|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 260301 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 における一つずれエラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1808 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 260302 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 におけるメモリ破壊の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1807 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 260303 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1806 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 260304 | 2.6 | 注意 | The PHP Group サイバートラスト株式会社 ターボリナックス レッドハット |
- | PHP におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5814 | 2010-10-19 15:14 | 2008-12-19 | Show | GitHub Exploit DB Packet Storm |
| 260305 | 9.3 | 危険 | - | Google Chrome の Gears プラグインにおける任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2009-3932 | 2010-10-19 15:02 | 2009-11-5 | Show | GitHub Exploit DB Packet Storm | |
| 260306 | 4.3 | 警告 | - | Google Chrome の src/webkit/glue/webframeloaderclient_impl.cc におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-3934 | 2010-10-19 15:02 | 2009-11-5 | Show | GitHub Exploit DB Packet Storm | |
| 260307 | 9.3 | 危険 | - | Google Chrome のブラックリストにおける危険なファイルのダウンロードを強制される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-3931 | 2010-10-19 15:01 | 2009-11-5 | Show | GitHub Exploit DB Packet Storm | |
| 260308 | 7.5 | 危険 | - | Google Chrome における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-3456 | 2010-10-19 15:01 | 2009-09-29 | Show | GitHub Exploit DB Packet Storm | |
| 260309 | 5 | 警告 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-7246 | 2010-10-19 15:01 | 2008-09-8 | Show | GitHub Exploit DB Packet Storm | |
| 260310 | 5 | 警告 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3268 | 2010-10-19 15:00 | 2009-02-3 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248251 | 9.8 |
CRITICAL
Network |
mozilla debian canonical redhat |
firefox thunderbird firefox_esr debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterpri… |
A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection. This results in a potentially exploitable crash. T… |
CWE-416
Use After Free |
CVE-2018-18492 | 2024-11-21 12:56 | 2019-03-1 | Show | GitHub Exploit DB Packet Storm |
| 248252 | 6.1 |
MEDIUM
Network |
semcosoft | semcosoft | A reflected Cross-Site scripting (XSS) vulnerability in SEMCO Semcosoft 5.3 allows remote attackers to inject arbitrary web scripts or HTML via the username parameter to the Login Form. |
CWE-79
Cross-site Scripting |
CVE-2018-18692 | 2024-11-21 12:56 | 2019-02-23 | Show | GitHub Exploit DB Packet Storm |
| 248253 | 8.6 |
HIGH
Network |
dundas | dundas_bi | The Dundas BI server before 5.0.1.1010 is vulnerable to a Server-Side Request Forgery attack, allowing an attacker to forge arbitrary requests (with certain restrictions) that will be executed on beh… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2018-18569 | 2024-11-21 12:56 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 248254 | 5.9 |
MEDIUM
Network |
mozilla canonical debian redhat opensuse |
firefox ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus enterpr… |
When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to … |
NVD-CWE-noinfo
|
CVE-2018-18506 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248255 | 10.0 |
CRITICAL
Network |
mozilla canonical debian redhat |
firefox thunderbird firefox_esr ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterpri… |
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This … |
CWE-287
Improper Authentication |
CVE-2018-18505 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248256 | 9.8 |
CRITICAL
Network |
mozilla canonical |
firefox ubuntu_linux |
A crash and out-of-bounds read can occur when the buffer of a texture client is freed while it is still in use during graphic operations. This results is a potentially exploitable crash and the possi… |
CWE-125
Out-of-bounds Read |
CVE-2018-18504 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248257 | 8.8 |
HIGH
Network |
mozilla canonical |
firefox ubuntu_linux |
When JavaScript is used to create and manipulate an audio buffer, a potentially exploitable crash may occur because of a compartment mismatch in some situations. This vulnerability affects Firefox < … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-18503 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248258 | 9.8 |
CRITICAL
Network |
mozilla canonical |
firefox ubuntu_linux |
Mozilla developers and community members reported memory safety bugs present in Firefox 64. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-18502 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248259 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat |
firefox thunderbird firefox_esr ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterpri… |
Mozilla developers and community members reported memory safety bugs present in Firefox 64 and Firefox ESR 60.4. Some of these bugs showed evidence of memory corruption and we presume that with enoug… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-18501 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 248260 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat |
firefox thunderbird firefox_esr ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterpri… |
A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the stream parser object being freed while still in use, leading to a pote… |
CWE-416
Use After Free |
CVE-2018-18500 | 2024-11-21 12:56 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |