Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252741 | 6.8 | 警告 | アップル | - | Apple Mac OS X の Apple Filing Protocol Server におけるパスワード要求を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-1820 | 2010-10-8 17:08 | 2010-09-21 | Show | GitHub Exploit DB Packet Storm |
| 252742 | 5 | 警告 | マイクロソフト | - | Microsoft .NET Framework における View State フォームデータを復号または変更される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3332 | 2010-10-8 17:07 | 2010-09-17 | Show | GitHub Exploit DB Packet Storm |
| 252743 | 2.6 | 注意 | IBM | - | IBM WebSphere Application Server の Web コンテナにおける重要な情報を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0777 | 2010-10-8 17:05 | 2010-05-8 | Show | GitHub Exploit DB Packet Storm |
| 252744 | 5 | 警告 | IBM | - | IBM WebSphere Application Server の Web コンテナ におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0776 | 2010-10-8 17:04 | 2010-05-8 | Show | GitHub Exploit DB Packet Storm |
| 252745 | 5 | 警告 | Drupal サイバートラスト株式会社 |
- | Drupal の OpenID モジュールにおける認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-3686 | 2010-10-7 16:40 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 252746 | 5 | 警告 | Drupal サイバートラスト株式会社 |
- | Drupal の OpenID モジュールにおける認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-3685 | 2010-10-7 16:39 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 252747 | 5 | 警告 | Drupal サイバートラスト株式会社 |
- | Drupal の OpenID モジュールにおける認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-3091 | 2010-10-7 16:39 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 252748 | 2.1 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3094 | 2010-10-7 16:39 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 252749 | 3.5 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3093 | 2010-10-7 16:38 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 252750 | 5.5 | 警告 | Drupal サイバートラスト株式会社 |
- | Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3092 | 2010-10-7 16:37 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 1, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 289191 | - | ibm | websphere_datapower_xc10_appliance | The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2 does not require authentication for an unspecified interface, which allows remote attackers to cause a d… |
CWE-287
Improper Authentication |
CVE-2012-5758 | 2024-11-21 10:45 | 2012-11-23 | Show | GitHub Exploit DB Packet Storm | |
| 289192 | - | ibm | websphere_datapower_xc10_appliance | The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2, when a collective configuration is enabled, has a single secret key that is shared across different cus… |
CWE-310
Cryptographic Issues |
CVE-2012-5756 | 2024-11-21 10:45 | 2012-11-23 | Show | GitHub Exploit DB Packet Storm | |
| 289193 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memo… |
NVD-CWE-noinfo
|
CVE-2012-5843 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289194 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2012-5838 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289195 | - | mozilla | firefox | The Web Developer Toolbar in Mozilla Firefox before 17.0 executes script with chrome privileges, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafte… |
CWE-79 CWE-94 Cross-site Scripting Code Injection |
CVE-2012-5837 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289196 | - |
mozilla suse opensuse canonical redhat debian |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li… |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey… |
NVD-CWE-noinfo
|
CVE-2012-5842 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289197 | - |
mozilla suse opensuse canonical redhat |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li… |
Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 implement cross-origin wrappers with a filtering … |
CWE-79
Cross-site Scripting |
CVE-2012-5841 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289198 | - |
mozilla suse opensuse canonical redhat |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li… |
Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.… |
CWE-416
Use After Free |
CVE-2012-5840 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289199 | - |
mozilla suse opensuse canonical redhat |
firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li… |
Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.… |
CWE-787
Out-of-bounds Write |
CVE-2012-5839 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm | |
| 289200 | - |
mozilla suse opensuse canonical |
firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux |
Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving… |
CWE-94
Code Injection |
CVE-2012-5836 | 2024-11-21 10:45 | 2012-11-21 | Show | GitHub Exploit DB Packet Storm |