Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256551 6.8 警告 サイバートラスト株式会社
The Perl Foundation
レッドハット		 - Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4829 2010-07-26 18:29 2007-11-2 Show GitHub Exploit DB Packet Storm
256552 9.3 危険 マイクロソフト - Microsoft Windows Help and Support Center に脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-1885 2010-07-23 18:55 2010-06-10 Show GitHub Exploit DB Packet Storm
256553 4.9 警告 マイクロソフト - Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2009-3678 2010-07-23 18:55 2010-05-14 Show GitHub Exploit DB Packet Storm
256554 9.3 危険 サン・マイクロシステムズ
レッドハット
リアルネットワークス		 - Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性 CWE-119
バッファエラー 		CVE-2009-4247 2010-07-23 18:55 2010-01-19 Show GitHub Exploit DB Packet Storm
256555 10 危険 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-4548 2010-07-22 20:51 2007-08-13 Show GitHub Exploit DB Packet Storm
256556 5 警告 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の management EJB における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5085 2010-07-22 20:51 2007-09-6 Show GitHub Exploit DB Packet Storm
256557 7.5 危険 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の SQLLoginModule における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5797 2010-07-22 20:51 2007-10-22 Show GitHub Exploit DB Packet Storm
256558 6.8 警告 InterSect Alliance International Pty - Snare Agent の Web インターフェースにクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2594 2010-07-22 20:51 2010-06-30 Show GitHub Exploit DB Packet Storm
256559 5.5 警告 富士通 - Internet Navigware Server における情報漏えいの脆弱性 CWE-200
情報漏えい 		- 2010-07-22 20:51 2010-06-18 Show GitHub Exploit DB Packet Storm
256560 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の NFSv4 クライアントの nfs4_proc_lock 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3726 2010-07-22 17:53 2009-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195001 6.5 MEDIUM
Network 		mozilla firefox The browser could have been confused into transferring a screen sharing state into another tab, which would leak unintended information. This vulnerability affects Firefox < 85. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-23958 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195002 7.4 HIGH
Network 		mozilla firefox Navigations through the Android-specific `intent` URL scheme could have been misused to escape iframe sandbox. Note: This issue only affected Firefox for Android. Other operating systems are unaffect… NVD-CWE-noinfo
CVE-2021-23957 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195003 6.5 MEDIUM
Network 		mozilla firefox An ambiguous file picker design could have confused users who intended to select and upload a single file into uploading a whole directory. This was addressed by adding a new prompt. This vulnerabili… NVD-CWE-noinfo
CVE-2021-23956 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195004 6.1 MEDIUM
Network 		mozilla firefox The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. This vulnerability affects Firefox < 85. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-23955 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195005 8.8 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash. This vulnerability … CWE-843
Type Confusion 		CVE-2021-23954 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195006 4.3 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. This vulnerability affects … NVD-CWE-noinfo
CVE-2021-23953 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195007 8.1 HIGH
Network 		mozilla firefox When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be u… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-23976 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195008 6.5 MEDIUM
Network 		mozilla firefox The developer page about:memory has a Measure function for exploring what object types the browser has allocated and their sizes. When this function was invoked we incorrectly called the sizeof funct… CWE-862
 Missing Authorization 		CVE-2021-23975 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195009 6.1 MEDIUM
Network 		mozilla firefox The DOMParser API did not properly process '<noscript>' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox < 86. NVD-CWE-noinfo
CVE-2021-23974 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
195010 6.5 MEDIUM
Network 		mozilla
debian 		firefox
firefox_esr
thunderbird
debian_linux 		When trying to load a cross-origin resource in an audio/video context a decoding error may have resulted, and the content of that error may have revealed information about the resource. This vulnerab… CWE-209
Information Exposure Through an Error Message 		CVE-2021-23973 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm