Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242481 10 危険 bitflux - Bitflux Upload Progress Meter の uploadprogress_php_rfc1867_file 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6361 2012-06-26 15:38 2006-12-7 Show GitHub Exploit DB Packet Storm
242482 10 危険 duware - DuWare DuClassmate の default.asp における SQL インジェクションの脆弱性 - CVE-2006-6355 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242483 7.5 危険 duware - DuWare DuNews の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-6354 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242484 5 警告 アップル - Mac OS X の BOMArchiveHelper におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6353 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242485 5 警告 frisk software - FRISK Software F-Prot Antivirus におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6352 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
242486 6.8 警告 deV!L'z Clanportal - DZCP の sites/index.php における SQL インジェクションの脆弱性 - CVE-2006-6339 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242487 5 警告 deV!L'z Clanportal - DZCP の upload/index.php における任意の .php ファイルをアップロードおよび実行される脆弱性 - CVE-2006-6338 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242488 7.5 危険 ASP indir - Aspee Ziyaretci Defteri の giris.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6337 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242489 10 危険 ライブドア - Eudora WorldMail の MAILMA.exe におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-6336 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242490 6.8 警告 シトリックス・システムズ - Citrix Presentation Server Client の SendChannelData 関数におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-6334 2012-06-26 15:38 2006-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288131 - mozilla firefox
seamonkey
thunderbird 		The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly … CWE-399
 Resource Management Errors 		CVE-2009-1302 2018-10-4 06:59 2009-04-23 Show GitHub Exploit DB Packet Storm
288132 - mozilla firefox
seamonkey
thunderbird 		The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not follow the Content-Disposition header of the inner URI, which allows remote attackers to conduct cross… CWE-16
Configuration 		CVE-2009-1306 2018-10-4 06:59 2009-04-23 Show GitHub Exploit DB Packet Storm
288133 - mozilla firefox
seamonkey
thunderbird 		The view-source: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not properly implement the Same Origin Policy, which allows remote attackers to (1) bypass crossdo… CWE-20
 Improper Input Validation  		CVE-2009-1307 2018-10-4 06:59 2009-04-23 Show GitHub Exploit DB Packet Storm
288134 - moinmoin moinmoin Cross-site scripting (XSS) vulnerability in the antispam feature (security/antispam.py) in MoinMoin 1.7 and 1.8.1 allows remote attackers to inject arbitrary web script or HTML via crafted, disallowe… CWE-79
Cross-site Scripting 		CVE-2009-0312 2018-10-4 06:58 2009-01-28 Show GitHub Exploit DB Packet Storm
288135 - mozilla firefox
seamonkey
thunderbird 		Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allow remote attackers to cause a denial of service (memory corrupti… CWE-399
 Resource Management Errors 		CVE-2009-0352 2018-10-4 06:58 2009-02-5 Show GitHub Exploit DB Packet Storm
288136 - mozilla firefox
seamonkey
thunderbird 		The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3.0.6 and other versions before 3.0.9; Thunderbird before 2.0.0.21; and SeaMonkey before 1.1.15 does not include box-drawing char… NVD-CWE-Other
CVE-2009-0652 2018-10-4 06:58 2009-02-21 Show GitHub Exploit DB Packet Storm
288137 - php php PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within… CWE-134
Use of Externally-Controlled Format String 		CVE-2009-0754 2018-10-4 06:58 2009-03-4 Show GitHub Exploit DB Packet Storm
288138 - mozilla firefox
seamonkey
thunderbird 		The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrar… CWE-399
 Resource Management Errors 		CVE-2009-0772 2018-10-4 06:58 2009-03-5 Show GitHub Exploit DB Packet Storm
288139 - mozilla firefox
seamonkey
thunderbird 		The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrar… CWE-399
 Resource Management Errors 		CVE-2009-0774 2018-10-4 06:58 2009-03-5 Show GitHub Exploit DB Packet Storm
288140 - mozilla firefox
seamonkey
thunderbird 		nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to bypass the same-origin policy and read XML data from another domain … CWE-200
Information Exposure 		CVE-2009-0776 2018-10-4 06:58 2009-03-5 Show GitHub Exploit DB Packet Storm