Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245191 3.6 注意 Novell - Novell IDM の idmlib.sh における任意のコマンドを実行される脆弱性 - CVE-2006-4506 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245192 7.5 危険 nx5 - NX5Linx の links.php における CRLF インジェクションの脆弱性 - CVE-2006-4505 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245193 7.5 危険 nx5 - NX5Linx における SQL インジェクションの脆弱性 - CVE-2006-4504 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245194 5 警告 nx5 - NX5Linx の link.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4503 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245195 5 警告 moderngigabyte - ModernBill におけるネットワークトラフィックを読み取られる脆弱性 - CVE-2006-4499 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245196 7.5 危険 iwebnegar - IwebNegar の comments.php における SQL インジェクションの脆弱性 - CVE-2006-4497 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245197 4.3 警告 iwebnegar - IwebNegar の comments.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4496 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245198 7.5 危険 マイクロソフト - Microsoft Internet Explorer 6 における任意のコードを実行される脆弱性 - CVE-2006-4495 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245199 7.5 危険 マイクロソフト - Microsoft Visual Studio 6.0 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4494 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
245200 9.3 危険 The PHP Group - PHP の cURL 拡張ファイルにおける不正なアクションを実行される脆弱性 CWE-Other
その他
CVE-2006-4483 2012-09-25 15:35 2006-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252451 8.8 HIGH
Network
mozilla
canonical
firefox
ubuntu_linux
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-12375 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252452 4.3 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12374 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252453 9.1 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory addr… CWE-20
 Improper Input Validation 
CVE-2018-12387 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252454 8.1 HIGH
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process whe… CWE-704
 Incorrect Type Conversion or Cast
CVE-2018-12386 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252455 7.0 HIGH
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination w… CWE-20
 Improper Input Validation 
CVE-2018-12385 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252456 5.5 MEDIUM
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… CWE-522
 Insufficiently Protected Credentials
CVE-2018-12383 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252457 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12373 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252458 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12372 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252459 8.8 HIGH
Network
canonical
mozilla
ubuntu_linux
firefox
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … CWE-352
 Origin Validation Error
CVE-2018-12370 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252460 9.8 CRITICAL
Network
mozilla
canonical
firefox
firefox_esr
ubuntu_linux
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… CWE-863
 Incorrect Authorization
CVE-2018-12369 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm