Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 244961 | 7.5 | 危険 | drake team | - | Drake CMS の components/guestbook/guestbook.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6475 | 2012-06-26 16:10 | 2009-03-16 | Show | GitHub Exploit DB Packet Storm |
| 244962 | 6.8 | 警告 | edikon | - | Edikon phpShop におけるセッションをハイジャックされる脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-6455 | 2012-06-26 16:10 | 2009-03-13 | Show | GitHub Exploit DB Packet Storm |
| 244963 | 7.5 | 危険 | 6rbscript | - | 6rbScript の section.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6454 | 2012-06-26 16:10 | 2009-03-13 | Show | GitHub Exploit DB Packet Storm |
| 244964 | 4.3 | 警告 | 6rbscript | - | 6rbScript の section.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-6453 | 2012-06-26 16:10 | 2009-03-13 | Show | GitHub Exploit DB Packet Storm |
| 244965 | 7.5 | 危険 | geniuscyber | - | CMS MAXSITE の Guestbook コンポーネントにおける guestbook に任意の PHP コードを挿入される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-6446 | 2012-06-26 16:10 | 2009-03-9 | Show | GitHub Exploit DB Packet Storm |
| 244966 | 10 | 危険 | Baidu, Inc. | - | Baidu Hi IM の CSTransfer.dll におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-6444 | 2012-06-26 16:10 | 2009-03-9 | Show | GitHub Exploit DB Packet Storm |
| 244967 | 9.3 | 危険 | epic games | - | ゲーム製品で使用される Epic Games Unreal エンジンクライアントにおけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2008-6441 | 2012-06-26 16:10 | 2009-03-9 | Show | GitHub Exploit DB Packet Storm |
| 244968 | 5 | 警告 | Cerberus, LLC | - | Cerberus Helpdesk における重要な情報を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-6440 | 2012-06-26 16:10 | 2009-03-6 | Show | GitHub Exploit DB Packet Storm |
| 244969 | 4.3 | 警告 | abledating | - | ABK-Soft AbleDating の search_results.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-6439 | 2012-06-26 16:10 | 2009-03-6 | Show | GitHub Exploit DB Packet Storm |
| 244970 | 7.5 | 危険 | e107.org e107coders |
- | e107 用 MacGuru BLOG Engine プラグイン のmacgurublog_menu/macgurublog.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-6438 | 2012-06-26 16:10 | 2009-03-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 6, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252751 | 9.8 |
CRITICAL
Network |
mozilla debian |
firefox thunderbird firefox_esr debian_linux |
A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firef… |
CWE-416
Use After Free |
CVE-2017-7756 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252752 | 7.8 |
HIGH
Local |
mozilla |
firefox firefox_esr thunderbird |
The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. This allows privileged execution if the installer is run with el… |
CWE-426
Untrusted Search Path |
CVE-2017-7755 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252753 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.
|
CWE-125
|
Out-of-bounds Read
CVE-2017-7754
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 252754 | 9.1 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefo… |
CWE-125
Out-of-bounds Read |
CVE-2017-7753 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252755 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2. |
CWE-416
Use After Free |
CVE-2017-7751 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252756 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < … |
CWE-416
Use After Free |
CVE-2017-7749 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252757 | 8.8 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash bu… |
CWE-416
Use After Free |
CVE-2017-7752 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252758 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during video control operations when a "<track>" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially… |
CWE-416
Use After Free |
CVE-2017-7750 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252759 | 9.8 |
CRITICAL
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access. |
CWE-522
Insufficiently Protected Credentials |
CVE-2017-7933 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |
| 252760 | 9.8 |
CRITICAL
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without au… |
CWE-287
Improper Authentication |
CVE-2017-7931 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |