Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252791 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2666 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
252792 4.3 警告 Opera Software ASA - Opera における URI の処理に関するクロスサイトスクリプティングの脆弱性\ CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2665 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
252793 4.3 警告 Opera Software ASA - Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2664 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252794 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2663 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252795 4.3 警告 Opera Software ASA - Opera におけるポップアップブロッカーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2662 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
252796 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2661 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
252797 4.3 警告 Opera Software ASA - Opera における IDN ドメインになりすまされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2660 2010-09-27 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
252798 4.3 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2659 2010-09-27 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
252799 4.3 警告 Opera Software ASA - Opera における任意のファイルのアップロードを誘発させられる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2658 2010-09-27 16:19 2010-07-1 Show GitHub Exploit DB Packet Storm
252800 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2657 2010-09-27 16:18 2010-07-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267661 7.8 HIGH
Local 		amd fglrx-driver AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. CWE-59
Link Following 		CVE-2015-7723 2024-11-21 11:37 2017-06-7 Show GitHub Exploit DB Packet Storm
267662 7.2 HIGH
Network 		yeager yeager_cms Multiple server-side request forgery (SSRF) vulnerabilities in Yeager CMS 1.2.1 allow remote attackers to trigger outbound requests and enumerate open ports via the dbhost parameter to libs/org/adodb… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2015-7570 2024-11-21 11:37 2017-04-25 Show GitHub Exploit DB Packet Storm
267663 8.8 HIGH
Network 		yeager yeager_cms SQL injection vulnerability in "yeager/y.php/tab_USERLIST" in Yeager CMS 1.2.1 allows local users to execute arbitrary SQL commands via the "pagedir_orderby" parameter. CWE-89
SQL Injection 		CVE-2015-7569 2024-11-21 11:37 2017-04-25 Show GitHub Exploit DB Packet Storm
267664 9.8 CRITICAL
Network 		yeager yeager_cms SQL injection vulnerability in the password recovery feature in Yeager CMS 1.2.1 allows remote attackers to change the account credentials of known users via the "userEmail" parameter. CWE-89
SQL Injection 		CVE-2015-7568 2024-11-21 11:37 2017-04-25 Show GitHub Exploit DB Packet Storm
267665 5.5 MEDIUM
Local 		huawei p7_firmware
p8_ale-ul00_firmware 		Huawei P7 before P7-L00C17B851, P7-L05C00B851, and P7-L09C92B851 and P8 ALE-UL00 before ALE-UL00B211 allows local users to cause a denial of service (OS crash) via vectors involving an application th… CWE-20
 Improper Input Validation  		CVE-2015-7740 2024-11-21 11:37 2017-04-13 Show GitHub Exploit DB Packet Storm
267666 8.8 HIGH
Network 		samsung galaxy_s6 SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript. CWE-20
 Improper Input Validation  		CVE-2015-7893 2024-11-21 11:37 2017-04-12 Show GitHub Exploit DB Packet Storm
267667 9.8 CRITICAL
Network 		botan_project botan botan 1.11.x before 1.11.22 improperly handles wildcard matching against hostnames, which might allow remote attackers to have unspecified impact via a valid X.509 certificate, as demonstrated by acc… CWE-295
Improper Certificate Validation  		CVE-2015-7826 2024-11-21 11:37 2017-04-11 Show GitHub Exploit DB Packet Storm
267668 7.5 HIGH
Network 		botan_project botan botan before 1.11.22 improperly validates certificate paths, which allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a certificate with a loop in the cer… NVD-CWE-Other
CVE-2015-7825 2024-11-21 11:37 2017-04-11 Show GitHub Exploit DB Packet Storm
267669 7.5 HIGH
Network 		botan_project botan botan 1.11.x before 1.11.22 makes it easier for remote attackers to decrypt TLS ciphertext data via a padding-oracle attack against TLS CBC ciphersuites. CWE-200
Information Exposure 		CVE-2015-7824 2024-11-21 11:37 2017-04-11 Show GitHub Exploit DB Packet Storm
267670 5.5 MEDIUM
Local 		huawei e3272s_firmware Huawei MBB (Mobile Broadband) product E3272s with software versions earlier than E3272s-153TCPU-V200R002B491D09SP00C00 has a Denial of Service (DoS) vulnerability. An attacker could send a malicious … CWE-20
 Improper Input Validation  		CVE-2015-7847 2024-11-21 11:37 2017-04-3 Show GitHub Exploit DB Packet Storm