Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252031	5.8	警告	NeoAxis	-	NeoAxis web player におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0907	2012-01-25 11:24	2012-01-20	Show	GitHub Exploit DB Packet Storm

252032	7.5	危険	deV!L'z Clanportal	-	deV!L'z Clanportal (DZCP) の Moviebase アドオンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0906	2012-01-25 11:00	2012-01-20	Show	GitHub Exploit DB Packet Storm

252033	7.5	危険	deV!L'z Clanportal	-	deV!L'z Clanportal (DZCP) の Gamebase アドオンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0905	2012-01-25 10:57	2012-01-20	Show	GitHub Exploit DB Packet Storm

252034	4.3	警告	VideoLAN	-	VLC media player におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0904	2012-01-25 10:54	2012-01-20	Show	GitHub Exploit DB Packet Storm

252035	4.3	警告	VMware	-	VMware Zimbra Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0903	2012-01-25 10:51	2012-01-20	Show	GitHub Exploit DB Packet Storm

252036	5	警告	AirTies	-	AirTies Air 4450 におけるサービス運用妨害 (リブート) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0902	2012-01-25 10:43	2012-01-20	Show	GitHub Exploit DB Packet Storm

252037	4.3	警告	attenzione	-	WordPress 用 YouSayToo auto-publishing プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0901	2012-01-25 10:39	2012-01-20	Show	GitHub Exploit DB Packet Storm

252038	4.3	警告	Beehive Forum	-	Beehive Forum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0900	2012-01-25 10:35	2012-01-20	Show	GitHub Exploit DB Packet Storm

252039	4.3	警告	Annuaire PHP	-	Annuaire PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0899	2012-01-25 10:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

252040	5	警告	camaleo	-	WordPress 用 myEASYbackup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0898	2012-01-25 10:30	2012-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265441	5.3	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 48.0 on Android allows remote attackers to spoof the address bar via left-to-right characters in conjunction with a right-to-left character set.	CWE-20 Improper Input Validation	CVE-2016-5267	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265442	8.1	HIGH Network	mozilla	firefox	Mozilla Firefox before 48.0 does not properly restrict drag-and-drop (aka dataTransfer) actions for file: URIs, which allows user-assisted remote attackers to access local files via a crafted web sit…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5266	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265443	5.5	MEDIUM Local	oracle mozilla	linux firefox	Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow user-assisted remote attackers to bypass the Same Origin Policy, and conduct Universal XSS (UXSS) attacks or read arbitrary files, b…	CWE-79 CWE-200 Cross-site Scripting Information Exposure	CVE-2016-5265	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265444	8.8	HIGH Network	mozilla oracle	firefox linux	Use-after-free vulnerability in the nsNodeUtils::NativeAnonymousChildListChange function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary c…	CWE-416 Use After Free	CVE-2016-5264	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265445	8.8	HIGH Network	mozilla oracle	firefox linux	The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary cod…	CWE-704 Incorrect Type Conversion or Cast	CVE-2016-5263	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265446	6.1	MEDIUM Network	mozilla oracle	firefox linux	Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 process JavaScript event-handler attributes of a MARQUEE element within a sandboxed IFRAME element that lacks the sandbox="allow-scripts" …	CWE-79 Cross-site Scripting	CVE-2016-5262	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265447	8.8	HIGH Network	mozilla	firefox	Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR < 45.4 allows remote attackers to execute arbitrary code or cause a denial of…	CWE-190 Integer Overflow or Wraparound	CVE-2016-5261	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265448	6.5	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 48.0 mishandles changes from 'INPUT type="password"' to 'INPUT type="text"' within a single Session Manager session, which might allow attackers to discover cleartext passwords…	CWE-200 Information Exposure	CVE-2016-5260	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265449	8.8	HIGH Network	mozilla oracle	firefox linux	Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via a scrip…	CWE-416 Use After Free	CVE-2016-5259	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

265450	8.8	HIGH Network	oracle mozilla	linux firefox	Use-after-free vulnerability in the WebRTC socket thread in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code by leveraging incorrect free…	CWE-416 Use After Free	CVE-2016-5258	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm