Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249271 5 警告 IBM - IBM Datacap Taskmaster Capture の Web Client Service における平文のパスワードを要求する脆弱性 CWE-310
暗号の問題 		CVE-2011-2142 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
249272 7.5 危険 IBM - IBM Datacap Taskmaster Capture の TMWeb におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2141 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
249273 5 警告 opensymphony
Apache Software Foundation		 - Apache Struts の XWork における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2088 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
249274 4.3 警告 Apache Software Foundation - Apache Struts の javatemplates プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2087 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
249275 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2081 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
249276 7.5 危険 inventivetec - MediaCAST における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2080 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
249277 7.5 危険 inventivetec - MediaCAST における詳細不明な影響を受ける脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2079 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
249278 4.3 警告 inventivetec - MediaCAST の New Atlanta BlueDragon 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2078 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
249279 7.5 危険 inventivetec - MediaCAST の New Atlanta BlueDragon 管理インターフェースのデフォルト設定における脆弱性 CWE-16
環境設定 		CVE-2011-2077 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
249280 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2076 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213061 6.5 MEDIUM
Network 		mozilla firefox When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar. This vulnerability affects Firefox < 77. NVD-CWE-noinfo
CVE-2020-12408 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213062 6.5 MEDIUM
Network 		mozilla firefox Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the u… CWE-125
Out-of-bounds Read 		CVE-2020-12407 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213063 8.8 HIGH
Network 		mozilla
canonical 		thunderbird
firefox
firefox_esr
ubuntu_linux 		Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary cod… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-12406 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213064 5.3 MEDIUM
Network 		mozilla
canonical 		thunderbird
firefox
firefox_esr
ubuntu_linux 		When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2020-12405 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213065 4.3 MEDIUM
Network 		mozilla firefox For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnera… CWE-79
Cross-site Scripting 		CVE-2020-12404 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213066 4.4 MEDIUM
Local 		mozilla
opensuse
fedoraproject
debian 		firefox
leap
fedora
debian_linux 		During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly input-dependent flow. This allowed an attacker able to perfo… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-12402 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213067 4.4 MEDIUM
Local 		mozilla
debian 		thunderbird
firefox
firefox_esr
debian_linux 		NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firef… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-12399 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213068 7.5 HIGH
Network 		mozilla
canonical 		thunderbird
ubuntu_linux 		If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-12398 2024-11-21 13:59 2020-07-10 Show GitHub Exploit DB Packet Storm
213069 6.5 MEDIUM
Network 		mozilla
opensuse 		firefox
leap 		When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI was untrusted, and could have been the URI of an origin that was previously granted permission;… CWE-276
Incorrect Default Permissions  		CVE-2020-12424 2024-11-21 13:59 2020-07-9 Show GitHub Exploit DB Packet Storm
213070 7.5 HIGH
Network 		apache
oracle 		camel
enterprise_repository
enterprise_manager_base_platform
communications_diameter_signaling_router 		Server-Side Template Injection and arbitrary file disclosure on Camel templating components CWE-74
Injection 		CVE-2020-11994 2024-11-21 13:59 2020-07-9 Show GitHub Exploit DB Packet Storm