Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252791 4.3 警告 Opera Software ASA - Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2664 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252792 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2663 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252793 4.3 警告 Opera Software ASA - Opera におけるポップアップブロッカーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2662 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252794 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2661 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
252795 4.3 警告 Opera Software ASA - Opera における IDN ドメインになりすまされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2660 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
252796 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2659 2010-09-27 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
252797 4.3 警告 Opera Software ASA - Opera における任意のファイルのアップロードを誘発させられる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2658 2010-09-27 16:19 2010-07-1 Show GitHub Exploit DB Packet Storm
252798 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2657 2010-09-27 16:18 2010-07-1 Show GitHub Exploit DB Packet Storm
252799 6.8 警告 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2576 2010-09-27 16:18 2010-08-12 Show GitHub Exploit DB Packet Storm
252800 4.3 警告 Opera Software ASA - Opera におけるアドレスバーの処理に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2455 2010-09-27 16:18 2010-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249321 6.1 MEDIUM
Network 		bestwebsoft social_login The social-login-bws plugin before 0.2 for WordPress has multiple XSS issues. CWE-79
Cross-site Scripting 		CVE-2017-18501 2024-11-21 12:20 2019-08-13 Show GitHub Exploit DB Packet Storm
249322 6.1 MEDIUM
Network 		bestwebsoft social_buttons_pack The social-buttons-pack plugin before 1.1.1 for WordPress has multiple XSS issues. CWE-79
Cross-site Scripting 		CVE-2017-18500 2024-11-21 12:20 2019-08-13 Show GitHub Exploit DB Packet Storm
249323 6.1 MEDIUM
Network 		simple-membership-plugin simple_membership The simple-membership plugin before 3.5.7 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2017-18499 2024-11-21 12:20 2019-08-13 Show GitHub Exploit DB Packet Storm
249324 6.1 MEDIUM
Network 		3cx live_chat The wp-live-chat-support plugin before 7.1.03 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2017-18508 2024-11-21 12:20 2019-08-13 Show GitHub Exploit DB Packet Storm
249325 6.1 MEDIUM
Network 		wpovernight woocommerce_pdf_invoices\&_packing_slips The woocommerce-pdf-invoices-packing-slips plugin before 2.0.13 for WordPress has XSS via the tab or section variable on settings screens. CWE-79
Cross-site Scripting 		CVE-2017-18506 2024-11-21 12:20 2019-08-13 Show GitHub Exploit DB Packet Storm
249326 7.2 HIGH
Network 		jitbit helpdesk Jitbit Helpdesk before 9.0.3 allows remote attackers to escalate privileges because of mishandling of the User/AutoLogin userHash parameter. By inspecting the token value provided in a password reset… CWE-332
 Insufficient Entropy in PRNG 		CVE-2017-18486 2024-11-21 12:20 2019-08-10 Show GitHub Exploit DB Packet Storm
249327 5.4 MEDIUM
Network 		elementalpath cognitoys_dino_firmware Cognitoys Dino devices allow profiles_add.html CSRF. CWE-352
 Origin Validation Error 		CVE-2017-18485 2024-11-21 12:20 2019-08-9 Show GitHub Exploit DB Packet Storm
249328 6.1 MEDIUM
Network 		elementalpath cognitoys_dino_firmware Cognitoys Dino devices allow XSS via the SSID. CWE-79
Cross-site Scripting 		CVE-2017-18484 2024-11-21 12:20 2019-08-9 Show GitHub Exploit DB Packet Storm
249329 6.1 MEDIUM
Network 		annke sp1_firmware ANNKE SP1 HD wireless camera 3.4.1.1604071109 devices allow XSS via a crafted SSID. CWE-79
Cross-site Scripting 		CVE-2017-18483 2024-11-21 12:20 2019-08-7 Show GitHub Exploit DB Packet Storm
249330 6.5 MEDIUM
Network 		cpanel cpanel cPanel before 62.0.4 allows resellers to use the WHM enqueue_transfer_item API for queueing non-rearrange modules (SEC-213). CWE-20
 Improper Input Validation  		CVE-2017-18482 2024-11-21 12:20 2019-08-5 Show GitHub Exploit DB Packet Storm