Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219331 4.3 警告 Kennziffer.com - TYPO3 用 Faceted Search エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5307 2013-08-20 14:30 2013-08-5 Show GitHub Exploit DB Packet Storm
219332 7.5 危険 Die Netzmacher - TYPO3 用 Browser - TYPO3 without PHP エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5306 2013-08-20 14:20 2013-08-5 Show GitHub Exploit DB Packet Storm
219333 4.3 警告 Joachim Ruhs - TYPO3 用 Store Locator エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5305 2013-08-20 14:12 2013-08-5 Show GitHub Exploit DB Packet Storm
219334 7.5 危険 Joachim Ruhs - TYPO3 用 Store Locator エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5304 2013-08-20 14:08 2013-08-5 Show GitHub Exploit DB Packet Storm
219335 10 危険 Joachim Ruhs - TYPO3 用 Store Locator エクステンションにおける脆弱性 CWE-noinfo
情報不足 		CVE-2013-5303 2013-08-20 13:54 2013-08-5 Show GitHub Exploit DB Packet Storm
219336 7.5 危険 Kennziffer.com - TYPO3 用 Faceted Search エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5302 2013-08-20 13:46 2013-08-5 Show GitHub Exploit DB Packet Storm
219337 7.8 危険 TrustPort - Trustport Webfilter の help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5301 2013-08-20 13:39 2013-07-30 Show GitHub Exploit DB Packet Storm
219338 3.5 注意 サイボウズ - サイボウズ メールワイズにおける情報漏えいの脆弱性 CWE-noinfo
情報不足 		CVE-2013-4698 2013-08-20 11:36 2013-08-13 Show GitHub Exploit DB Packet Storm
219339 4.3 警告 WordPress.org - WordPress の SWFUpload のデフォルト設定における同一生成元ポリシーを回避される脆弱性 CWE-16
CWE-79
CVE-2013-2205 2013-08-19 18:03 2013-06-21 Show GitHub Exploit DB Packet Storm
219340 4.3 警告 Moxiecode Systems AB
WordPress.org		 - WordPress の TinyMCE Media プラグインで使用される Moxiecode moxieplayer における Flash アプリケーションに任意のパラメータを渡される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2204 2013-08-19 18:02 2013-06-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308671 - php php PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote attackers to read and write files owned by the web server UID by uploading a PHP script that uses the error_log function to access the files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2001-1247 2012-06-25 13:00 2001-12-6 Show GitHub Exploit DB Packet Storm
308672 - perforce perforce_server Directory traversal vulnerability in Perforce Server 2008.1 allows remote authenticated users to create arbitrary files via a .. (dot dot) in the argument to the "p4 add" command. CWE-22
Path Traversal 		CVE-2010-0933 2012-06-15 13:00 2010-03-6 Show GitHub Exploit DB Packet Storm
308673 - opera opera_browser Unspecified vulnerability in Opera before 9.24 allows remote attackers to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors. CWE-20
 Improper Input Validation  		CVE-2007-5540 2012-06-8 06:14 2007-10-18 Show GitHub Exploit DB Packet Storm
308674 - opera opera_browser Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handl… CWE-79
Cross-site Scripting 		CVE-2008-1082 2012-06-8 03:06 2008-02-29 Show GitHub Exploit DB Packet Storm
308675 - opera opera_browser Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties. CWE-94
Code Injection 		CVE-2008-1081 2012-06-8 03:02 2008-02-29 Show GitHub Exploit DB Packet Storm
308676 - opera opera_browser Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input. CWE-20
 Improper Input Validation  		CVE-2008-1080 2012-06-8 02:58 2008-02-29 Show GitHub Exploit DB Packet Storm
308677 - opera opera_browser Opera before 9.63 does not block unspecified "scripted URLs" during the feed preview, which allows remote attackers to read existing subscriptions and force subscriptions to arbitrary feed URLs. NVD-CWE-Other
CVE-2008-5681 2012-06-8 02:24 2008-12-20 Show GitHub Exploit DB Packet Storm
308678 - opera opera_browser Cross-site scripting (XSS) vulnerability in Opera before 9.63 allows remote attackers to inject arbitrary web script or HTML via built-in XSLT templates. CWE-79
Cross-site Scripting 		CVE-2008-5682 2012-06-8 02:22 2008-12-20 Show GitHub Exploit DB Packet Storm
308679 - opera opera_browser Unspecified vulnerability in Opera before 9.63 allows remote attackers to "reveal random data" via unknown vectors. NVD-CWE-noinfo
CWE-200
Information Exposure 		CVE-2008-5683 2012-06-8 02:18 2008-12-20 Show GitHub Exploit DB Packet Storm
308680 - opera opera_browser Opera displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a b… CWE-287
Improper Authentication 		CVE-2009-2070 2012-06-8 01:12 2009-06-16 Show GitHub Exploit DB Packet Storm