Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228871	4.3	警告	National Information Infrastructure Development Institute	-	Drupal 用 Shibboleth authentication モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4494	2012-11-2 14:55	2012-08-8	Show	GitHub Exploit DB Packet Storm

228872	2.1	注意	Isaac Sukin	-	Drupal 用 Shorten URLs モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4492	2012-11-2 14:54	2012-08-8	Show	GitHub Exploit DB Packet Storm

228873	5.8	警告	Earl Dunovant	-	Drupal 用 Monthly Archive by Node Type モジュールにおける制限しているノードにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4491	2012-11-2 14:53	2012-08-1	Show	GitHub Exploit DB Packet Storm

228874	4.3	警告	Ricky Morse	-	Drupal 用 Excluded Users モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4490	2012-11-2 14:45	2012-08-1	Show	GitHub Exploit DB Packet Storm

228875	5.8	警告	Mark Burdett	-	Drupal 用 Secure Login モジュールにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-4489	2012-11-2 14:43	2012-07-25	Show	GitHub Exploit DB Packet Storm

228876	5	警告	Location module project	-	Drupal 用 Location モジュールにおけるノードまたはユーザの検索結果を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4488	2012-11-2 14:43	2012-07-25	Show	GitHub Exploit DB Packet Storm

228877	4.3	警告	Manuel Garcia	-	Drupal 用 Gallery formatter モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4485	2012-11-2 14:40	2012-07-25	Show	GitHub Exploit DB Packet Storm

228878	4.3	警告	Campaign Monitor project	-	Drupal 用 Campaign Monitor モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4484	2012-11-2 14:38	2012-07-18	Show	GitHub Exploit DB Packet Storm

228879	5	警告	Acquia Inc.	-	Drupal 用 Drupal Commons モジュールにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4483	2012-11-2 14:38	2012-07-11	Show	GitHub Exploit DB Packet Storm

228880	5	警告	Longwave Consulting	-	Drupal 用 Ubercart SecureTrading Payment Method モジュールにおける未払いのアイテムを購入される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4482	2012-11-2 14:36	2012-07-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211811	-	fedoraproject mozilla opensuse	fedora firefox leap opensuse	Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 might allow remote attackers to obtain sensitive information, cause …	CWE-189 Numeric Errors	CVE-2015-7205	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211812	-	opensuse fedoraproject mozilla	leap opensuse fedora firefox	Mozilla Firefox before 43.0 does not properly store the properties of unboxed objects, which allows remote attackers to execute arbitrary code via crafted JavaScript variable assignments.	CWE-17 Code	CVE-2015-7204	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211813	-	mozilla fedoraproject opensuse	firefox fedora leap opensuse	Buffer overflow in the DirectWriteFontInfo::LoadFontFamilyData function in gfx/thebes/gfxDWriteFontList.cpp in Mozilla Firefox before 43.0 might allow remote attackers to cause a denial of service or…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7203	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211814	-	mozilla opensuse fedoraproject	firefox leap opensuse fedora	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7202	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211815	-	fedoraproject mozilla opensuse	fedora firefox leap opensuse	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7201	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211816	-	hp xmlsoft debian apple redhat canonical	icewall_file_manager icewall_federation_agent libxml2 debian_linux watchos iphone_os mac_os_x tvos enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_se…	The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect en…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7500	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211817	-	apple canonical redhat hp xmlsoft debian opensuse	watchos iphone_os mac_os_x tvos ubuntu_linux enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation icewall_file_manager	Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7499	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211818	-	hp canonical debian redhat xmlsoft	icewall_file_manager icewall_federation_agent ubuntu_linux debian_linux enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extra…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7498	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211819	-	debian canonical xmlsoft redhat hp	debian_linux ubuntu_linux libxml2 enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation icewall_file_manager icewall_federati…	Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7497	2024-11-21 11:36	2015-12-16	Show	GitHub Exploit DB Packet Storm

211820	-	apple	iphone_os watchos	The LaunchServices component in Apple iOS before 9.2 and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7113	2024-11-21 11:36	2015-12-11	Show	GitHub Exploit DB Packet Storm