Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228471	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-6470	2013-01-7 16:50	2012-12-18	Show	GitHub Exploit DB Packet Storm

228472	5	警告	Opera Software ASA	-	Opera における任意のローカルファイルの存在を特定される脆弱性	CWE-200 情報漏えい	CVE-2012-6469	2013-01-7 16:49	2012-11-20	Show	GitHub Exploit DB Packet Storm

228473	9.3	危険	Opera Software ASA	-	Opera におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6468	2013-01-7 16:49	2012-11-20	Show	GitHub Exploit DB Packet Storm

228474	4.3	警告	Opera Software ASA	-	Opera におけるフィッシング攻撃を実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-6467	2013-01-7 16:48	2012-11-6	Show	GitHub Exploit DB Packet Storm

228475	5	警告	Opera Software ASA	-	Opera におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6466	2013-01-7 16:47	2012-11-6	Show	GitHub Exploit DB Packet Storm

228476	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-6465	2013-01-7 16:46	2012-11-6	Show	GitHub Exploit DB Packet Storm

228477	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6464	2013-01-7 16:46	2012-11-6	Show	GitHub Exploit DB Packet Storm

228478	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6463	2013-01-7 16:42	2012-11-6	Show	GitHub Exploit DB Packet Storm

228479	5	警告	Opera Software ASA	-	Opera におけるページコンテンツの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6462	2013-01-7 16:41	2012-11-6	Show	GitHub Exploit DB Packet Storm

228480	5	警告	Opera Software ASA	-	Opera の HTTPS の実装における失効ステータスチェック結果が間違って表示される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6461	2013-01-7 16:37	2012-11-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195531	7.8	HIGH Local	fortinet	fortiproxy fortios	An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authe…	NVD-CWE-Other	CVE-2021-26110	2024-11-21 14:55	2021-12-8	Show	GitHub Exploit DB Packet Storm

195532	4.8	MEDIUM Network	taogogo	taocms	Taocms v2.5Beta5 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Management column.	CWE-79 Cross-site Scripting	CVE-2021-25785	2024-11-21 14:55	2021-12-3	Show	GitHub Exploit DB Packet Storm

195533	7.2	HIGH Network	taogogo	taocms	Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Edit Article.	CWE-89 SQL Injection	CVE-2021-25784	2024-11-21 14:55	2021-12-3	Show	GitHub Exploit DB Packet Storm

195534	7.2	HIGH Network	taogogo	taocms	Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Article Search.	CWE-89 SQL Injection	CVE-2021-25783	2024-11-21 14:55	2021-12-3	Show	GitHub Exploit DB Packet Storm

195535	5.4	MEDIUM Network	okfn	ckan	In CKAN, versions 2.9.0 to 2.9.3 are affected by a stored XSS vulnerability via SVG file upload of users’ profile picture. This allows low privileged application users to store malicious scripts in t…	CWE-79 Cross-site Scripting	CVE-2021-25967	2024-11-21 14:55	2021-12-1	Show	GitHub Exploit DB Packet Storm

195536	4.6	MEDIUM Local	hexo	hexo	Hexo versions 0.0.1 to 5.4.0 are vulnerable against stored XSS. The post “body” and “tags” don’t sanitize malicious javascript during web page generation. Local unprivileged attacker can inject arbit…	CWE-79 Cross-site Scripting	CVE-2021-25987	2024-11-21 14:55	2021-11-30	Show	GitHub Exploit DB Packet Storm

195537	5.4	MEDIUM Network	django-wiki_project	django-wiki	In Django-wiki, versions 0.0.20 to 0.7.8 are vulnerable to Stored Cross-Site Scripting (XSS) in Notifications Section. An attacker who has access to edit pages can inject JavaScript payload in the ti…	CWE-79 Cross-site Scripting	CVE-2021-25986	2024-11-21 14:55	2021-11-24	Show	GitHub Exploit DB Packet Storm

195538	5.5	MEDIUM Local	philips	mri_3t_firmware mri_1.5t_firmware	Philips MRI 1.5T and MRI 3T Version 5.x.x assigns an owner who is outside the intended control sphere to a resource.	-	CVE-2021-26248	2024-11-21 14:55	2021-11-20	Show	GitHub Exploit DB Packet Storm

195539	9.8	CRITICAL Network	darwin	factor	In Factor (App Framework & Headless CMS) v1.0.4 to v1.8.30, improperly invalidate a user’s session even after the user logs out of the application. In addition, user sessions are stored in the browse…	CWE-613 Insufficient Session Expiration	CVE-2021-25985	2024-11-21 14:55	2021-11-16	Show	GitHub Exploit DB Packet Storm

195540	6.1	MEDIUM Network	darwin	factor	In Factor (App Framework & Headless CMS) forum plugin, versions v1.3.3 to v1.8.30, are vulnerable to stored Cross-Site Scripting (XSS) at the “post reply” section. An unauthenticated attacker can exe…	CWE-79 Cross-site Scripting	CVE-2021-25984	2024-11-21 14:55	2021-11-16	Show	GitHub Exploit DB Packet Storm