Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230351	7.5	危険	rmsoft	-	Xoops 用の RMSOFT MiniShop モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4433	2012-12-20 18:52	2008-10-3	Show	GitHub Exploit DB Packet Storm

230352	4.3	警告	rmsoft	-	Xoops 用の RMSOFT MiniShop モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4432	2012-12-20 18:52	2008-10-3	Show	GitHub Exploit DB Packet Storm

230353	5	警告	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4403	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230354	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan のサーバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4402	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230355	9.3	危険	safer networking	-	Safer Networking FileAlyzer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4396	2012-12-20 18:52	2008-10-2	Show	GitHub Exploit DB Packet Storm

230356	4.3	警告	ベリサイン	-	VeriSign Kontiki DMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4393	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

230357	9.3	危険	simba technologies SAP	-	SAP SAPgui の mdrmsap.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4387	2012-12-20 18:52	2008-11-10	Show	GitHub Exploit DB Packet Storm

230358	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4244	2012-12-20 18:52	2008-09-25	Show	GitHub Exploit DB Packet Storm

230359	7.5	危険	softacid	-	SoftAcid HRS の city.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4204	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

230360	6.9	警告	レッドハット	-	cman の fence_egenera における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4192	2012-12-20 18:52	2008-09-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195991	3.1	LOW Network	mozilla	firefox	A race condition with requestPointerLock() and setTimeout() could have resulted in a user interacting with one tab when they believed they were on a separate tab. In conjunction with certain elements…	CWE-362 Race Condition	CVE-2021-24000	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195992	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional privileges that should not be granted to web content. This vul…	CWE-269 CWE-697 Improper Privilege Management Incorrect Comparison	CVE-2021-23999	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195993	6.5	MEDIUM Network	mozilla	thunderbird firefox firefox_esr	Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Fir…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-23998	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195994	8.8	HIGH Network	mozilla	firefox	Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with enough effort this could have been exploited to run arbitrary …	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-23997	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195995	6.5	MEDIUM Network	mozilla	firefox	By utilizing 3D CSS in conjunction with Javascript, content could have been rendered outside the webpage's viewport, resulting in a spoofing attack that could have been used for phishing or other att…	NVD-CWE-Other	CVE-2021-23996	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195996	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code. This vulner…	CWE-672 Operation on a Resource after Expiration or Release	CVE-2021-23995	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195997	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.	CWE-909 Missing Initialization of Resource	CVE-2021-23994	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195998	6.5	MEDIUM Network	mozilla	thunderbird	An attacker may perform a DoS attack to prevent a user from sending encrypted email to a correspondent. If an attacker creates a crafted OpenPGP key with a subkey that has an invalid self signature, …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23993	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195999	4.3	MEDIUM Network	mozilla	thunderbird	Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user I…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23992	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

196000	6.8	MEDIUM Network	mozilla	thunderbird	If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an em…	NVD-CWE-Other	CVE-2021-23991	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm