Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 28, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 244961 | 6.9 | 警告 | HTTrack | - | HTTrack における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5252 | 2012-09-11 15:25 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244962 | 6.9 | 警告 | IBM | - | IBM Lotus Notes における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5251 | 2012-09-11 15:24 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244963 | 6.9 | 警告 | ソフォス | - | Sophos Free Encryption および Sophos SafeGuard PrivateCrypto における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5249 | 2012-09-11 15:22 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244964 | 6.9 | 警告 | UltraVNC | - | UltraVNC における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5248 | 2012-09-11 15:22 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244965 | 6.9 | 警告 | QtWeb.NET | - | QtWeb Browser における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5247 | 2012-09-11 15:21 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244966 | 6.9 | 警告 | Maxthon | - | Maxthon Browser における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5246 | 2012-09-11 15:20 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244967 | 6.9 | 警告 | Tracker Software Products | - | PDF-XChange における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5245 | 2012-09-11 15:20 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244968 | 6.9 | 警告 | SiSoftware | - | SiSoftware Sandra における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5244 | 2012-09-11 15:19 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244969 | 6.9 | 警告 | サイバーリンク株式会社 | - | Cyberlink Power2Go における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5243 | 2012-09-11 15:18 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
| 244970 | 6.9 | 警告 | Sony Creative Software | - | Sound Forge Pro における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2010-5242 | 2012-09-11 15:18 | 2012-09-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 28, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251891 | 8.1 |
HIGH
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process whe… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2018-12386 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251892 | 7.0 |
HIGH
Local |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination w… |
CWE-20
Improper Input Validation |
CVE-2018-12385 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251893 | 5.5 |
MEDIUM
Local |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… |
CWE-522
Insufficiently Protected Credentials |
CVE-2018-12383 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251894 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12373 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251895 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12372 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251896 | 8.8 |
HIGH
Network |
canonical mozilla |
ubuntu_linux firefox |
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … |
CWE-352
Origin Validation Error |
CVE-2018-12370 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251897 | 9.8 |
CRITICAL
Network |
mozilla canonical |
firefox firefox_esr ubuntu_linux |
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… |
CWE-863
Incorrect Authorization |
CVE-2018-12369 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251898 | 7.8 |
HIGH
Local |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux fir… |
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running t… |
CWE-787
Out-of-bounds Write |
CVE-2018-12379 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251899 | 9.8 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server_tus debian_linux ubu… |
A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploita… |
CWE-416
Use After Free |
CVE-2018-12378 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 251900 | 9.8 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exp… |
CWE-416
Use After Free |
CVE-2018-12377 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |