Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227421	7.5	危険	John Nunemaker	-	Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1801	2013-04-11 19:41	2013-01-14	Show	GitHub Exploit DB Packet Storm

227422	7.5	危険	John Nunemaker	-	Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1800	2013-04-11 19:40	2013-01-14	Show	GitHub Exploit DB Packet Storm

227423	7.5	危険	Daniel Harrington	-	Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0285	2013-04-11 19:39	2013-01-14	Show	GitHub Exploit DB Packet Storm

227424	5	警告	New Relic	-	Ruby Agent における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0284	2013-04-11 19:38	2013-02-13	Show	GitHub Exploit DB Packet Storm

227425	6.8	警告	Michael Bleigh and Intridea, Inc.	-	Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6134	2013-04-11 19:37	2013-02-25	Show	GitHub Exploit DB Packet Storm

227426	5.8	警告	Apache Software Foundation	-	Apache Maven のデフォルト設定におけるサーバになりすまされる脆弱性	CWE-16 環境設定	CVE-2013-0253	2013-04-11 17:36	2013-04-2	Show	GitHub Exploit DB Packet Storm

227427	4.3	警告	fedorahosted.org	-	cronie におけるファイル記述子が漏えいする脆弱性	CWE-200 情報漏えい	CVE-2012-6097	2013-04-11 17:35	2013-01-9	Show	GitHub Exploit DB Packet Storm

227428	2.1	注意	Gluster, Inc. レッドハット	-	Red Hat Storage の GlusterFS 機能における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5635	2013-04-11 17:35	2013-03-28	Show	GitHub Exploit DB Packet Storm

227429	4	警告	OpenStack Canonical	-	複数の OpenStack 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1838	2013-04-11 14:57	2013-03-15	Show	GitHub Exploit DB Packet Storm

227430	4.3	警告	フェンリル株式会社	-	Sleipnir for Windows におけるアドレスバー偽装の脆弱性	CWE-noinfo 情報不足	CVE-2013-2303	2013-04-11 12:01	2013-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220711	7.5	HIGH Network	mozilla	firefox	Insufficient bounds checking of data during inter-process communication might allow a compromised content process to be able to read memory from the parent process under certain conditions. This vuln…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2019-9799	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220712	7.4	HIGH Network	mozilla	firefox	On Android systems, Firefox can load a library from APITRACE_LIB, which is writable by all users and applications. This could allow malicious third party applications to execute a man-in-the-middle a…	CWE-426 Untrusted Search Path	CVE-2019-9798	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220713	5.3	MEDIUM Network	mozilla	firefox	Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a can…	CWE-346 Origin Validation Error	CVE-2019-9797	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220714	5.3	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	Firefox will accept any registered Program ID as an external protocol handler and offer to launch this local application when given a matching URL on Windows operating systems. This should only happe…	CWE-20 Improper Input Validation	CVE-2019-9801	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220715	9.8	CRITICAL Network	mozilla	firefox firefox_esr thunderbird	A use-after-free vulnerability can occur when the SMIL animation controller incorrectly registers with the refresh driver twice when only a single registration is expected. When a registration is lat…	CWE-416 Use After Free	CVE-2019-9796	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220716	9.8	CRITICAL Network	mozilla	firefox firefox_esr thunderbird	A vulnerability where type-confusion in the IonMonkey just-in-time (JIT) compiler could potentially be used by malicious JavaScript to trigger a potentially exploitable crash. This vulnerability affe…	CWE-617 CWE-843 Reachable Assertion Type Confusion	CVE-2019-9795	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220717	9.8	CRITICAL Network	mozilla	firefox firefox_esr thunderbird	A vulnerability was discovered where specific command line arguments are not properly discarded during Firefox invocation as a shell handler for URLs. This could be used to retrieve and execute files…	CWE-88 Argument Injection	CVE-2019-9794	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220718	5.9	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	A mechanism was discovered that removes some bounds checking for string, array, or typed array accesses if Spectre mitigations have been disabled. This vulnerability could allow an attacker to create…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-9793	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220719	9.8	CRITICAL Network	mozilla redhat	firefox firefox_esr thunderbird enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus	The IonMonkey just-in-time (JIT) compiler can leak an internal JS_OPTIMIZED_OUT magic value to the running script during a bailout. This magic value can then be used by JavaScript to achieve memory c…	CWE-787 Out-of-bounds Write	CVE-2019-9792	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

220720	9.8	CRITICAL Network	mozilla	thunderbird firefox firefox_esr	A use-after-free vulnerability can occur when a raw pointer to a DOM element on a page is obtained using JavaScript and the element is then removed while still in use. This results in a potentially e…	CWE-416 Use After Free	CVE-2019-9790	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm