Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257901 4 警告 エイムラック - Aipo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3924 2011-01-11 14:02 2011-01-11 Show GitHub Exploit DB Packet Storm
257902 9.3 危険 レッドハット
リアルネットワークス		 - RealNetworks RealPlayer における SIPR ヒープオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4379 2011-01-7 15:36 2010-12-10 Show GitHub Exploit DB Packet Storm
257903 10 危険 リアルネットワークス - RealNetworks RealPlayer の AAC スペクトルデータの解析処理における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0125 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
257904 5 警告 リアルネットワークス - RealNetworks RealPlayer の cook コーデックにおける任意のメモリへアクセスされる脆弱性 CWE-Other
その他 		CVE-2010-2579 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
257905 10 危険 リアルネットワークス - RealNetworks RealPlayer の cook コーデックにおける脆弱性 CWE-Other
その他 		CVE-2010-0121 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
257906 9.3 危険 レッドハット
リアルネットワークス		 - RealNetworks RealPlayer の drv2.dll モジュールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-4378 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
257907 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の Cook Audio Codec におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4377 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
257908 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の RTSP GIF の解析処理におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4376 2011-01-7 15:34 2010-12-10 Show GitHub Exploit DB Packet Storm
257909 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の pnen3260.dll モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4397 2011-01-7 15:34 2010-12-10 Show GitHub Exploit DB Packet Storm
257910 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の AAC MLLT Atom 解析処理における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2999 2011-01-7 15:34 2010-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249761 9.8 CRITICAL
Network 		mozilla
canonical 		firefox
ubuntu_linux 		A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially explo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12407 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249762 8.8 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12406 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249763 5.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12403 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249764 9.8 CRITICAL
Network 		mozilla
debian
canonical
redhat 		firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri… 		Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enoug… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12405 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249765 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For exampl… CWE-346
 Origin Validation Error 		CVE-2018-12402 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249766 7.5 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnera… CWE-20
 Improper Input Validation  		CVE-2018-12401 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249767 5.3 MEDIUM
Network 		mozilla firefox In private browsing mode on Firefox for Android, favicons are cached in the cache/icons folder as they are in non-private mode. This allows information leakage of sites visited during private browsin… CWE-200
Information Exposure 		CVE-2018-12400 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249768 4.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol. This may result in the user approvin… CWE-287
Improper Authentication 		CVE-2018-12399 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249769 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy (CSP). This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12398 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249770 7.1 HIGH
Local 		mozilla
redhat
debian
canonical 		firefox
firefox_esr
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
debian_linux
ubuntu_linux 		A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to … CWE-200
Information Exposure 		CVE-2018-12397 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm