Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230341 10 危険 Mozilla Foundation - 複数の Mozilla 製品の WebGL サブシステムにおける任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2012-5838 2012-12-14 18:02 2012-11-20 Show GitHub Exploit DB Packet Storm
230342 6.8 警告 Mozilla Foundation - Mozilla Firefox の Web 開発ツールバーにおけるクロスサイトスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5837 2012-12-14 18:01 2012-11-20 Show GitHub Exploit DB Packet Storm
230343 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5836 2012-12-14 17:59 2012-11-20 Show GitHub Exploit DB Packet Storm
230344 10 危険 Mozilla Foundation - 複数の Mozilla 製品の BuildTextRunsScanner::BreakSink::SetBreaks 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4218 2012-12-14 17:53 2012-11-20 Show GitHub Exploit DB Packet Storm
230345 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsViewManager::ProcessPendingUpdates 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4217 2012-12-14 17:52 2012-11-20 Show GitHub Exploit DB Packet Storm
230346 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsEditor::FindNextLeafNode 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4213 2012-12-14 16:58 2012-11-20 Show GitHub Exploit DB Packet Storm
230347 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4212 2012-12-14 16:56 2012-11-20 Show GitHub Exploit DB Packet Storm
230348 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の XrayWrapper の実装におけるクローム専用の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4208 2012-12-14 16:50 2012-11-20 Show GitHub Exploit DB Packet Storm
230349 10 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4204 2012-12-14 16:47 2012-11-20 Show GitHub Exploit DB Packet Storm
230350 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-DesignError
CVE-2012-4205 2012-12-14 16:40 2012-11-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314431 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-27171 2023-12-13 23:15 2023-12-13 Show GitHub Exploit DB Packet Storm
314432 - microsoft directx Unspecified vulnerability in Quartz.dll for DirectShow on Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1, and Server 2008 allows remote attackers to execute arbitrary code via… CWE-94
Code Injection 		CVE-2010-1880 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314433 - microsoft internet_explorer Microsoft Internet Explorer 6 SP1 and SP2, 7, and 8 allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory… CWE-94
Code Injection 		CVE-2010-1262 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314434 - microsoft internet_explorer The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ… CWE-94
Code Injection 		CVE-2010-1261 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314435 - microsoft internet_explorer Microsoft Internet Explorer 6 SP1 and SP2, 7, and 8 allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory… CWE-94
Code Injection 		CVE-2010-1259 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314436 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local u… CWE-94
Code Injection 		CVE-2010-1255 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314437 - microsoft windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		Multiple unspecified vulnerabilities in the Microsoft Internet Explorer 8 Developer Tools ActiveX control in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista… CWE-94
Code Injection 		CVE-2010-0811 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314438 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not proper… CWE-20
 Improper Input Validation  		CVE-2010-0485 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314439 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008 		The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 "do not properly validate changes in cert… CWE-20
 Improper Input Validation  		CVE-2010-0484 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
314440 - microsoft office_infopath
sharepoint_server
sharepoint_services
internet_explorer 		Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services… CWE-79
Cross-site Scripting 		CVE-2010-1257 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm