Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252961	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer において任意のコードが実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0249	2010-02-19 14:21	2010-01-15	Show	GitHub Exploit DB Packet Storm

252962	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0227	2010-02-19 11:37	2008-01-10	Show	GitHub Exploit DB Packet Storm

252963	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0226	2010-02-19 11:32	2008-01-10	Show	GitHub Exploit DB Packet Storm

252964	7.5	危険	Linux レッドハット	-	Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性	-	CVE-2006-6304	2010-02-18 14:28	2006-12-14	Show	GitHub Exploit DB Packet Storm

252965	7.8	危険	Linux レッドハット	-	Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4272	2010-02-18 14:28	2010-01-19	Show	GitHub Exploit DB Packet Storm

252966	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4248	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

252967	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4246	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

252968	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer の smlrender.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4257	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

252969	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4245	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

252970	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4244	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283491	-		apple	itunes iphone_os tvos safari webkit	WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5196	2024-11-21 10:57	2013-12-19	Show	GitHub Exploit DB Packet Storm

283492	-		apple	safari webkit itunes	WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5195	2024-11-21 10:57	2013-12-19	Show	GitHub Exploit DB Packet Storm

283493	-		ibm	flex_system_manager	Cross-site scripting (XSS) vulnerability in the web server in IBM Flex System Manager (FSM) 1.1.0 through 1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5438	2024-11-21 10:57	2013-12-15	Show	GitHub Exploit DB Packet Storm

283494	-		rockmongo	rockmongo	Directory traversal vulnerability in RockMongo 1.1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the ROCK_LANG cookie, as demonstrated in a login.index action to…	CWE-22 Path Traversal	CVE-2013-5107	2024-11-21 10:57	2013-12-15	Show	GitHub Exploit DB Packet Storm

283495	-		sonarsource	jenkins_plugin	The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from…	CWE-310 Cryptographic Issues	CVE-2013-5676	2024-11-21 10:57	2013-12-14	Show	GitHub Exploit DB Packet Storm

283496	-		suse opensuse mozilla canonical fedoraproject oracle	linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit opensuse firefox seamonkey ubuntu_linux fedora solaris	Multiple integer overflows in the binary-search implementation in SpiderMonkey in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 might allow remote attackers to cause a denial of service (out-…	CWE-190 Integer Overflow or Wraparound	CVE-2013-5619	2024-11-21 10:57	2013-12-12	Show	GitHub Exploit DB Packet Storm

283497	9.8	CRITICAL Network	mozilla fedoraproject opensuse suse canonical redhat	firefox_esr firefox thunderbird seamonkey fedora opensuse suse_linux_enterprise_software_development_kit suse_linux_enterprise_desktop suse_linux_enterprise_server ubuntu_l…	Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user interface in the editor component in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunder…	CWE-416 Use After Free	CVE-2013-5618	2024-11-21 10:57	2013-12-12	Show	GitHub Exploit DB Packet Storm

283498	9.8	CRITICAL Network	mozilla fedoraproject opensuse suse redhat canonical	firefox_esr firefox thunderbird seamonkey fedora opensuse suse_linux_enterprise_software_development_kit suse_linux_enterprise_desktop suse_linux_enterprise_server enterpri…	Use-after-free vulnerability in the nsEventListenerManager::HandleEventSubType function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.2…	CWE-416 Use After Free	CVE-2013-5616	2024-11-21 10:57	2013-12-12	Show	GitHub Exploit DB Packet Storm

283499	9.8	CRITICAL Network	mozilla canonical opensuse suse fedoraproject	firefox_esr firefox thunderbird seamonkey ubuntu_linux opensuse suse_linux_enterprise_software_development_kit suse_linux_enterprise_desktop suse_linux_enterprise_server fe…	The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 does not properly enforce certain typeset restrictions o…	NVD-CWE-noinfo	CVE-2013-5615	2024-11-21 10:57	2013-12-12	Show	GitHub Exploit DB Packet Storm

283500	-		oracle fedoraproject canonical suse opensuse_project opensuse mozilla	solaris fedora ubuntu_linux linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit opensuse firefox	Mozilla Firefox before 26.0 does not properly remove the Application Installation doorhanger, which makes it easier for remote attackers to spoof a Web App installation site by controlling the timing…	NVD-CWE-noinfo	CVE-2013-5611	2024-11-21 10:57	2013-12-12	Show	GitHub Exploit DB Packet Storm