Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187171 7.6 危険 Mozilla Foundation - Mozilla Firefox の developer-tools サブシステムにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3973 2012-11-19 18:05 2012-08-28 Show GitHub Exploit DB Packet Storm
187172 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1949 2012-11-19 18:04 2012-07-17 Show GitHub Exploit DB Packet Storm
187173 10 危険 Mozilla Foundation - 複数の Mozilla 製品で使用される Graphite 2 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-3971 2012-11-19 17:30 2012-08-28 Show GitHub Exploit DB Packet Storm
187174 9.3 危険 Mozilla Foundation - Mozilla Firefox におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3965 2012-11-19 17:29 2012-08-28 Show GitHub Exploit DB Packet Storm
187175 3.5 注意 Vanilla Forums - Vanilla Forums にアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4954 2012-11-19 17:00 2012-11-13 Show GitHub Exploit DB Packet Storm
187176 5 警告 Mozilla Foundation - Bugzilla における任意のユーザの保存済み検索に関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5884 2012-11-19 15:12 2012-11-16 Show GitHub Exploit DB Packet Storm
187177 4.3 警告 Mozilla Foundation
Yahoo!		 - Bugzilla で使用される YUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5883 2012-11-19 15:08 2012-11-16 Show GitHub Exploit DB Packet Storm
187178 4.3 警告 Yahoo! - YUI の Flash インフラストラクチャコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5882 2012-11-19 15:08 2012-11-16 Show GitHub Exploit DB Packet Storm
187179 4.3 警告 Yahoo! - YUI の Flash インフラストラクチャコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5881 2012-11-19 15:06 2011-11-16 Show GitHub Exploit DB Packet Storm
187180 4.3 警告 Mozilla Foundation - Bugzilla の template/en/default/bug/field-events.js.tmpl における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-4199 2012-11-19 14:53 2012-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276731 - mt312 rep-bbs Cross-site scripting (XSS) vulnerability in MT312 REP-BBS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) model.php and (2) config.php with times… CWE-79
Cross-site Scripting 		CVE-2009-1880 2009-06-3 00:30 2009-06-3 Show GitHub Exploit DB Packet Storm
276732 - benjamin_curtis phpbugtracker SQL injection vulnerability in include.php in phpBugTracker 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this infor… CWE-89
SQL Injection 		CVE-2009-1851 2009-06-2 13:00 2009-06-2 Show GitHub Exploit DB Packet Storm
276733 - sun iplanet_web_server
one_web_server 		The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cr… CWE-16
Configuration 		CVE-2004-2763 2009-06-2 13:00 2009-06-2 Show GitHub Exploit DB Packet Storm
276734 - sun jmf Sun Java Media Framework (JMF) 2.1.1 through 2.1.1c allows unsigned applets to cause a denial of service (JVM crash) and read or write unauthorized memory locations via the ReadEnv class, as demonstr… NVD-CWE-noinfo
CVE-2003-1572 2009-06-2 13:00 2009-06-2 Show GitHub Exploit DB Packet Storm
276735 - nlnetlabs nsd Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote attackers to cause a denial of service (crash) an… CWE-189
Numeric Errors 		CVE-2009-1755 2009-05-29 13:00 2009-05-22 Show GitHub Exploit DB Packet Storm
276736 - chinagames igame Stack-based buffer overflow in the Chinagames CGAgent ActiveX control 1.x in CGAgent.dll, as distributed in Chinagames iGame 2009, allows remote attackers to execute arbitrary code via a long argumen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1800 2009-05-28 23:30 2009-05-28 Show GitHub Exploit DB Packet Storm
276737 - ulteo open_virtual_desktop Cross-site scripting (XSS) vulnerability in Ulteo Open Virtual Desktop 1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter to header.php. NOTE: the provenance … CWE-79
Cross-site Scripting 		CVE-2009-1785 2009-05-24 13:00 2009-05-23 Show GitHub Exploit DB Packet Storm
276738 - cisco wvc54gca The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to o… CWE-200
Information Exposure 		CVE-2009-1555 2009-05-23 14:31 2009-05-7 Show GitHub Exploit DB Packet Storm
276739 - cisco wvc54gca img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the next_file pa… CWE-200
Information Exposure 		CVE-2009-1556 2009-05-23 14:31 2009-05-7 Show GitHub Exploit DB Packet Storm
276740 - cgi_rescue cgi_web_mailer CRLF injection vulnerability in CGI RESCUE Web Mailer before 1.04 allows remote attackers to inject arbitrary HTTP headers, and conduct cross-site scripting (XSS) or HTTP response splitting attacks, … CWE-79
Cross-site Scripting 		CVE-2009-1591 2009-05-23 14:31 2009-05-9 Show GitHub Exploit DB Packet Storm