Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202881 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-1989 2010-09-27 16:17 2010-05-20 Show GitHub Exploit DB Packet Storm
202882 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1728 2010-09-27 16:17 2010-04-30 Show GitHub Exploit DB Packet Storm
202883 10 危険 Opera Software ASA - Opera における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-1349 2010-09-27 16:17 2010-04-12 Show GitHub Exploit DB Packet Storm
202884 5 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-1310 2010-09-27 16:16 2010-03-22 Show GitHub Exploit DB Packet Storm
202885 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-0653 2010-09-27 16:16 2010-02-18 Show GitHub Exploit DB Packet Storm
202886 10 危険 Opera Software ASA - Opera における脆弱性 CWE-noinfo
情報不足
CVE-2009-4072 2010-09-27 16:16 2009-11-23 Show GitHub Exploit DB Packet Storm
202887 5.8 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-16
環境設定
CVE-2009-4071 2010-09-27 16:16 2009-11-24 Show GitHub Exploit DB Packet Storm
202888 5.8 警告 Opera Software ASA - Windows 上で稼働する Opera におけるアドレスフィールドを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2009-3832 2010-09-27 16:16 2009-10-28 Show GitHub Exploit DB Packet Storm
202889 5 警告 Opera Software ASA - Opera におけるフィッシング攻撃の脆弱性 CWE-Other
その他
CVE-2009-3049 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
202890 4.3 警告 Opera Software ASA - Opera における意図しないファイルをアップロードさせられる脆弱性 CWE-20
不適切な入力確認
CVE-2009-3048 2010-09-27 16:15 2009-09-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257941 - ajaydsouza contextual_related_posts SQL injection vulnerability in the Contextual Related Posts plugin before 1.8.10.2 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2014-3937 2014-06-4 00:09 2014-06-3 Show GitHub Exploit DB Packet Storm
257942 - redhat openstack The default configuration in the standalone controller quickstack manifest in openstack-foreman-installer, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, disables authentication for Qpid… CWE-287
Improper Authentication
CVE-2013-6470 2014-06-4 00:00 2014-06-3 Show GitHub Exploit DB Packet Storm
257943 - danielkorte nodeaccesskeys The Node Access Keys module 7.x-1.x before 7.x-1.1 for Drupal does not properly check permissions, which allows remote attackers to bypass access restrictions via a node listing. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4596 2014-06-3 23:49 2014-06-3 Show GitHub Exploit DB Packet Storm
257944 - dleviet datalife_engine Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie. NVD-CWE-Other
CVE-2013-7387 2014-06-3 22:10 2014-06-3 Show GitHub Exploit DB Packet Storm
257945 - dleviet datalife_engine Per: http://cwe.mitre.org/data/definitions/384.html "CWE-384: Session Fixation" NVD-CWE-Other
CVE-2013-7387 2014-06-3 22:10 2014-06-3 Show GitHub Exploit DB Packet Storm
257946 - dleviet datalife_engine DataLife Engine (DLE) 9.7 allows remote attackers to execute arbitrary PHP code via the catlist[] parameter to engine/preview.php, which is used in a preg_replace function call with an e modifier. CWE-94
Code Injection
CVE-2013-1412 2014-06-3 21:27 2014-06-3 Show GitHub Exploit DB Packet Storm
257947 - mediawiki mediawiki Session fixation vulnerability in the CentralAuth extension for MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the centrala… NVD-CWE-Other
CVE-2012-5395 2014-06-3 21:09 2014-06-3 Show GitHub Exploit DB Packet Storm
257948 - mediawiki mediawiki Per: http://cwe.mitre.org/data/definitions/384.html "CWE-384: Session Fixation" NVD-CWE-Other
CVE-2012-5395 2014-06-3 21:09 2014-06-3 Show GitHub Exploit DB Packet Storm
257949 - intel indeo_video ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote attackers to cause a denial of service (crash) via a crafted .avi file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3735 2014-06-3 20:45 2014-05-19 Show GitHub Exploit DB Packet Storm
257950 - xoops glossaire_module SQL injection vulnerability in glossaire-aff.php in the Glossaire module 1.0 for XOOPS allows remote attackers to execute arbitrary SQL commands via the lettre parameter. CWE-89
SQL Injection
CVE-2014-3935 2014-06-3 20:08 2014-06-2 Show GitHub Exploit DB Packet Storm