Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202921	5	警告	Opera Software ASA	-	Opera における任意のアドレスの表示を誘発させられる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4195	2010-09-27 16:02	2008-09-27	Show	GitHub Exploit DB Packet Storm

202922	6.8	警告	Opera Software ASA	-	Opera における HTTP セッションハイジャックの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3172	2010-09-27 16:01	2008-07-14	Show	GitHub Exploit DB Packet Storm

202923	10	危険	Opera Software ASA	-	Windows 上で稼働する Opera における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-3079	2010-09-27 16:01	2008-07-9	Show	GitHub Exploit DB Packet Storm

202924	7.8	危険	Opera Software ASA	-	Opera における初期化されていないメモリコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-3078	2010-09-27 16:01	2008-07-9	Show	GitHub Exploit DB Packet Storm

202925	5	警告	Opera Software ASA	-	Opera における信頼されたフレームのコンテンツを偽装される脆弱性	CWE-DesignError	CVE-2008-2716	2010-09-27 16:00	2008-06-16	Show	GitHub Exploit DB Packet Storm

202926	5	警告	Opera Software ASA	-	Opera におけるクロスドメインの脆弱性	CWE-200 情報漏えい	CVE-2008-2715	2010-09-27 16:00	2008-06-16	Show	GitHub Exploit DB Packet Storm

202927	5	警告	Opera Software ASA	-	Opera における Web ページのアドレスを偽装される脆弱性	CWE-DesignError	CVE-2008-2714	2010-09-27 15:59	2008-06-16	Show	GitHub Exploit DB Packet Storm

202928	9.3	危険	Opera Software ASA	-	Opera におけるパスワード入力時のキーボードハンドリングの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2008-1764	2010-09-27 15:59	2008-04-12	Show	GitHub Exploit DB Packet Storm

202929	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-1762	2010-09-27 15:58	2008-04-12	Show	GitHub Exploit DB Packet Storm

202930	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-1761	2010-09-27 15:58	2008-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257921	-	fruux owncloud	sabredav owncloud	SabreDAV before 1.7.11, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via …	NVD-CWE-Other	CVE-2014-2055	2014-06-5 03:38	2014-06-4	Show	GitHub Exploit DB Packet Storm

257922	-	fruux owncloud	sabredav owncloud	Per: http://cwe.mitre.org/data/definitions/611.html "CWE-611: Improper Restriction of XML External Entity Reference ('XXE')"	NVD-CWE-Other	CVE-2014-2055	2014-06-5 03:38	2014-06-4	Show	GitHub Exploit DB Packet Storm

257923	-	owncloud phpexcel_project	owncloud phpexcel	PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, does not disable external entity loading in libxml, which allows remote attackers to read arbitrary files, caus…	NVD-CWE-Other	CVE-2014-2054	2014-06-5 03:34	2014-06-4	Show	GitHub Exploit DB Packet Storm

257924	-	owncloud phpexcel_project	owncloud phpexcel	Per: http://cwe.mitre.org/data/definitions/611.html "CWE-611: Improper Restriction of XML External Entity Reference ('XXE')"	NVD-CWE-Other	CVE-2014-2054	2014-06-5 03:34	2014-06-4	Show	GitHub Exploit DB Packet Storm

257925	-	owncloud	owncloud	The installation routine in ownCloud Server before 4.0.14, 4.5.x before 4.5.9, and 5.0.x before 5.0.4 uses the time function to seed the generation of the PostgreSQL database user password, which mak…	CWE-310 Cryptographic Issues	CVE-2013-1941	2014-06-5 03:18	2014-06-4	Show	GitHub Exploit DB Packet Storm

257926	-	owncloud	owncloud	settings/personal.php in ownCloud 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via crafted mount point settings.	CWE-94 Code Injection	CVE-2013-0204	2014-06-5 03:01	2014-06-4	Show	GitHub Exploit DB Packet Storm

257927	-	owncloud	owncloud	lib/base.php in ownCloud before 4.0.8 does not properly validate the user_id session variable, which allows remote authenticated users to read arbitrary files via vectors related to WebDAV.	CWE-20 Improper Input Validation	CVE-2012-5336	2014-06-5 02:28	2014-06-4	Show	GitHub Exploit DB Packet Storm

257928	-	owncloud	owncloud	CRLF injection vulnerability in ownCloud Server before 4.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the url path parameter.	NVD-CWE-Other	CVE-2012-5057	2014-06-5 02:19	2014-06-4	Show	GitHub Exploit DB Packet Storm

257929	-	owncloud	owncloud	Per: http://cwe.mitre.org/data/definitions/93.html "CWE-93: Improper Neutralization of CRLF Sequences ('CRLF Injection')"	NVD-CWE-Other	CVE-2012-5057	2014-06-5 02:19	2014-06-4	Show	GitHub Exploit DB Packet Storm

257930	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) readyCallback parameter to apps/files_odf…	CWE-79 Cross-site Scripting	CVE-2012-5056	2014-06-5 02:15	2014-06-4	Show	GitHub Exploit DB Packet Storm