Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 23, 2024, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197611 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5014 2011-12-9 14:03 2011-11-2 Show GitHub Exploit DB Packet Storm
197612 7.5 危険 2daybiz - 2daybiz Network Community Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5015 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
197613 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5016 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
197614 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5017 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
197615 4.3 警告 2daybiz - 2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5018 2011-12-9 13:59 2011-11-2 Show GitHub Exploit DB Packet Storm
197616 7.5 危険 2daybiz - 2daybiz Online Classified Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5019 2011-12-9 13:58 2011-11-2 Show GitHub Exploit DB Packet Storm
197617 7.5 危険 NetArt Media - NetArt Media iBoutique における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5020 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
197618 7.5 危険 Cramer Development - Digital Interchange Document Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5021 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
197619 7.5 危険 Jextensions - Joomla! 用 JExtensions JE Story Submit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5022 2011-12-9 13:55 2011-11-2 Show GitHub Exploit DB Packet Storm
197620 7.5 危険 Cramer Development - Digital Interchange Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5023 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 23, 2024, 4:18 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281 8.8 HIGH
Network 		mozilla firefox Heap-based buffer overflow in the nsBidi::BracketData::AddOpening function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via direct… Update CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2838 2024-10-22 22:54 2016-08-5 Show GitHub Exploit DB Packet Storm
282 6.3 MEDIUM
Network 		mozilla
oracle 		firefox
linux 		Heap-based buffer overflow in the ClearKey Content Decryption Module (CDM) in the Encrypted Media Extensions (EME) API in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 might allow remo… Update CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2837 2024-10-22 22:54 2016-08-5 Show GitHub Exploit DB Packet Storm
283 8.8 HIGH
Network 		mozilla firefox Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and a… Update CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2836 2024-10-22 22:54 2016-08-5 Show GitHub Exploit DB Packet Storm
284 4.3 MEDIUM
Network 		mozilla firefox Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 preserve the network connection used for favicon resource retrieval after the associated browser window is closed, which makes it easier f… Update CWE-200
Information Exposure 		CVE-2016-2830 2024-10-22 22:54 2016-08-5 Show GitHub Exploit DB Packet Storm
285 8.8 HIGH
Network 		canonical
mozilla
debian
opensuse 		ubuntu_linux
firefox
debian_linux
leap
opensuse 		Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that the user approves the fullscreen and pointerlock settings, which allows remote attackers to cause a denial of service (… Update CWE-254
CWE-284
 7PK - Security Features
Improper Access Control 		CVE-2016-2831 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm
286 8.8 HIGH
Network 		canonical
opensuse
mozilla
debian 		ubuntu_linux
leap
opensuse
firefox
debian_linux 		Use-after-free vulnerability in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via WebGL content that triggers texture access after des… Update NVD-CWE-Other
CVE-2016-2828 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm
287 7.8 HIGH
Local 		mozilla firefox The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local u… Update CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2826 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm
288 8.8 HIGH
Network 		mozilla
opensuse 		firefox
leap
opensuse 		The TSymbolTableLevel class in ANGLE, as used in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows, allows remote attackers to cause a denial of service (out-of-bounds write and… Update CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2824 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm
289 6.5 MEDIUM
Network 		debian
mozilla
canonical
opensuse 		debian_linux
firefox
ubuntu_linux
leap
opensuse 		Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu. Update CWE-284
Improper Access Control 		CVE-2016-2822 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm
290 7.5 HIGH
Network 		mozilla
debian
opensuse
canonical 		firefox
debian_linux
leap
opensuse
ubuntu_linux 		Use-after-free vulnerability in the mozilla::dom::Element class in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2, when contenteditable mode is enabled, allows remote attackers to execu… Update NVD-CWE-Other
CVE-2016-2821 2024-10-22 22:54 2016-06-13 Show GitHub Exploit DB Packet Storm