-3859	2012-09-25 15:35	2006-08-16	Show	GitHub Exploit DB Packet Storm

240419	2.1	注意	IBM	-	IBM IDS におけるパスワードを取得される脆弱性	-	CVE-2006-3858	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

240420	6.5	警告	IBM	-	IBM IDS におけるバッファオーバーフローの脆弱性	-	CVE-2006-3857	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267751	8.8	HIGH Network	mozilla opensuse	firefox leap opensuse	The nsZipArchive function in Mozilla Firefox before 44.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer d…	NVD-CWE-noinfo	CVE-2016-1945	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267752	9.8	CRITICAL Network	mozilla opensuse	firefox leap opensuse	The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox before 44.0, might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1944	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267753	4.7	MEDIUM Network	opensuse mozilla google	leap opensuse firefox android	Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via the scrollTo method.	CWE-17 Code	CVE-2016-1943	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267754	7.4	HIGH Network	opensuse mozilla	leap opensuse firefox	Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.	CWE-20 Improper Input Validation	CVE-2016-1942	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267755	6.1	MEDIUM Network	apple mozilla	mac_os_x firefox	The file-download dialog in Mozilla Firefox before 44.0 on OS X enables a certain button too quickly, which allows remote attackers to conduct clickjacking attacks via a crafted web site that trigger…	CWE-79 Cross-site Scripting	CVE-2016-1941	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267756	5.3	MEDIUM Network	google mozilla	android firefox	Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.	CWE-17 Code	CVE-2016-1940	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267757	5.3	MEDIUM Network	opensuse mozilla	leap opensuse firefox	Mozilla Firefox before 44.0 stores cookies with names containing vertical tab characters, which allows remote attackers to obtain sensitive information by reading HTTP Cookie headers. NOTE: this vul…	CWE-200 Information Exposure	CVE-2016-1939	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267758	6.5	MEDIUM Network	opensuse mozilla	leap opensuse nss firefox	The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services (NSS) before 3.21, as used in Mozilla Firefox before 44.0, improperly divides numbers, which might make it easier fo…	CWE-310 Cryptographic Issues	CVE-2016-1938	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267759	6.1	MEDIUM Network	mozilla opensuse	firefox leap opensuse	The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a do…	CWE-79 Cross-site Scripting	CVE-2016-1937	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm

267760	8.8	HIGH Network	opensuse oracle mozilla	leap opensuse linux firefox	Buffer overflow in the BufferSubData function in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allows remote attackers to execute arbitrary code via crafted WebGL content.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1935	2024-11-21 11:47	2016-02-1	Show	GitHub Exploit DB Packet Storm