Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190271 9.3 危険 Norman - Norman Antivirus における HTML ドキュメント内のマルウェア検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5535 2012-09-25 17:17 2008-12-12 Show GitHub Exploit DB Packet Storm
190272 9.3 危険 K7 Computing - K7AntiVirus におけるマルウエア検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5533 2012-09-25 17:17 2008-12-12 Show GitHub Exploit DB Packet Storm
190273 9.3 危険 Ikarus - Ikarus Virus Utilities における HTML 文書内のマルウェアの検知を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5532 2012-09-25 17:17 2008-12-12 Show GitHub Exploit DB Packet Storm
190274 4.3 警告 Moodle - Moodle におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5432 2012-09-25 17:17 2008-10-20 Show GitHub Exploit DB Packet Storm
190275 4.3 警告 Mozilla Foundation - Mozilla Thunderbird におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5430 2012-09-25 17:17 2008-12-13 Show GitHub Exploit DB Packet Storm
190276 4.3 警告 Perion Network - Incredimail におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5429 2012-09-25 17:17 2008-12-11 Show GitHub Exploit DB Packet Storm
190277 4.3 警告 カスペルスキー - Kaspersky Internet Security Suite におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5426 2012-09-25 17:17 2008-12-11 Show GitHub Exploit DB Packet Storm
190278 4.3 警告 マイクロソフト - Microsoft Outlook Express 6 の InetComm.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5424 2012-09-25 17:17 2008-12-11 Show GitHub Exploit DB Packet Storm
190279 5 警告 Netwin Ltd - NetWin SmsGate の SSL Web 管理サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5421 2012-09-25 17:17 2008-12-11 Show GitHub Exploit DB Packet Storm
190280 5.1 警告 justin roy - PunBB 用の PunPortal モジュールの login.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5418 2012-09-25 17:17 2008-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2021 4.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1019 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
2022 5.3 MEDIUM
Network 		mozilla firefox
thunderbird 		The fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform a potential spoofing attack. This vulnerability affect… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2025-1018 2025-02-7 04:40 2025-02-4 Show GitHub Exploit DB Packet Storm
2023 7.5 HIGH
Network 		mozilla firefox
thunderbird 		A race during concurrent delazification could have led to a use-after-free. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, Thunderbird < 128.7, and Thunderbird <… CWE-416
 Use After Free 		CVE-2025-1012 2025-02-7 04:33 2025-02-4 Show GitHub Exploit DB Packet Storm
2024 8.8 HIGH
Network 		mozilla firefox
thunderbird 		A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution. This vulnerability affects Firefox < 135, Firefo… NVD-CWE-noinfo
CVE-2025-1011 2025-02-7 04:31 2025-02-4 Show GitHub Exploit DB Packet Storm
2025 8.8 HIGH
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < … CWE-416
 Use After Free 		CVE-2025-1010 2025-02-7 04:30 2025-02-4 Show GitHub Exploit DB Packet Storm
2026 9.8 CRITICAL
Network 		mozilla firefox
thunderbird 		An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability affects Firefox < 135, Firefox ESR < 115.20, Firefox ESR < 128.7, … CWE-416
 Use After Free 		CVE-2025-1009 2025-02-7 04:28 2025-02-4 Show GitHub Exploit DB Packet Storm
2027 - - - Using API in the 2N OS device, authorized user can enable logging, which discloses valid authentication tokens in system log. - CVE-2024-13416 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
2028 - - - An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been prev… - CVE-2024-43779 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
2029 - - - A cross-site scripting (xss) vulnerability exists in the dataset upload functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to an arbitrary html code. An… - CVE-2024-39272 2025-02-7 04:15 2025-02-7 Show GitHub Exploit DB Packet Storm
2030 - - - MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. In affected versions unsafe parsing logic of the URL from markdown can lead to arbitrary JavaScript… CWE-79
Cross-site Scripting 		CVE-2025-24981 2025-02-7 03:15 2025-02-7 Show GitHub Exploit DB Packet Storm