Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
254721 4.3 警告 Piwik - Piwik におけるクリックジャック攻撃を誘発する脆弱性 CWE-Other
その他
CVE-2011-0399 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
254722 6.4 警告 Piwik - Piwik の Piwik_Common::getIP 関数における位置情報取得とロギング機能を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0398 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
254723 9.3 危険 マイクロソフト - Windows XP の Microsoft Internet Explorer における不正な GUI 表示を誘発される脆弱性 CWE-Other
その他
CVE-2011-0347 2012-03-27 18:42 2011-01-7 Show GitHub Exploit DB Packet Storm
254724 3.3 注意 Alcatel-Lucent - Alcatel-Lucent OmniVista の NMS サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-0345 2012-03-27 18:42 2011-03-1 Show GitHub Exploit DB Packet Storm
254725 5.8 警告 Alcatel-Lucent - Alcatel-Lucent OmniPCX Enterprise の CGI プログラムにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0344 2012-03-27 18:42 2011-03-1 Show GitHub Exploit DB Packet Storm
254726 6.9 警告 balabit - Balabit syslog-ng におけるログファイルを読み書きされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0343 2012-03-27 18:42 2011-01-28 Show GitHub Exploit DB Packet Storm
254727 10 危険 Schneider Electric - InduSoft Web Studio の InduSoft ISSymbol ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0342 2012-03-27 18:42 2011-09-2 Show GitHub Exploit DB Packet Storm
254728 9.3 危険 Artifex Software - MuPDF プラグインの pdfmoz_onmouse 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0341 2012-03-27 18:42 2011-05-13 Show GitHub Exploit DB Packet Storm
254729 9.3 危険 Foxit Software Inc - Foxit Reader における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2011-0332 2012-03-27 18:42 2011-02-25 Show GitHub Exploit DB Packet Storm
254730 9.3 危険 Honeywell International Inc. - Honeywell ScanServer ActiveX コントロールの addOSPLext メソッドにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2011-0331 2012-03-27 18:42 2011-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259641 9.8 CRITICAL
Network
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
debian_linux
thunderbird
firefox
firefox_…
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5459 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259642 6.1 MEDIUM
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
firefox
fire…
If a page is loaded from an original site through a hyperlink and contains a redirect to a "data:text/html" URL, triggering a reload will run the reloaded "data:text/html" page with its origin set in… CWE-79
Cross-site Scripting
CVE-2017-5466 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259643 9.1 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could the… CWE-125
Out-of-bounds Read
CVE-2017-5465 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259644 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
thu…
During DOM manipulations of the accessibility tree through script, the DOM tree can become out of sync with the accessibility tree, leading to memory corruption and a potentially exploitable crash. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5464 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259645 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
thu…
A use-after-free vulnerability in frame selection triggered by a combination of malicious script content and key presses by a user. This results in a potentially exploitable crash. This vulnerability… CWE-416
 Use After Free
CVE-2017-5460 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259646 6.1 MEDIUM
Network
mozilla firefox When a "javascript:" URL is drag and dropped by a user into the addressbar, the URL will be processed and executed. This allows for users to be socially engineered to execute an XSS attack on themsel… CWE-79
Cross-site Scripting
CVE-2017-5458 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259647 9.8 CRITICAL
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
firefox_esr
A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system. T… CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2017-5456 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259648 7.5 HIGH
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
firefox_esr
The internal feed reader APIs that crossed the sandbox barrier allowed for a sandbox escape and escalation of privilege if combined with another vulnerability that resulted in remote code execution i… NVD-CWE-noinfo
CVE-2017-5455 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259649 4.3 MEDIUM
Network
mozilla firefox A mechanism to inject static HTML into the RSS reader preview page due to a failure to escape characters sent as URL parameters for a feed's "TITLE" element. This vulnerability allows for spoofing bu… CWE-20
 Improper Input Validation 
CVE-2017-5453 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259650 4.3 MEDIUM
Network
mozilla firefox Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack … CWE-20
 Improper Input Validation 
CVE-2017-5452 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm