Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251491	4	警告	Linux	-	Linux kernel のdrivers/platform/x86/thinkpad_acpi.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3448	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

251492	4.3	警告	Horde	-	Horde Gollem の view.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3447	2012-03-27 18:42	2011-04-4	Show	GitHub Exploit DB Packet Storm

251493	7.5	危険	fribidi	-	PyFriBidi で使用される GNU FriBidi の log2vis_utf8 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3444	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

251494	7.5	危険	moinejf	-	abcm2ps における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3441	2012-03-27 18:42	2011-02-18	Show	GitHub Exploit DB Packet Storm

251495	1.9	注意	kernel.org	-	Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性	CWE-DesignError	CVE-2010-3431	2012-03-27 18:42	2011-01-24	Show	GitHub Exploit DB Packet Storm

251496	4.7	警告	kernel.org	-	Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性	CWE-DesignError	CVE-2010-3430	2012-03-27 18:42	2011-01-24	Show	GitHub Exploit DB Packet Storm

251497	7.5	危険	Symphony CMS	-	Symphony CMS の lib/toolkit/events/event.section.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3458	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251498	4.3	警告	Symphony CMS	-	Symphony CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3457	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251499	5	警告	energyscripts	-	ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3456	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251500	4.3	警告	ATutor	-	AChecker の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3455	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253841	5.5	MEDIUM Local	mozilla	firefox firefox_esr	The Mozilla Windows updater can be called by a non-privileged user to delete an arbitrary local file by passing a special path to the callback parameter through the Mozilla Maintenance Service, which…	CWE-269 Improper Privilege Management	CVE-2017-5409	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253842	7.5	HIGH Network	mozilla	thunderbird firefox	A segmentation fault can occur in the Skia graphics library during some canvas operations due to issues with mask/clip intersection and empty masks. This vulnerability affects Firefox < 52 and Thunde…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5406	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253843	5.3	MEDIUM Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and…	CWE-1187 Use of Uninitialized Resource	CVE-2017-5405	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253844	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	Memory corruption resulting in a potentially exploitable crash during garbage collection of JavaScript due errors in how incremental sweeping is managed for memory cleanup. This vulnerability affects…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5410	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253845	5.3	MEDIUM Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This…	CWE-200 Information Exposure	CVE-2017-5408	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253846	6.5	MEDIUM Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history informatio…	CWE-200 Information Exposure	CVE-2017-5407	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253847	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird	A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This …	CWE-416 Use After Free	CVE-2017-5404	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253848	9.8	CRITICAL Network	mozilla	thunderbird firefox	When adding a range to an object in the DOM, it is possible to use "addRange" to add the range to an incorrect root object. This triggers a use-after-free, resulting in a potentially exploitable cras…	CWE-416 Use After Free	CVE-2017-5403	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253849	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird	A use-after-free can occur when events are fired for a "FontFace" object after the object has been already been destroyed while working with fonts. This results in a potentially exploitable crash. Th…	CWE-416 Use After Free	CVE-2017-5402	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm

253850	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird	A crash triggerable by web content in which an "ErrorResult" references unassigned memory due to a logic error. The resulting crash may be exploitable. This vulnerability affects Firefox < 52, Firefo…	CWE-388 7PK - Errors	CVE-2017-5401	2024-11-21 12:27	2018-06-12	Show	GitHub Exploit DB Packet Storm