Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251121 | 5 | 警告 | Zikula Foundation | - | Zikula における乱数化をベースにした保護機能を破られる脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-4728 | 2012-03-27 18:42 | 2011-02-8 | Show | GitHub Exploit DB Packet Storm |
| 251122 | 10 | 危険 | Smarty | - | Smarty における詳細不明の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4727 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251123 | 10 | 危険 | Smarty | - | Smarty の math プラグインにおける詳細不明の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4726 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251124 | 10 | 危険 | Smarty | - | Smarty における詳細不明の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4725 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251125 | 10 | 危険 | Smarty | - | Smarty のパーサー実装における詳細不明の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4724 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251126 | 9.3 | 危険 | Smarty | - | Smarty における詳細不明の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4723 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251127 | 10 | 危険 | Smarty | - | Smarty の fetch プラグインにおける詳細不明の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4722 | 2012-03-27 18:42 | 2011-02-3 | Show | GitHub Exploit DB Packet Storm |
| 251128 | 7.5 | 危険 | MH Products | - | Immo Makler の news.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4721 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 251129 | 7.5 | 危険 | Joomla! Jextensions |
- | Joomla! の JExtensions JE Auto (com_jeauto) コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4720 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 251130 | 7.5 | 危険 | fxwebdesign | - | Joomla! の JRadio (com_jradio) コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4719 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252851 | 7.8 |
HIGH
Local |
mozilla |
firefox firefox_esr thunderbird |
The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. This allows privileged execution if the installer is run with el… |
CWE-426
Untrusted Search Path |
CVE-2017-7755 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252852 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.
|
CWE-125
|
Out-of-bounds Read
CVE-2017-7754
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 252853 | 9.1 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefo… |
CWE-125
Out-of-bounds Read |
CVE-2017-7753 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252854 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2. |
CWE-416
Use After Free |
CVE-2017-7751 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252855 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < … |
CWE-416
Use After Free |
CVE-2017-7749 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252856 | 8.8 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash bu… |
CWE-416
Use After Free |
CVE-2017-7752 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252857 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during video control operations when a "<track>" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially… |
CWE-416
Use After Free |
CVE-2017-7750 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 252858 | 9.8 |
CRITICAL
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access. |
CWE-522
Insufficiently Protected Credentials |
CVE-2017-7933 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |
| 252859 | 9.8 |
CRITICAL
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without au… |
CWE-287
Improper Authentication |
CVE-2017-7931 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |
| 252860 | 8.8 |
HIGH
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating tha… |
CWE-352
Origin Validation Error |
CVE-2017-7906 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |