Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252851	5	警告	Opera Software ASA	-	Opera におけるクロスドメインの脆弱性	CWE-200 情報漏えい	CVE-2008-2715	2010-09-27 16:00	2008-06-16	Show	GitHub Exploit DB Packet Storm

252852	5	警告	Opera Software ASA	-	Opera における Web ページのアドレスを偽装される脆弱性	CWE-DesignError	CVE-2008-2714	2010-09-27 15:59	2008-06-16	Show	GitHub Exploit DB Packet Storm

252853	9.3	危険	Opera Software ASA	-	Opera におけるパスワード入力時のキーボードハンドリングの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2008-1764	2010-09-27 15:59	2008-04-12	Show	GitHub Exploit DB Packet Storm

252854	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-1762	2010-09-27 15:58	2008-04-12	Show	GitHub Exploit DB Packet Storm

252855	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-1761	2010-09-27 15:58	2008-04-12	Show	GitHub Exploit DB Packet Storm

252856	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングを誘導される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1082	2010-09-27 15:57	2008-02-29	Show	GitHub Exploit DB Packet Storm

252857	6.8	警告	Opera Software ASA	-	Opera における任意のスクリプトを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1081	2010-09-27 15:57	2008-02-29	Show	GitHub Exploit DB Packet Storm

252858	6.8	警告	Opera Software ASA	-	Opera における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2008-1080	2010-09-27 15:55	2008-02-29	Show	GitHub Exploit DB Packet Storm

252859	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer におけるファイルのアクセス制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-3002	2010-09-21 14:11	2010-08-26	Show	GitHub Exploit DB Packet Storm

252860	9.3	危険	リアルネットワークス	-	Windows 上で稼働する RealNetworks RealPlayer の ParseKnownType 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-3000	2010-09-21 14:11	2010-08-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271631	-	avigilon	avigilon_control_center	Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before 4.12.0.54 and 5 before 5.4.2.22 allows remote attackers to read arbitrary files via a crafted help/ URL.	CWE-22 Path Traversal	CVE-2015-2860	2024-11-21 11:28	2015-06-24	Show	GitHub Exploit DB Packet Storm

271632	-	haxx hp oracle	curl libcurl system_management_homepage enterprise_manager_ops_center glassfish_server	The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and cra…	CWE-20 Improper Input Validation	CVE-2015-3237	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271633	-	haxx	curl libcurl	cURL and libcurl 7.40.0 through 7.42.1 send the HTTP Basic authentication credentials for a previous connection when reusing a reset (curl_easy_reset) connection handle to send a request to the same …	CWE-200 Information Exposure	CVE-2015-3236	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271634	-	drupal debian	drupal debian_linux	The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows remote attackers to log into other users' accounts by leveraging an OpenID identity from certain providers, as demonstrated by t…	CWE-20 Improper Input Validation	CVE-2015-3234	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271635	-	drupal	drupal	Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.	NVD-CWE-Other	CVE-2015-3233	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271636	-	drupal debian	drupal debian_linux	Open redirect vulnerability in the Field UI module in Drupal 7.x before 7.38 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination…	NVD-CWE-Other	CVE-2015-3232	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271637	-	drupal debian	drupal debian_linux	The Render cache system in Drupal 7.x before 7.38, when used to cache content by user role, allows remote authenticated users to obtain private content viewed by user 1 by reading the cache.	CWE-200 Information Exposure	CVE-2015-3231	2024-11-21 11:28	2015-06-23	Show	GitHub Exploit DB Packet Storm

271638	-	airties	air_firmware	Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2797	2024-11-21 11:28	2015-06-19	Show	GitHub Exploit DB Packet Storm

271639	-	vestacp	vesta_control_panel	Cross-site request forgery (CSRF) vulnerability in Vesta Control Panel before 0.9.8-14 allows remote attackers to hijack the authentication of arbitrary users.	CWE-352 Origin Validation Error	CVE-2015-2861	2024-11-21 11:28	2015-06-18	Show	GitHub Exploit DB Packet Storm

271640	-	akronymmanager_project	akronymmanager	SQL injection vulnerability in mod1/index.php in the Akronymmanager (sb_akronymmanager) extension before 7.0.0 for TYPO3 allows remote authenticated users with permission to maintain acronyms to exec…	CWE-89 SQL Injection	CVE-2015-2803	2024-11-21 11:28	2015-06-18	Show	GitHub Exploit DB Packet Storm