Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228241	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsViewManager::ProcessPendingUpdates 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-4217	2012-12-14 17:52	2012-11-20	Show	GitHub Exploit DB Packet Storm

228242	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsEditor::FindNextLeafNode 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-4213	2012-12-14 16:58	2012-11-20	Show	GitHub Exploit DB Packet Storm

228243	10	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-4212	2012-12-14 16:56	2012-11-20	Show	GitHub Exploit DB Packet Storm

228244	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品の XrayWrapper の実装におけるクローム専用の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4208	2012-12-14 16:50	2012-11-20	Show	GitHub Exploit DB Packet Storm

228245	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-4204	2012-12-14 16:47	2012-11-20	Show	GitHub Exploit DB Packet Storm

228246	6.8	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-DesignError	CVE-2012-4205	2012-12-14 16:40	2012-11-20	Show	GitHub Exploit DB Packet Storm

228247	6.8	警告	Mozilla Foundation	-	Mozilla Firefox の新しいタブページにおける任意のプログラムを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4203	2012-12-14 16:39	2012-11-20	Show	GitHub Exploit DB Packet Storm

228248	10	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-5843	2012-12-14 16:33	2012-11-20	Show	GitHub Exploit DB Packet Storm

228249	4.7	警告	シトリックス・システムズ Xen プロジェクト	-	Xen の HVM 制御操作におけるサービス運用妨害 (物理 CPU の消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-6333	2012-12-14 16:23	2012-12-3	Show	GitHub Exploit DB Packet Storm

228250	4.7	警告	Xen プロジェクト	-	Xen の get_page_from_gfn hypercall 関数におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2012-5525	2012-12-14 16:22	2012-12-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211131	-		canonical oracle	ubuntu_linux jdk jre	Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vect…	NVD-CWE-noinfo	CVE-2016-0402	2024-11-21 11:41	2016-01-21	Show	GitHub Exploit DB Packet Storm

211132	-		oracle	fusion_middleware	Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect integrity via unknown vectors related to Schedul…	NVD-CWE-noinfo	CVE-2016-0401	2024-11-21 11:41	2016-01-21	Show	GitHub Exploit DB Packet Storm

211133	5.9	MEDIUM Network	ibm	security_network_protection_firmware	GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to discover credentials by triggering an MD5 collision.	CWE-200 Information Exposure	CVE-2016-0201	2024-11-21 11:41	2016-01-18	Show	GitHub Exploit DB Packet Storm

211134	9.8	CRITICAL Network	totolink	a850r-v1_firmware f1-v2_firmware f2-v1_firmware n150rt-v2_firmware n151rt-v2_firmware n300rh-v2_firmware n300rh-v3_firmware n300rt-v2_firmware	An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. There is Remote Code Execution in the management interface via the formSysCmd s…	NVD-CWE-noinfo	CVE-2015-9551	2024-11-21 11:40	2020-11-25	Show	GitHub Exploit DB Packet Storm

211135	7.5	HIGH Network	totolink	a850r-v1_firmware f1-v2_firmware f2-v1_firmware n150rt-v2_firmware n151rt-v2_firmware n300rh-v2_firmware n300rh-v3_firmware n300rt-v2_firmware	An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to o…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2015-9550	2024-11-21 11:40	2020-11-25	Show	GitHub Exploit DB Packet Storm

211136	6.1	MEDIUM Network	ocportal	ocportal	A reflected Cross-site Scripting (XSS) vulnerability exists in OcPortal 9.0.20 via the OCF_EMOTICON_CELL.tpl FIELD_NAME field to data/emoticons.php.	CWE-79 Cross-site Scripting	CVE-2015-9549	2024-11-21 11:40	2020-08-4	Show	GitHub Exploit DB Packet Storm

211137	7.5	HIGH Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 1.2.0. It allows attackers to cause a denial of service (memory consumption) via a small compressed file that has a large size when uncompressed.	CWE-400 Uncontrolled Resource Consumption	CVE-2015-9548	2024-11-21 11:40	2020-06-20	Show	GitHub Exploit DB Packet Storm

211138	7.5	HIGH Network	google	android	An issue was discovered on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of …	CWE-200 Information Exposure	CVE-2015-9547	2024-11-21 11:40	2020-04-11	Show	GitHub Exploit DB Packet Storm

211139	4.8	MEDIUM Network	google	android	An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker c…	CWE-22 Path Traversal	CVE-2015-9546	2024-11-21 11:40	2020-04-11	Show	GitHub Exploit DB Packet Storm

211140	7.1	HIGH Local	cross_domain_local_storage_project	cross_domain_local_storage	An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage() function in xdLocalStorage.js does not implement any validation of the origin of web messages. Remote attackers who can e…	CWE-20 Improper Input Validation	CVE-2015-9545	2024-11-21 11:40	2020-04-8	Show	GitHub Exploit DB Packet Storm