Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252221 5 警告 IBM - IBM WebSphere Application Server の org.apache.jasper.runtime.JspWriterImpl.response におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1318 2011-04-7 15:25 2010-09-22 Show GitHub Exploit DB Packet Storm
252222 5 警告 IBM - IBM WebSphere Application Server の Session Initiation Protocol におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1316 2011-04-7 15:23 2010-09-23 Show GitHub Exploit DB Packet Storm
252223 5 警告 IBM - IBM WebSphere Application Server のメッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1315 2011-04-7 15:21 2010-09-30 Show GitHub Exploit DB Packet Storm
252224 5 警告 IBM - IBM WebSphere Application Server の Service Integration Bus メッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1314 2011-04-7 15:19 2010-08-4 Show GitHub Exploit DB Packet Storm
252225 4 警告 IBM - IBM WebSphere Application Server の管理コンソールコンポーネントにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1312 2011-04-7 15:15 2009-06-11 Show GitHub Exploit DB Packet Storm
252226 4 警告 サイバートラスト株式会社
レッドハット		 - vsftpd の vsf_filename_passes_filter 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0762 2011-04-7 14:31 2011-03-2 Show GitHub Exploit DB Packet Storm
252227 6 警告 IBM - IBM WebSphere Application Server のセキュリティコンポーネントにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1311 2011-04-7 14:28 2010-10-28 Show GitHub Exploit DB Packet Storm
252228 5 警告 レッドハット - Linux SCSI target framework の iscsi_rx_handler 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0001 2011-04-7 14:24 2011-03-9 Show GitHub Exploit DB Packet Storm
252229 4.3 警告 アップル - 複数の Apple 製品の WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0163 2011-04-7 14:20 2011-03-11 Show GitHub Exploit DB Packet Storm
252230 4.3 警告 アップル - 複数の Apple 製品の WebKit における CSS のトークンシーケンスを挿入される脆弱性 CWE-20
CWE-264
CVE-2011-0161 2011-04-7 14:16 2011-03-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248071 6.1 MEDIUM
Network 		mozilla firefox The "mozAddonManager" allows for the installation of extensions from the CDN for addons.mozilla.org, a publicly accessible site. This could allow malicious extensions to install additional extensions… CWE-79
Cross-site Scripting 		CVE-2017-5393 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248072 9.8 CRITICAL
Network 		mozilla firefox Weak proxy objects have weak references on multiple threads when they should only have them on one, resulting in incorrect memory usage and corruption, which leads to potentially exploitable crashes.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5392 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248073 9.8 CRITICAL
Network 		mozilla firefox Special "about:" pages used by web content, such as RSS feeds, can load privileged "about:" pages in an iframe. If a content-injection bug were found in one of those pages this could allow for potent… NVD-CWE-noinfo
CVE-2017-5391 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248074 6.1 MEDIUM
Network 		mozilla firefox WebExtensions could use the "mozAddonManager" API by modifying the CSP headers on sites with the appropriate permissions and then using host requests to redirect script loads to a malicious site. Thi… CWE-601
Open Redirect 		CVE-2017-5389 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248075 7.5 HIGH
Network 		mozilla firefox A STUN server in conjunction with a large number of "webkitRTCPeerConnection" objects can be used to send large STUN packets in a short period of time due to a lack of rate limiting being applied on … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-5388 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248076 3.3 LOW
Local 		mozilla firefox The existence of a specifically requested local file can be found due to the double firing of the "onerror" when the "source" attribute on a "<track>" tag refers to a file that does not exist if the … CWE-538
 File and Directory Information Exposure 		CVE-2017-5387 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248077 7.3 HIGH
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir… 		WebExtension scripts can use the "data:" protocol to affect pages loaded by other web extensions using this protocol, leading to potential data disclosure or privilege escalation in affected extensio… NVD-CWE-noinfo
CVE-2017-5386 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248078 9.8 CRITICAL
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird 		The JSON viewer in the Developer Tools uses insecure methods to create a communication channel for copying and viewing JSON or HTTP headers data, allowing for potential privilege escalation. This vul… NVD-CWE-noinfo
CVE-2017-5390 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248079 7.5 HIGH
Network 		mozilla firefox Data sent with in multipart channels, such as the multipart/x-mixed-replace MIME type, will ignore the referrer-policy response header, leading to potential information disclosure for sites using thi… CWE-200
Information Exposure 		CVE-2017-5385 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
248080 5.9 MEDIUM
Network 		mozilla firefox Proxy Auto-Config (PAC) files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of… CWE-200
Information Exposure 		CVE-2017-5384 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm