Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 15, 2024, 4:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202841 5.8 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-16
環境設定
CVE-2009-4071 2010-09-27 16:16 2009-11-24 Show GitHub Exploit DB Packet Storm
202842 5.8 警告 Opera Software ASA - Windows 上で稼働する Opera におけるアドレスフィールドを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2009-3832 2010-09-27 16:16 2009-10-28 Show GitHub Exploit DB Packet Storm
202843 5 警告 Opera Software ASA - Opera におけるフィッシング攻撃の脆弱性 CWE-Other
その他
CVE-2009-3049 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202844 4.3 警告 Opera Software ASA - Opera における意図しないファイルをアップロードさせられる脆弱性 CWE-20
不適切な入力確認
CVE-2009-3048 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202845 4.3 警告 Opera Software ASA - Opera における URL を偽装される脆弱性 CWE-Other
その他
CVE-2009-3047 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202846 5 警告 Opera Software ASA - Opera における証明書チェーンの有効性を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-3046 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202847 5 警告 Opera Software ASA - Opera における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2009-3045 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202848 9.3 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-3831 2010-09-27 16:14 2009-10-28 Show GitHub Exploit DB Packet Storm
202849 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-3269 2010-09-27 16:14 2009-09-18 Show GitHub Exploit DB Packet Storm
202850 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-3266 2010-09-27 16:14 2009-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 15, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1501 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cool Plugins Web Stories Widgets For Elementor allows Stored XSS.This issue affects Web St… CWE-79
Cross-site Scripting
CVE-2024-52354 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1502 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gabriel Serafini Christian Science Bible Lesson Subjects allows DOM-Based XSS.This issue a… - CVE-2024-52353 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1503 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Andrew Milo Postcasa Shortcode allows DOM-Based XSS.This issue affects Postcasa Shortcode:… CWE-79
Cross-site Scripting
CVE-2024-52352 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1504 6.1 MEDIUM
Network
- - Webopac from Grand Vice info has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing … CWE-79
Cross-site Scripting
CVE-2024-11019 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1505 9.8 CRITICAL
Network
- - Webopac from Grand Vice info does not properly validate uploaded file types, allowing unauthenticated remote attackers to upload and execute webshells, which could lead to arbitrary code execution on… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-11018 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1506 8.8 HIGH
Network
- - Webopac from Grand Vice info does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells, which could lead to arbitrary code exec… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-11017 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1507 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cyberchimps Responsive Addons for Elementor allows DOM-Based XSS.This issue affects Respon… CWE-79
Cross-site Scripting
CVE-2024-52358 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1508 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LIQUID DESIGN Ltd. LIQUID BLOCKS allows Stored XSS.This issue affects LIQUID BLOCKS: from … CWE-79
Cross-site Scripting
CVE-2024-52357 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1509 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webangon The Pack Elementor addons allows Stored XSS.This issue affects The Pack Elementor… CWE-79
Cross-site Scripting
CVE-2024-52356 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm
1510 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ehues Gboy Custom Google Map allows Blind SQL Injection.This issue affects Gboy Custom Google Map… CWE-89
SQL Injection
CVE-2024-51882 2024-11-12 22:55 2024-11-11 Show GitHub Exploit DB Packet Storm