Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252841 6.4 警告 Opera Software ASA - Opera における Web スクリプトを含むページの URL をアドレスフィールドに表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4200 2010-09-27 16:04 2008-09-27 Show GitHub Exploit DB Packet Storm
252842 5 警告 Opera Software ASA - Opera におけるローカルファイル名の有効性を判別される脆弱性 CWE-200
情報漏えい 		CVE-2008-4199 2010-09-27 16:04 2008-09-27 Show GitHub Exploit DB Packet Storm
252843 7.5 危険 Opera Software ASA - Opera における http ページ上で危険な操作を実行させられる脆弱性 CWE-Other
その他 		CVE-2008-4198 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
252844 9.3 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4197 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
252845 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4196 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
252846 5 警告 Opera Software ASA - Opera における任意のアドレスの表示を誘発させられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4195 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
252847 6.8 警告 Opera Software ASA - Opera における HTTP セッションハイジャックの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3172 2010-09-27 16:01 2008-07-14 Show GitHub Exploit DB Packet Storm
252848 10 危険 Opera Software ASA - Windows 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-3079 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
252849 7.8 危険 Opera Software ASA - Opera における初期化されていないメモリコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-3078 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
252850 5 警告 Opera Software ASA - Opera における信頼されたフレームのコンテンツを偽装される脆弱性 CWE-DesignError
CVE-2008-2716 2010-09-27 16:00 2008-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289441 - adobe flash_player
air
air_sdk 		Buffer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5676 2024-11-21 10:45 2012-12-12 Show GitHub Exploit DB Packet Storm
289442 - adobe coldfusion Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5675 2024-11-21 10:45 2012-12-12 Show GitHub Exploit DB Packet Storm
289443 - zohocorp manageengine_assetexplorer Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine AssetExplorer 5.6 before service pack 5614 allow remote attackers to inject arbitrary web script or HTML via fields in XML asset da… CWE-79
Cross-site Scripting 		CVE-2012-5956 2024-11-21 10:45 2012-12-11 Show GitHub Exploit DB Packet Storm
289444 - google android The Browser application in Android 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted market: URI in the SRC attribute of an IFRAME element. CWE-20
 Improper Input Validation  		CVE-2012-6301 2024-11-21 10:45 2012-12-11 Show GitHub Exploit DB Packet Storm
289445 - ca xcom_data_transport CA XCOM Data Transport r11.0 and r11.5 on UNIX and Linux allows remote attackers to execute arbitrary commands via a crafted request. CWE-94
Code Injection 		CVE-2012-5973 2024-11-21 10:45 2012-12-11 Show GitHub Exploit DB Packet Storm
289446 - isc
canonical 		bind
ubuntu_linux 		ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. CWE-20
 Improper Input Validation  		CVE-2012-5688 2024-11-21 10:45 2012-12-6 Show GitHub Exploit DB Packet Storm
289447 - wireshark wireshark The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infi… CWE-20
 Improper Input Validation  		CVE-2012-6062 2024-11-21 10:45 2012-12-5 Show GitHub Exploit DB Packet Storm
289448 - wireshark wireshark The dissect_wtp_common function in epan/dissectors/packet-wtp.c in the WTP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data type for a certain length field, wh… CWE-189
Numeric Errors 		CVE-2012-6061 2024-11-21 10:45 2012-12-5 Show GitHub Exploit DB Packet Storm
289449 - wireshark wireshark Integer overflow in the dissect_iscsi_pdu function in epan/dissectors/packet-iscsi.c in the iSCSI dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a … CWE-189
Numeric Errors 		CVE-2012-6060 2024-11-21 10:45 2012-12-5 Show GitHub Exploit DB Packet Storm
289450 - wireshark wireshark The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data structure to determine IKEv2 decr… CWE-20
 Improper Input Validation  		CVE-2012-6059 2024-11-21 10:45 2012-12-5 Show GitHub Exploit DB Packet Storm