Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257351	9.3	危険	レッドハットリアルネットワークス	-	RealNetworks RealPlayer の drv2.dll モジュールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4378	2011-01-7 15:35	2010-12-10	Show	GitHub Exploit DB Packet Storm

257352	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の Cook Audio Codec におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4377	2011-01-7 15:35	2010-12-10	Show	GitHub Exploit DB Packet Storm

257353	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の RTSP GIF の解析処理におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4376	2011-01-7 15:34	2010-12-10	Show	GitHub Exploit DB Packet Storm

257354	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の pnen3260.dll モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-4397	2011-01-7 15:34	2010-12-10	Show	GitHub Exploit DB Packet Storm

257355	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の AAC MLLT Atom 解析処理における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2999	2011-01-7 15:34	2010-12-10	Show	GitHub Exploit DB Packet Storm

257356	9.3	危険	レッドハットリアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2997	2011-01-7 15:33	2010-12-10	Show	GitHub Exploit DB Packet Storm

257357	2.6	注意	アップルサイバートラスト株式会社レッドハット SquirrelMail Project	-	SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2964	2011-01-7 11:03	2009-08-12	Show	GitHub Exploit DB Packet Storm

257358	4.3	警告	レッドハット SquirrelMail Project	-	SquirrelMail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1262	2011-01-7 11:02	2007-05-9	Show	GitHub Exploit DB Packet Storm

257359	9.3	危険	レッドハットリアルネットワークス	-	RealNetworks RealPlayer のマルチレートオーディオにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4375	2011-01-6 16:23	2010-12-10	Show	GitHub Exploit DB Packet Storm

257360	9.3	危険	レッドハットリアルネットワークス	-	RealNetworks RealPlayer の RealMedia メディアプロパティーヘッダーにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4384	2011-01-6 16:18	2010-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197731	6.5	MEDIUM Network	mozilla	thunderbird firefox firefox_esr	Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Fir…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-23998	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197732	8.8	HIGH Network	mozilla	firefox	Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with enough effort this could have been exploited to run arbitrary …	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-23997	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197733	6.5	MEDIUM Network	mozilla	firefox	By utilizing 3D CSS in conjunction with Javascript, content could have been rendered outside the webpage's viewport, resulting in a spoofing attack that could have been used for phishing or other att…	NVD-CWE-Other	CVE-2021-23996	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197734	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code. This vulner…	CWE-672 Operation on a Resource after Expiration or Release	CVE-2021-23995	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197735	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.	CWE-909 Missing Initialization of Resource	CVE-2021-23994	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197736	6.5	MEDIUM Network	mozilla	thunderbird	An attacker may perform a DoS attack to prevent a user from sending encrypted email to a correspondent. If an attacker creates a crafted OpenPGP key with a subkey that has an invalid self signature, …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23993	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197737	4.3	MEDIUM Network	mozilla	thunderbird	Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user I…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23992	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197738	6.8	MEDIUM Network	mozilla	thunderbird	If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an em…	NVD-CWE-Other	CVE-2021-23991	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

197739	5.4	MEDIUM Network	codecabin	wp_go_maps	The WP Google Maps WordPress plugin before 8.1.12 did not sanitise, validate of escape the Map Name when output in the Map List of the admin dashboard, leading to an authenticated Stored Cross-Site S…	CWE-79 Cross-site Scripting	CVE-2021-24383	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

197740	5.3	MEDIUM Network	wphappycoders	comments_like_dislike	The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user…	-	CVE-2021-24379	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm