Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 240641 | 9.3 | 危険 | The PHP Group | - | PHP の cURL 拡張ファイルにおける不正なアクションを実行される脆弱性 |
CWE-Other
その他 |
CVE-2006-4483 | 2012-09-25 15:35 | 2006-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240642 | 4.3 | 警告 | Nuked-Klan | - | Nuked-Klan の nuked.php における任意の Web スクリプトなどを挿入される脆弱性 | - | CVE-2006-4480 | 2012-09-25 15:35 | 2006-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240643 | 7.5 | 危険 | Joomla! | - | Joomla! における脆弱性 |
CWE-264 CWE-94 |
CVE-2006-4476 | 2012-09-25 15:35 | 2006-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240644 | 7.5 | 危険 | Joomla! | - | Joomla! における脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2006-4475 | 2012-09-25 15:35 | 2006-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240645 | 6.8 | 警告 | Joomla! | - | Joomla! におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-4474 | 2012-09-25 15:35 | 2006-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240646 | 5.1 | 警告 | Joomla! | - | Joomla! の com_content における emailform タスクを実行される脆弱性 | - | CVE-2006-4473 | 2012-09-25 15:35 | 2006-08-28 | Show | GitHub Exploit DB Packet Storm |
| 240647 | 7.5 | 危険 | Joomla! | - | Joomla! におけるユーザ認証を回避される脆弱性 | - | CVE-2006-4472 | 2012-09-25 15:35 | 2006-08-28 | Show | GitHub Exploit DB Packet Storm |
| 240648 | 6.5 | 警告 | Joomla! | - | Joomla! 用の Admin Upload Image 機能におけるファイルをディレクトリの外にアップロードされる脆弱性 | - | CVE-2006-4471 | 2012-09-25 15:35 | 2006-08-28 | Show | GitHub Exploit DB Packet Storm |
| 240649 | 7.5 | 危険 | Joomla! | - | Joomla! における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-4470 | 2012-09-25 15:35 | 2006-08-28 | Show | GitHub Exploit DB Packet Storm |
| 240650 | 7.5 | 危険 | Joomla! | - | Joomla! の PEAR.php における "リモート実行" される脆弱性 | - | CVE-2006-4469 | 2012-09-25 15:35 | 2006-08-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 287141 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 287142 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 287143 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 287144 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 287145 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 287146 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 287147 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 287148 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 287149 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allow remote attackers to cause a denial of service (memory corruption and applicat… |
NVD-CWE-noinfo
|
CVE-2014-1519 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 287150 | 8.8 |
HIGH
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allow remote attackers to c… |
NVD-CWE-noinfo
|
CVE-2014-1518 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |