Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226631 9.3 危険 Opera Software ASA - Opera におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6468 2013-01-7 16:49 2012-11-20 Show GitHub Exploit DB Packet Storm
226632 4.3 警告 Opera Software ASA - Opera におけるフィッシング攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6467 2013-01-7 16:48 2012-11-6 Show GitHub Exploit DB Packet Storm
226633 5 警告 Opera Software ASA - Opera におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-6466 2013-01-7 16:47 2012-11-6 Show GitHub Exploit DB Packet Storm
226634 9.3 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-6465 2013-01-7 16:46 2012-11-6 Show GitHub Exploit DB Packet Storm
226635 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6464 2013-01-7 16:46 2012-11-6 Show GitHub Exploit DB Packet Storm
226636 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6463 2013-01-7 16:42 2012-11-6 Show GitHub Exploit DB Packet Storm
226637 5 警告 Opera Software ASA - Opera におけるページコンテンツの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6462 2013-01-7 16:41 2012-11-6 Show GitHub Exploit DB Packet Storm
226638 5 警告 Opera Software ASA - Opera の HTTPS の実装における失効ステータスチェック結果が間違って表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6461 2013-01-7 16:37 2012-11-6 Show GitHub Exploit DB Packet Storm
226639 5 警告 Opera Software ASA - Opera における任意のプログラムをダウンロードおよび実行される脆弱性 CWE-Other
その他 		CVE-2012-6460 2013-01-7 16:36 2012-08-30 Show GitHub Exploit DB Packet Storm
226640 6.8 警告 e107.org - e107 の e107_admin/download.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-6434 2013-01-7 16:26 2013-01-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312061 6.8 MEDIUM
Network 		cisco rv042_firmware
rv042g_firmware
rv320_firmware
rv325_firmware 		A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an un… CWE-787
 Out-of-bounds Write 		CVE-2024-20522 2024-10-8 22:48 2024-10-3 Show GitHub Exploit DB Packet Storm
312062 6.8 MEDIUM
Network 		cisco rv042_firmware
rv042g_firmware
rv320_firmware
rv325_firmware 		A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an un… CWE-787
 Out-of-bounds Write 		CVE-2024-20517 2024-10-8 22:47 2024-10-3 Show GitHub Exploit DB Packet Storm
312063 6.5 MEDIUM
Network 		cisco nexus_dashboard
nexus_dashboard_fabric_controller 		A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to learn sensitive information on an affected device. This vulnerability… NVD-CWE-noinfo
CVE-2024-20441 2024-10-8 22:45 2024-10-3 Show GitHub Exploit DB Packet Storm
312064 6.8 MEDIUM
Network 		cisco rv042_firmware
rv042g_firmware
rv320_firmware
rv325_firmware 		A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an un… CWE-787
 Out-of-bounds Write 		CVE-2024-20516 2024-10-8 22:44 2024-10-3 Show GitHub Exploit DB Packet Storm
312065 8.8 HIGH
Network 		mi ax9000_firmware The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root acce… CWE-77
Command Injection 		CVE-2023-26315 2024-10-8 19:15 2024-08-26 Show GitHub Exploit DB Packet Storm
312066 4.8 MEDIUM
Network 		expresstech quiz_and_survey_master The Quiz and Survey Master (QSM) WordPress plugin before 9.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Sc… CWE-79
Cross-site Scripting 		CVE-2024-8758 2024-10-8 06:35 2024-09-23 Show GitHub Exploit DB Packet Storm
312067 6.1 MEDIUM
Network 		seopress seopress The SEOPress – On-site SEO plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versi… CWE-79
Cross-site Scripting 		CVE-2024-9225 2024-10-8 05:24 2024-10-2 Show GitHub Exploit DB Packet Storm
312068 9.8 CRITICAL
Network 		code-projects restaurant_reservation_system A vulnerability has been found in code-projects Restaurant Reservation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /filter2.php. The … CWE-89
SQL Injection 		CVE-2024-9429 2024-10-8 05:15 2024-10-2 Show GitHub Exploit DB Packet Storm
312069 6.1 MEDIUM
Network 		icopydoc yml_for_yandex_market The YML for Yandex Market plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 4.7.2 due to insufficient input sanitizat… CWE-79
Cross-site Scripting 		CVE-2024-9378 2024-10-8 05:15 2024-10-2 Show GitHub Exploit DB Packet Storm
312070 4.8 MEDIUM
Network 		redhat build_of_keycloak A vulnerability was found in Keycloak. Expired OTP codes are still usable when using FreeOTP when the OTP token period is set to 30 seconds (default). Instead of expiring and deemed unusable around 3… CWE-324
 Use of a Key Past its Expiration Date 		CVE-2024-7318 2024-10-8 05:15 2024-09-10 Show GitHub Exploit DB Packet Storm