Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251081 | 4.3 | 警告 | IBM | - | IBM PNMSS アプライアンスの LMI におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0152 | 2012-03-27 18:42 | 2010-09-14 | Show | GitHub Exploit DB Packet Storm |
| 251082 | 7.5 | 危険 | シマンテック | - | Symantec SEP の fw_charts.php におけるレポート生成の制限を回避する脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0114 | 2012-03-27 18:42 | 2010-12-15 | Show | GitHub Exploit DB Packet Storm |
| 251083 | 7.5 | 危険 | シマンテック | - | Symantec IM Manager の管理者インターフェースにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0112 | 2012-03-27 18:42 | 2010-10-27 | Show | GitHub Exploit DB Packet Storm |
| 251084 | 5 | 警告 | mhonarc | - | MHonArc におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-1677 | 2012-03-27 18:42 | 2011-01-3 | Show | GitHub Exploit DB Packet Storm |
| 251085 | 5.5 | 警告 | レッドハット | - | RHN Satellite におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-1171 | 2012-03-27 18:42 | 2011-04-11 | Show | GitHub Exploit DB Packet Storm |
| 251086 | 5.8 | 警告 | zeacom | - | Zeacom Chat Server におけるセッションをハイジャックされるの脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-0217 | 2012-03-27 18:42 | 2011-05-20 | Show | GitHub Exploit DB Packet Storm |
| 251087 | 5 | 警告 | inventivetec | - | MediaCAST の authenticate_ad_setup_finished.cfm におけるユーザ名および平文のパスワードを発見される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-0216 | 2012-03-27 18:42 | 2011-05-10 | Show | GitHub Exploit DB Packet Storm |
| 251088 | 7.5 | 危険 | シマンテック | - | Symantec Web Gateway の login.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0115 | 2012-03-27 18:42 | 2011-01-12 | Show | GitHub Exploit DB Packet Storm |
| 251089 | 7.1 | 危険 | ヒューレット・パッカード | - | Palm Pre WebOS における任意の JavaScript を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-5097 | 2012-03-27 18:42 | 2011-09-13 | Show | GitHub Exploit DB Packet Storm |
| 251090 | 6.8 | 警告 | ea-style | - | gBook の index_inc.php における任意の PHP コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-5095 | 2012-03-27 18:42 | 2011-09-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 277941 | - |
oracle mozilla |
solaris firefox |
Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-… |
CWE-200
Information Exposure |
CVE-2015-2742 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277942 | - |
mozilla oracle |
firefox solaris firefox_esr |
Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 do not enforce key pinning upon encountering an X.509 certificate problem that generates a user dialog, which al… |
CWE-310
Cryptographic Issues |
CVE-2015-2741 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277943 | - |
mozilla canonical novell debian oracle |
thunderbird firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remot… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2740 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277944 | - |
mozilla canonical novell debian oracle |
firefox ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit debian_linux firefox_esr solaris thunderbird |
The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2739 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277945 | - |
canonical suse debian mozilla oracle |
ubuntu_linux linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux firefox firefox_esr thunderbi… |
The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1… |
CWE-17
Code |
CVE-2015-2738 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277946 | - |
mozilla canonical oracle suse debian |
firefox_esr firefox ubuntu_linux solaris linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux
The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from …
|
CWE-17
|
Code
CVE-2015-2737
|
2024-11-21 11:27 |
2015-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
| |
| 277947 | - |
mozilla oracle canonical novell debian |
firefox thunderbird firefox_esr solaris ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which all… |
CWE-17
Code |
CVE-2015-2736 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277948 | - |
mozilla canonical novell debian oracle |
firefox firefox_esr thunderbird ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to … |
CWE-17
Code |
CVE-2015-2735 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277949 | - |
suse mozilla canonical debian oracle |
linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server firefox_esr firefox ubuntu_linux debian_linux thunderbi… |
The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 r… |
CWE-17
Code |
CVE-2015-2734 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 277950 | - |
mozilla oracle novell |
firefox solaris firefox_esr suse_linux_enterprise_server suse_linux_enterprise_desktop |
Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbit… |
NVD-CWE-Other
|
CVE-2015-2733 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm |