Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255881	4.3	警告	Opera Software ASA	-	Opera における URL を偽装される脆弱性	CWE-Other その他	CVE-2009-3047	2010-09-27 16:15	2009-09-1	Show	GitHub Exploit DB Packet Storm

255882	5	警告	Opera Software ASA	-	Opera における証明書チェーンの有効性を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3046	2010-09-27 16:15	2009-09-1	Show	GitHub Exploit DB Packet Storm

255883	5	警告	Opera Software ASA	-	Opera における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3045	2010-09-27 16:15	2009-09-1	Show	GitHub Exploit DB Packet Storm

255884	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3831	2010-09-27 16:14	2009-10-28	Show	GitHub Exploit DB Packet Storm

255885	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3269	2010-09-27 16:14	2009-09-18	Show	GitHub Exploit DB Packet Storm

255886	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3266	2010-09-27 16:14	2009-09-18	Show	GitHub Exploit DB Packet Storm

255887	4.3	警告	Opera Software ASA	-	Opera におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3265	2010-09-27 16:14	2009-09-18	Show	GitHub Exploit DB Packet Storm

255888	5	警告	Opera Software ASA	-	Opera の X.509 証明書における SSLサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3044	2010-09-27 16:13	2009-09-1	Show	GitHub Exploit DB Packet Storm

255889	4.3	警告	Opera Software ASA	-	Opera における data: URI をブロックしない脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3013	2010-09-27 16:13	2009-08-31	Show	GitHub Exploit DB Packet Storm

255890	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2577	2010-09-27 16:12	2009-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253951	5.3	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows attackers to add DEBUG lines to the logs via a REST API version 3 logging endpoint.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-18896	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253952	5.3	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows attackers to obtain sensitive information (user statuses) via a REST API version 4 endpoint.	CWE-200 Information Exposure	CVE-2017-18895	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253953	8.1	HIGH Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. Sometimes. resource-owner authorization is bypassed, allowing account takeover.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-18894	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253954	6.1	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. Display names allow XSS.	CWE-79 Cross-site Scripting	CVE-2017-18893	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253955	6.1	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. E-mail templates can have a field in which HTML content is not neutralized.	CWE-116 Improper Encoding or Escaping of Output	CVE-2017-18892	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253956	6.1	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows Phishing because an error page can have a link.	CWE-601 Open Redirect	CVE-2017-18891	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253957	4.3	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows an attacker to create a button that, when pressed by a user, launches an API request.	CWE-20 Improper Input Validation	CVE-2017-18890	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253958	4.3	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. An attacker could create fictive system-message posts via webhooks and slash commands, in the v3 or v4 REST API.	CWE-20 Improper Input Validation	CVE-2017-18889	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253959	9.8	CRITICAL Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows SQL injection during the fetching of multiple posts.	CWE-89 SQL Injection	CVE-2017-18888	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm

253960	5.3	MEDIUM Network	mattermost	mattermost_server	An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It discloses the team creator's e-mail address to members.	CWE-200 Information Exposure	CVE-2017-18887	2024-11-21 12:21	2020-06-20	Show	GitHub Exploit DB Packet Storm