Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240431 7.5 危険 jetstat.com - Jetstat.com JS ASP Faq Manager の admin/default.asp における SQL インジェクションの脆弱性 - CVE-2006-4590 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240432 7.5 危険 Linux - Linux kernel の netfilter の ip6_tables におけるプロトコルを拒否するルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2006-4572 2012-09-25 15:35 2006-11-6 Show GitHub Exploit DB Packet Storm
240433 7.5 危険 Mozilla Foundation - Mozilla Firefox における任意の JavaScript を実行される脆弱性 - CVE-2006-4561 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240434 7.5 危険 マイクロソフト - Windows XP SP2 上の Internet Explorer 6 における任意の JavaScript を実行される脆弱性 - CVE-2006-4560 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240435 6.8 警告 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の com_comprofiler コンポーネントにおける脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4553 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240436 7.8 危険 Novell - Novell eDirectory の ncp におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4520 2012-09-25 15:35 2007-04-30 Show GitHub Exploit DB Packet Storm
240437 6.5 警告 Lyris - Lyris ListManager における重要な情報を取得される脆弱性 - CVE-2006-4547 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240438 6.5 警告 Lyris - Lyris ListManager における任意のリストに新規管理者を追加される脆弱性 - CVE-2006-4546 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240439 6.8 警告 hlstats - HLStats の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4543 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
240440 4.6 警告 インターネット セキュリティ システムズ - BlackICE PC Protection の RapDrv.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-4541 2012-09-25 15:35 2006-09-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267281 4.3 MEDIUM
Network 		canonical
mozilla
opensuse 		ubuntu_linux
firefox
leap
opensuse 		Mozilla Firefox before 47.0 allows remote attackers to discover the list of disabled plugins via a fingerprinting attack involving Cascading Style Sheets (CSS) pseudo-classes. CWE-200
Information Exposure 		CVE-2016-2832 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267282 8.8 HIGH
Network 		canonical
mozilla
debian
opensuse 		ubuntu_linux
firefox
debian_linux
leap
opensuse 		Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that the user approves the fullscreen and pointerlock settings, which allows remote attackers to cause a denial of service (… CWE-254
CWE-284
 7PK - Security Features
Improper Access Control 		CVE-2016-2831 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267283 6.5 MEDIUM
Network 		canonical
mozilla
opensuse 		ubuntu_linux
firefox
leap
opensuse 		Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or… CWE-284
Improper Access Control 		CVE-2016-2829 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267284 8.8 HIGH
Network 		canonical
opensuse
mozilla
debian 		ubuntu_linux
leap
opensuse
firefox
debian_linux 		Use-after-free vulnerability in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via WebGL content that triggers texture access after des… NVD-CWE-Other
CVE-2016-2828 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267285 7.8 HIGH
Local 		mozilla firefox The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local u… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2826 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267286 6.5 MEDIUM
Network 		canonical
opensuse
mozilla 		ubuntu_linux
leap
opensuse
firefox 		Mozilla Firefox before 47.0 allows remote attackers to bypass the Same Origin Policy and modify the location.host property via an invalid data: URL. CWE-284
Improper Access Control 		CVE-2016-2825 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267287 8.8 HIGH
Network 		mozilla
opensuse 		firefox
leap
opensuse 		The TSymbolTableLevel class in ANGLE, as used in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows, allows remote attackers to cause a denial of service (out-of-bounds write and… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2824 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267288 6.5 MEDIUM
Network 		debian
mozilla
canonical
opensuse 		debian_linux
firefox
ubuntu_linux
leap
opensuse 		Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu. CWE-284
Improper Access Control 		CVE-2016-2822 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267289 7.5 HIGH
Network 		mozilla
debian
opensuse
canonical 		firefox
debian_linux
leap
opensuse
ubuntu_linux 		Use-after-free vulnerability in the mozilla::dom::Element class in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2, when contenteditable mode is enabled, allows remote attackers to execu… NVD-CWE-Other
CVE-2016-2821 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
267290 8.8 HIGH
Network 		opensuse
mozilla
debian
canonical 		leap
opensuse
firefox
debian_linux
ubuntu_linux 		Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2819 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm