Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229681	7.5	危険	Qualiteam Software Limited	-	Qualiteam X-Cart の cmpi.php における任意のプログラム変数を上書きされる脆弱性	-	CVE-2006-4904	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

229682	10	危険	シマンテック	-	Symantec Veritas NetBackup の NetBackup bpcd デーモンにおける任意のコマンドを実行される脆弱性	-	CVE-2006-4902	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

229683	7.5	危険	phpbb xs	-	phpBB XS の bb_usage_stats/includes/bb_usage_stats.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4893	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229684	7.5	危険	techno dreams	-	Techno Dreams FAQ Manager Package の faqview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4892	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229685	7.5	危険	techno dreams	-	Techno Dreams Articles & Papers Package の ArticlesTableview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4891	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229686	7.5	危険	unak	-	UNAK-CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4890	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229687	5.1	警告	telekorn	-	Telekorn SL における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4889	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229688	7.5	危険	shadowed portal	-	Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4885	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229689	5	警告	phpquiz	-	Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性	-	CVE-2006-4865	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

229690	4.3	警告	roller weblogger	-	Roller WebLogger におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4856	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211521	9.8	CRITICAL Network	mozilla	firefox	A latent vulnerability exists in the Prio library where data may be read from uninitialized memory for some functions, leading to potential memory corruption. This vulnerability affects Firefox < 66.	CWE-908 Use of Uninitialized Resource	CVE-2019-9805	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211522	9.8	CRITICAL Network	mozilla	firefox	In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command into a command shell on macOS will cause the execution of unintended additional bash script commands if…	CWE-78 OS Command	CVE-2019-9804	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211523	7.4	HIGH Network	mozilla	firefox	The Upgrade-Insecure-Requests (UIR) specification states that if UIR is enabled through Content Security Policy (CSP), navigation to a same-origin URL must be upgraded to HTTPS. Firefox will incorrec…	CWE-346 Origin Validation Error	CVE-2019-9803	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211524	7.5	HIGH Network	mozilla	firefox	If a Sandbox content process is compromised, it can initiate an FTP download which will then use a child process to render the downloaded data. The downloaded data can then be passed to the Chrome pr…	CWE-125 Out-of-bounds Read	CVE-2019-9802	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211525	7.5	HIGH Network	mozilla	firefox	Insufficient bounds checking of data during inter-process communication might allow a compromised content process to be able to read memory from the parent process under certain conditions. This vuln…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2019-9799	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211526	7.4	HIGH Network	mozilla	firefox	On Android systems, Firefox can load a library from APITRACE_LIB, which is writable by all users and applications. This could allow malicious third party applications to execute a man-in-the-middle a…	CWE-426 Untrusted Search Path	CVE-2019-9798	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211527	5.3	MEDIUM Network	mozilla	firefox	Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a can…	CWE-346 Origin Validation Error	CVE-2019-9797	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211528	5.3	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	Firefox will accept any registered Program ID as an external protocol handler and offer to launch this local application when given a matching URL on Windows operating systems. This should only happe…	CWE-20 Improper Input Validation	CVE-2019-9801	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211529	9.8	CRITICAL Network	mozilla	firefox firefox_esr thunderbird	A use-after-free vulnerability can occur when the SMIL animation controller incorrectly registers with the refresh driver twice when only a single registration is expected. When a registration is lat…	CWE-416 Use After Free	CVE-2019-9796	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

211530	9.8	CRITICAL Network	mozilla	firefox firefox_esr thunderbird	A vulnerability where type-confusion in the IonMonkey just-in-time (JIT) compiler could potentially be used by malicious JavaScript to trigger a potentially exploitable crash. This vulnerability affe…	CWE-617 CWE-843 Reachable Assertion Type Confusion	CVE-2019-9795	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm