Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207011 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2666 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
207012 4.3 警告 Opera Software ASA - Opera における URI の処理に関するクロスサイトスクリプティングの脆弱性\ CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2665 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
207013 4.3 警告 Opera Software ASA - Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2664 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
207014 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2663 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
207015 4.3 警告 Opera Software ASA - Opera におけるポップアップブロッカーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2662 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
207016 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2661 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
207017 4.3 警告 Opera Software ASA - Opera における IDN ドメインになりすまされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2660 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
207018 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2659 2010-09-27 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
207019 4.3 警告 Opera Software ASA - Opera における任意のファイルのアップロードを誘発させられる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2658 2010-09-27 16:19 2010-07-1 Show GitHub Exploit DB Packet Storm
207020 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2657 2010-09-27 16:18 2010-07-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257711 - maniacomputer mcshoutbox Unrestricted file upload vulnerability in admin.php in MCshoutbox 1.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-3716 2017-09-19 10:29 2009-10-17 Show GitHub Exploit DB Packet Storm
257712 - lucvil patplayer Heap-based buffer overflow in LucVil PatPlayer 3.9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URI in a playlist (.m3u) file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-3717 2017-09-19 10:29 2009-10-17 Show GitHub Exploit DB Packet Storm
257713 - davethewebguy battle_blog SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to execute arbitrary SQL commands via the UserName parameter. CWE-89
SQL Injection 		CVE-2009-3718 2017-09-19 10:29 2009-10-17 Show GitHub Exploit DB Packet Storm
257714 - davethewebguy battle_blog Cross-site scripting (XSS) vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to inject arbitrary web script or HTML via a comment. CWE-79
Cross-site Scripting 		CVE-2009-3719 2017-09-19 10:29 2009-10-17 Show GitHub Exploit DB Packet Storm
257715 - sun jre Unspecified vulnerability in the TrueType font parsing functionality in Sun Java SE 5.0 before Update 22 and 6 before Update 17 allows remote attackers to cause a denial of service (application crash… NVD-CWE-noinfo
CVE-2009-3729 2017-09-19 10:29 2009-11-10 Show GitHub Exploit DB Packet Storm
257716 - gnu libtool ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, … NVD-CWE-Other
CVE-2009-3736 2017-09-19 10:29 2009-11-29 Show GitHub Exploit DB Packet Storm
257717 - sun solaris XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even whe… CWE-16
Configuration 		CVE-2009-3746 2017-09-19 10:29 2009-10-23 Show GitHub Exploit DB Packet Storm
257718 - santostefano_giovanni toylog SQL injection vulnerability in read.php in ToyLog 0.1 allows remote attackers to execute arbitrary SQL commands via the idm parameter. CWE-89
SQL Injection 		CVE-2009-3750 2017-09-19 10:29 2009-10-23 Show GitHub Exploit DB Packet Storm
257719 - opial opial Cross-site scripting (XSS) vulnerability in home.php in Opial 1.0 allows remote attackers to inject arbitrary web script or HTML via the genres_parent parameter. CWE-79
Cross-site Scripting 		CVE-2009-3751 2017-09-19 10:29 2009-10-23 Show GitHub Exploit DB Packet Storm
257720 - opial opial SQL injection vulnerability in home.php in Opial 1.0 allows remote attackers to execute arbitrary SQL commands via the genres_parent parameter. CWE-89
SQL Injection 		CVE-2009-3752 2017-09-19 10:29 2009-10-23 Show GitHub Exploit DB Packet Storm