Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228231 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品におけるアドレスバーを偽造される脆弱性 CWE-Other
その他 		CVE-2012-1955 2012-12-14 18:11 2012-07-17 Show GitHub Exploit DB Packet Storm
228232 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsDocument::AdoptNode 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1954 2012-12-14 18:11 2012-07-17 Show GitHub Exploit DB Packet Storm
228233 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の ElementAnimations::EnsureStyleRuleFor 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-1953 2012-12-14 18:10 2012-07-17 Show GitHub Exploit DB Packet Storm
228234 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の nsTableFrame::InsertFrames 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1952 2012-12-14 18:09 2012-07-17 Show GitHub Exploit DB Packet Storm
228235 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsSMILTimeValueSpec::IsEventBased 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1951 2012-12-14 18:07 2012-07-17 Show GitHub Exploit DB Packet Storm
228236 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1948 2012-12-14 18:07 2012-07-17 Show GitHub Exploit DB Packet Storm
228237 10 危険 Mozilla Foundation - 複数の Mozilla 製品の WebGL サブシステムにおける任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2012-5838 2012-12-14 18:02 2012-11-20 Show GitHub Exploit DB Packet Storm
228238 6.8 警告 Mozilla Foundation - Mozilla Firefox の Web 開発ツールバーにおけるクロスサイトスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5837 2012-12-14 18:01 2012-11-20 Show GitHub Exploit DB Packet Storm
228239 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5836 2012-12-14 17:59 2012-11-20 Show GitHub Exploit DB Packet Storm
228240 10 危険 Mozilla Foundation - 複数の Mozilla 製品の BuildTextRunsScanner::BreakSink::SetBreaks 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4218 2012-12-14 17:53 2012-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198851 9.8 CRITICAL
Network 		gnu ncurses In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-10684 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198852 7.8 HIGH
Local 		nasm
canonical 		netwide_assembler
ubuntu_linux 		In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function… CWE-416
 Use After Free 		CVE-2017-10686 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198853 7.5 HIGH
Network 		mpg123 mpg123 In mpg123 1.25.0, there is a heap-based buffer over-read in the convert_latin1 function in libmpg123/id3.c. A crafted input will lead to a remote denial of service attack. CWE-125
Out-of-bounds Read 		CVE-2017-10683 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198854 9.8 CRITICAL
Network 		piwigo piwigo SQL injection vulnerability in the administrative backend in Piwigo through 2.9.1 allows remote users to execute arbitrary SQL commands via the cat_false or cat_true parameter in the comments or stat… CWE-89
SQL Injection 		CVE-2017-10682 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198855 8.8 HIGH
Network 		piwigo piwigo Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to unlock albums via a crafted request. CWE-352
 Origin Validation Error 		CVE-2017-10681 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198856 8.8 HIGH
Network 		piwigo piwigo Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to change a private album to public via a crafted re… CWE-352
 Origin Validation Error 		CVE-2017-10680 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198857 7.5 HIGH
Network 		piwigo piwigo Piwigo through 2.9.1 allows remote attackers to obtain sensitive information about the descriptive name of a permalink by examining the redirect URL that is returned in a request for the permalink ID… CWE-200
Information Exposure 		CVE-2017-10679 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198858 8.8 HIGH
Network 		piwigo piwigo Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to delete permalinks via a crafted request. CWE-352
 Origin Validation Error 		CVE-2017-10678 2024-11-21 12:06 2017-06-30 Show GitHub Exploit DB Packet Storm
198859 6.1 MEDIUM
Network 		get-simple getsimple_cms admin/profile.php in GetSimple CMS 3.x has XSS in a name field. CWE-79
Cross-site Scripting 		CVE-2017-10673 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm
198860 9.8 CRITICAL
Network 		xml-libxml_project
debian 		xml-libxml
debian_linux 		Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call. CWE-416
 Use After Free 		CVE-2017-10672 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm