Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254391 10 危険 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0084 2011-09-8 13:33 2011-08-16 Show GitHub Exploit DB Packet Storm
254392 4.3 警告 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2011-2983 2011-09-8 13:32 2011-08-16 Show GitHub Exploit DB Packet Storm
254393 10 危険 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品におけるクローム特権で任意の JavaScript を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2984 2011-09-7 11:35 2011-08-16 Show GitHub Exploit DB Packet Storm
254394 7.2 危険 Mozilla Foundation - Mozilla Firefox における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-2980 2011-09-7 11:34 2011-08-16 Show GitHub Exploit DB Packet Storm
254395 10 危険 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品の appendChild 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2378 2011-09-7 11:33 2011-08-16 Show GitHub Exploit DB Packet Storm
254396 9.3 危険 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のイベント管理実装における同一生成元ポリシーを回避される脆弱性 CWE-16
環境設定 		CVE-2011-2981 2011-09-7 11:32 2011-08-16 Show GitHub Exploit DB Packet Storm
254397 10 危険 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2982 2011-09-7 11:31 2011-08-16 Show GitHub Exploit DB Packet Storm
254398 5 警告 Mozilla Foundation - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2011-2986 2011-09-6 10:54 2011-08-16 Show GitHub Exploit DB Packet Storm
254399 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey の CSP violation reports 実装における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-2990 2011-09-6 10:53 2011-08-16 Show GitHub Exploit DB Packet Storm
254400 10 危険 Mozilla Foundation - 複数の Mozilla 製品の WebGL 実装で使用される ANGLE におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2987 2011-09-6 10:52 2011-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259601 7.5 HIGH
Network 		moxa nport_5110_firmware
nport_5130_firmware
nport_5150_firmware 		An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 V… CWE-200
Information Exposure 		CVE-2017-16715 2024-11-21 12:16 2017-11-17 Show GitHub Exploit DB Packet Storm
259602 7.8 HIGH
Local 		hashicorp vagrant If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo h… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-16777 2024-11-21 12:16 2017-11-17 Show GitHub Exploit DB Packet Storm
259603 4.3 MEDIUM
Physics 		sandisk secureaccess SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user… CWE-922
 Insecure Storage of Sensitive Information 		CVE-2017-16560 2024-11-21 12:16 2017-11-17 Show GitHub Exploit DB Packet Storm
259604 6.5 MEDIUM
Network 		openstack nova In OpenStack Nova through 14.0.9, 15.x through 15.0.7, and 16.x through 16.0.2, by rebuilding an instance, an authenticated user may be able to circumvent the Filter Scheduler bypassing imposed filte… NVD-CWE-noinfo
CVE-2017-16239 2024-11-21 12:16 2017-11-15 Show GitHub Exploit DB Packet Storm
259605 5.4 MEDIUM
Network 		octopus octopus_deploy Cross-site scripting (XSS) vulnerability in Octopus Deploy 3.7.0-3.17.13 (fixed in 3.17.14) allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name paramet… CWE-79
Cross-site Scripting 		CVE-2017-16801 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm
259606 6.1 MEDIUM
Network 		geminabox_project geminabox Stored cross-site scripting (XSS) vulnerability in "geminabox" (Gem in a Box) before 0.13.10 allows attackers to inject arbitrary web script via the "homepage" value of a ".gemspec" file, related to … CWE-79
Cross-site Scripting 		CVE-2017-16792 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm
259607 5.4 MEDIUM
Network 		cmsmadesimple cmsmadesimple In CMS Made Simple 2.2.3.1, in modules/New/action.addcategory.php, stored XSS is possible via the m1_name parameter to admin/moduleinterface.php during addition of a category, a related issue to CVE-… CWE-79
Cross-site Scripting 		CVE-2017-16799 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm
259608 5.4 MEDIUM
Network 		cmsmadesimple cms_made_simple In CMS Made Simple 2.2.3.1, the is_file_acceptable function in modules/FileManager/action.upload.php only blocks file extensions that begin or end with a "php" substring, which allows remote attacker… CWE-79
Cross-site Scripting 		CVE-2017-16798 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm
259609 7.8 HIGH
Local 		swftools swftools In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-16797 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm
259610 7.8 HIGH
Local 		swftools swftools In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application cras… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-16796 2024-11-21 12:16 2017-11-13 Show GitHub Exploit DB Packet Storm