Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258391 7.5 危険 Opera Software ASA - Opera における http ページ上で危険な操作を実行させられる脆弱性 CWE-Other
その他 		CVE-2008-4198 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
258392 9.3 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4197 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
258393 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4196 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
258394 5 警告 Opera Software ASA - Opera における任意のアドレスの表示を誘発させられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4195 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
258395 6.8 警告 Opera Software ASA - Opera における HTTP セッションハイジャックの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3172 2010-09-27 16:01 2008-07-14 Show GitHub Exploit DB Packet Storm
258396 10 危険 Opera Software ASA - Windows 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-3079 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
258397 7.8 危険 Opera Software ASA - Opera における初期化されていないメモリコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-3078 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
258398 5 警告 Opera Software ASA - Opera における信頼されたフレームのコンテンツを偽装される脆弱性 CWE-DesignError
CVE-2008-2716 2010-09-27 16:00 2008-06-16 Show GitHub Exploit DB Packet Storm
258399 5 警告 Opera Software ASA - Opera におけるクロスドメインの脆弱性 CWE-200
情報漏えい 		CVE-2008-2715 2010-09-27 16:00 2008-06-16 Show GitHub Exploit DB Packet Storm
258400 5 警告 Opera Software ASA - Opera における Web ページのアドレスを偽装される脆弱性 CWE-DesignError
CVE-2008-2714 2010-09-27 15:59 2008-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268001 8.6 HIGH
Network 		ibm websphere_cast_iron_solution IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vul… CWE-20
 Improper Input Validation  		CVE-2016-9692 2024-11-21 12:01 2017-05-6 Show GitHub Exploit DB Packet Storm
268002 8.6 HIGH
Network 		ibm websphere_cast_iron_solution IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could explo… CWE-611
XXE 		CVE-2016-9691 2024-11-21 12:01 2017-05-6 Show GitHub Exploit DB Packet Storm
268003 8.1 HIGH
Network 		ibm rational_rhapsody_design_manager
rational_quality_manager
rational_engineering_lifecycle_manager
rational_software_architect_design_manager
rational_collaborative_lifecycle_management
 IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose… CWE-611
XXE 		CVE-2016-9707 2024-11-21 12:01 2017-04-1 Show GitHub Exploit DB Packet Storm
268004 4.7 MEDIUM
Network 		brave browser Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allowing attackers to trick a victim by displaying a malicious page for legitimate … CWE-79
Cross-site Scripting 		CVE-2016-9473 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268005 5.4 MEDIUM
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected XSS. The Revive Adserver web installer scripts were vulnerable to a reflected XSS attack via the dbHost, dbUser, and possibly other param… CWE-79
Cross-site Scripting 		CVE-2016-9472 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268006 9.0 CRITICAL
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected File Download. `www/delivery/asyncspc.php` was vulnerable to the fairly new Reflected File Download (RFD) web attack vector that enables … CWE-254
 7PK - Security Features 		CVE-2016-9470 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268007 5.3 MEDIUM
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. The exception message displayed on the DAV endpoints contained partiall… CWE-284
Improper Access Control 		CVE-2016-9468 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268008 3.1 LOW
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. Usernames weren't properly sanitised when creating users on a Revive Adserver instance. Especially, control characters w… NVD-CWE-Other
CVE-2016-9471 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268009 8.2 HIGH
Network 		gitlab gitlab Multiple versions of GitLab expose a dangerous method to any authenticated user that could lead to the deletion of all Issue and MergeRequest objects on a GitLab instance. For GitLab instances with p… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9469 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
268010 5.3 MEDIUM
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. The location bar in the files app was not verifying the passed parame… CWE-284
Improper Access Control 		CVE-2016-9467 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm