Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258351	10	危険	Opera Software ASA	-	Opera における脆弱性	CWE-noinfo 情報不足	CVE-2010-2421	2010-09-27 16:18	2010-06-21	Show	GitHub Exploit DB Packet Storm

258352	4.3	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2121	2010-09-27 16:18	2010-06-1	Show	GitHub Exploit DB Packet Storm

258353	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1993	2010-09-27 16:17	2010-05-20	Show	GitHub Exploit DB Packet Storm

258354	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1989	2010-09-27 16:17	2010-05-20	Show	GitHub Exploit DB Packet Storm

258355	9.3	危険	Opera Software ASA	-	Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1728	2010-09-27 16:17	2010-04-30	Show	GitHub Exploit DB Packet Storm

258356	10	危険	Opera Software ASA	-	Opera における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1349	2010-09-27 16:17	2010-04-12	Show	GitHub Exploit DB Packet Storm

258357	5	警告	Opera Software ASA	-	Opera における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1310	2010-09-27 16:16	2010-03-22	Show	GitHub Exploit DB Packet Storm

258358	4.3	警告	Opera Software ASA	-	Opera における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0653	2010-09-27 16:16	2010-02-18	Show	GitHub Exploit DB Packet Storm

258359	10	危険	Opera Software ASA	-	Opera における脆弱性	CWE-noinfo 情報不足	CVE-2009-4072	2010-09-27 16:16	2009-11-23	Show	GitHub Exploit DB Packet Storm

258360	5.8	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-16 環境設定	CVE-2009-4071	2010-09-27 16:16	2009-11-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214021	9.8	CRITICAL Network	koa2-blog_project	koa2-blog	Sql injection vulnerability in koa2-blog 1.0.0 allows remote attackers to Injecting a malicious SQL statement via the name parameter to the signup page.	CWE-89 SQL Injection	CVE-2020-21180	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214022	9.8	CRITICAL Network	koa2-blog_project	koa2-blog	Sql injection vulnerability in koa2-blog 1.0.0 allows remote attackers to Injecting a malicious SQL statement via the name parameter to the signin page.	CWE-89 SQL Injection	CVE-2020-21179	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214023	9.8	CRITICAL Network	thinkjs	thinkjs	SQL injection vulnerability in the model.increment and model.decrement function in ThinkJS 3.2.10 allows remote attackers to execute arbitrary SQL commands via the step parameter.	CWE-89 SQL Injection	CVE-2020-21176	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214024	9.8	CRITICAL Network	cmswing	cmswing	An issue was found in CMSWing project version 1.3.8, Because the rechargeAction function does not check the balance parameter, malicious parameters can execute arbitrary SQL commands.	CWE-89 SQL Injection	CVE-2020-20296	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214025	9.8	CRITICAL Network	cmswing	cmswing	An issue was found in CMSWing project version 1.3.8. Because the updateAction function does not check the detail parameter, malicious parameters can execute arbitrary SQL commands.	CWE-89 SQL Injection	CVE-2020-20295	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214026	9.8	CRITICAL Network	cmswing	cmswing	An issue was found in CMSWing project version 1.3.8. Because the log function does not check the log parameter, malicious parameters can execute arbitrary commands.	CWE-89 SQL Injection	CVE-2020-20294	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214027	7.5	HIGH Network	yccms	yccms	Directory traversal vulnerability in the yccms 3.3 project. The delete, deletesite, and deleteAll functions' improper judgment of the request parameters, triggers a directory traversal vulnerability.	CWE-22 Path Traversal	CVE-2020-20290	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214028	9.8	CRITICAL Network	yccms	yccms	Sql injection vulnerability in the yccms 3.3 project. The no_top function's improper judgment of the request parameters, triggers a sql injection vulnerability.	CWE-89 SQL Injection	CVE-2020-20289	2024-11-21 14:12	2021-02-2	Show	GitHub Exploit DB Packet Storm

214029	4.8	MEDIUM Network	rockoa	rockoa	RockOA V1.9.8 is affected by a cross-site scripting (XSS) vulnerability which allows remote attackers to send malicious code to the administrator and execute JavaScript code, because webmain/flow/inp…	CWE-79 Cross-site Scripting	CVE-2020-21147	2024-11-21 14:12	2021-01-27	Show	GitHub Exploit DB Packet Storm

214030	6.1	MEDIUM Network	feehi	feehi_cms	Feehi CMS 2.0.8 is affected by a cross-site scripting (XSS) vulnerability. When the user name is inserted as JavaScript code, browsing the post will trigger the XSS.	CWE-79 Cross-site Scripting	CVE-2020-21146	2024-11-21 14:12	2021-01-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed