Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255901	4.3	警告	Opera Software ASA	-	Windows 上で稼働する Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-5428	2010-09-27 16:07	2008-12-11	Show	GitHub Exploit DB Packet Storm

255902	4.3	警告	Opera Software ASA	-	Opera の Opera.dll におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4725	2010-09-27 16:07	2008-10-23	Show	GitHub Exploit DB Packet Storm

255903	5.8	警告	Opera Software ASA	-	Opera における新規フィードの購読を作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4698	2010-09-27 16:05	2008-10-23	Show	GitHub Exploit DB Packet Storm

255904	10	危険	Opera Software ASA	-	Windows 上で稼働する Opera における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-4293	2010-09-27 16:05	2008-09-27	Show	GitHub Exploit DB Packet Storm

255905	10	危険	Opera Software ASA	-	Opera における CRL の更新時の処理に関する脆弱性	CWE-255 CWE-noinfo	CVE-2008-4292	2010-09-27 16:04	2008-09-27	Show	GitHub Exploit DB Packet Storm

255906	6.4	警告	Opera Software ASA	-	Opera における Web スクリプトを含むページの URL をアドレスフィールドに表示される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4200	2010-09-27 16:04	2008-09-27	Show	GitHub Exploit DB Packet Storm

255907	5	警告	Opera Software ASA	-	Opera におけるローカルファイル名の有効性を判別される脆弱性	CWE-200 情報漏えい	CVE-2008-4199	2010-09-27 16:04	2008-09-27	Show	GitHub Exploit DB Packet Storm

255908	7.5	危険	Opera Software ASA	-	Opera における http ページ上で危険な操作を実行させられる脆弱性	CWE-Other その他	CVE-2008-4198	2010-09-27 16:03	2008-09-27	Show	GitHub Exploit DB Packet Storm

255909	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-4197	2010-09-27 16:03	2008-09-27	Show	GitHub Exploit DB Packet Storm

255910	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4196	2010-09-27 16:02	2008-09-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196701	6.1	MEDIUM Network	aterm	wg2600hp_firmware	Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2021-20620	2024-11-21 14:46	2021-01-28	Show	GitHub Exploit DB Packet Storm

196702	5.4	MEDIUM Network	ibm	rational_quality_manager rhapsody_design_manager rational_engineering_lifecycle_manager rhapsody_model_manager engineering_workflow_management collaborative_lifecycle_management eng…	IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential…	CWE-79 Cross-site Scripting	CVE-2021-20357	2024-11-21 14:46	2021-01-28	Show	GitHub Exploit DB Packet Storm

196703	8.1	HIGH Network	fasterxml netapp apache debian oracle	jackson-databind oncommand_insight service_level_manager oncommand_api_services active_iq_unified_manager nifi debian_linux commerce_guided_search_and_experience_manager	A flaw was found in jackson-databind before 2.9.10.7. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidential…	-	CVE-2021-20190	2024-11-21 14:46	2021-01-20	Show	GitHub Exploit DB Packet Storm

196704	6.1	MEDIUM Network	weseek	growi	Cross-site scripting vulnerability in GROWI (v4.2 Series) versions prior to v4.2.3 allows remote attackers to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2021-20619	2024-11-21 14:46	2021-01-19	Show	GitHub Exploit DB Packet Storm

196705	9.8	CRITICAL Network	acmailer	acmailer_db acmailer	Privilege chaining vulnerability in acmailer ver. 4.0.2 and earlier, and acmailer DB ver. 1.1.4 and earlier allows remote attackers to bypass authentication and to gain an administrative privilege wh…	CWE-269 Improper Privilege Management	CVE-2021-20618	2024-11-21 14:46	2021-01-14	Show	GitHub Exploit DB Packet Storm

196706	9.8	CRITICAL Network	acmailer	acmailer acmailer_db	Improper access control vulnerability in acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1.1.3 and earlier allows remote attackers to execute an arbitrary OS command, or gain an administrative …	NVD-CWE-Other	CVE-2021-20617	2024-11-21 14:46	2021-01-14	Show	GitHub Exploit DB Packet Storm

196707	7.8	HIGH Local	skygroup	skysea_client_view	Untrusted search path vulnerability in the installer of SKYSEA Client View Ver.1.020.05b to Ver.16.001.01g allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-427 Uncontrolled Search Path Element	CVE-2021-20616	2024-11-21 14:46	2021-01-13	Show	GitHub Exploit DB Packet Storm

196708	7.5	HIGH Network	sonicwall	global_management_system	SonicWall GMS is vulnerable to file path manipulation resulting that an unauthenticated attacker can gain access to web directory containing application's binaries and configuration files.	CWE-22 Path Traversal	CVE-2021-20030	2024-11-21 14:45	2022-10-13	Show	GitHub Exploit DB Packet Storm

196709	7.8	HIGH Local	sonicwall	global_vpn_client	SonicWall Global VPN Client 4.10.7.1117 installer (32-bit and 64-bit) and earlier versions have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation …	CWE-427 Uncontrolled Search Path Element	CVE-2021-20051	2024-11-21 14:45	2022-05-5	Show	GitHub Exploit DB Packet Storm

196710	7.8	HIGH Local	qualcomm	ar8035_firmware csr8811_firmware ipq6000_firmware ipq6005_firmware ipq6010_firmware ipq6018_firmware ipq6028_firmware qca4024_firmware qca6390_firmware qca6391_firmware …	Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapd…	CWE-287 Improper Authentication	CVE-2021-1950	2024-11-21 14:45	2022-04-1	Show	GitHub Exploit DB Packet Storm