Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
255251 5 警告 Spree Commerce - Spree における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-3978 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
255252 9.3 危険 アドビシステムズ - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3975 2012-03-27 18:42 2010-10-19 Show GitHub Exploit DB Packet Storm
255253 6.4 警告 Ruby on Rails project - Ruby on Rails における任意のレコードを変更される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3933 2012-03-27 18:42 2010-10-15 Show GitHub Exploit DB Packet Storm
255254 4.3 警告 Vtiger - vtiger CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3911 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
255255 6.8 警告 Vtiger - vtiger CRM の return_application_language 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-3910 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
255256 6.8 警告 FFmpeg
mplayerhq
- MPlayer などの製品で使用される FFmpeg におけるサービス運用妨害 (DoS) 状態の脆弱性 CWE-119
バッファエラー
CVE-2010-3908 2012-03-27 18:42 2011-05-20 Show GitHub Exploit DB Packet Storm
255257 6 警告 Vtiger - vtiger CRM の config.template.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-3909 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
255258 9.3 危険 VideoLAN - VideoLAN VLC Media Player の Real demuxer プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-3907 2012-03-27 18:42 2010-12-14 Show GitHub Exploit DB Packet Storm
255259 7.5 危険 Eucalyptus Systems - Eucalyptus の管理者のインターフェース のパスワードリセット機能における権限を取得される脆弱性 CWE-287
不適切な認証
CVE-2010-3905 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
255260 5 警告 infradead - OpenConnect におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-3903 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259691 5.3 MEDIUM
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and… CWE-1187
 Use of Uninitialized Resource
CVE-2017-5405 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259692 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
Memory corruption resulting in a potentially exploitable crash during garbage collection of JavaScript due errors in how incremental sweeping is managed for memory cleanup. This vulnerability affects… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5410 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259693 5.3 MEDIUM
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This… CWE-200
Information Exposure
CVE-2017-5408 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259694 6.5 MEDIUM
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history informatio… CWE-200
Information Exposure
CVE-2017-5407 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259695 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This … CWE-416
 Use After Free
CVE-2017-5404 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259696 9.8 CRITICAL
Network
mozilla thunderbird
firefox
When adding a range to an object in the DOM, it is possible to use "addRange" to add the range to an incorrect root object. This triggers a use-after-free, resulting in a potentially exploitable cras… CWE-416
 Use After Free
CVE-2017-5403 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259697 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
A use-after-free can occur when events are fired for a "FontFace" object after the object has been already been destroyed while working with fonts. This results in a potentially exploitable crash. Th… CWE-416
 Use After Free
CVE-2017-5402 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259698 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
A crash triggerable by web content in which an "ErrorResult" references unassigned memory due to a logic error. The resulting crash may be exploitable. This vulnerability affects Firefox < 52, Firefo… CWE-388
 7PK - Errors
CVE-2017-5401 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259699 9.8 CRITICAL
Network
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_server_eus
debian_linux
firefox
thunderbird
firefox_…
JIT-spray targeting asm.js combined with a heap spray allows for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Firefox < 52, Firefox … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5400 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259700 9.8 CRITICAL
Network
mozilla firefox
thunderbird
Memory safety bugs were reported in Firefox 51. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5399 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm