Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
260311 6.4 警告 Opera Software ASA - Opera における Web スクリプトを含むページの URL をアドレスフィールドに表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4200 2010-09-27 16:04 2008-09-27 Show GitHub Exploit DB Packet Storm
260312 5 警告 Opera Software ASA - Opera におけるローカルファイル名の有効性を判別される脆弱性 CWE-200
情報漏えい 		CVE-2008-4199 2010-09-27 16:04 2008-09-27 Show GitHub Exploit DB Packet Storm
260313 7.5 危険 Opera Software ASA - Opera における http ページ上で危険な操作を実行させられる脆弱性 CWE-Other
その他 		CVE-2008-4198 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
260314 9.3 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4197 2010-09-27 16:03 2008-09-27 Show GitHub Exploit DB Packet Storm
260315 4.3 警告 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4196 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
260316 5 警告 Opera Software ASA - Opera における任意のアドレスの表示を誘発させられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4195 2010-09-27 16:02 2008-09-27 Show GitHub Exploit DB Packet Storm
260317 6.8 警告 Opera Software ASA - Opera における HTTP セッションハイジャックの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3172 2010-09-27 16:01 2008-07-14 Show GitHub Exploit DB Packet Storm
260318 10 危険 Opera Software ASA - Windows 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-3079 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
260319 7.8 危険 Opera Software ASA - Opera における初期化されていないメモリコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-3078 2010-09-27 16:01 2008-07-9 Show GitHub Exploit DB Packet Storm
260320 5 警告 Opera Software ASA - Opera における信頼されたフレームのコンテンツを偽装される脆弱性 CWE-DesignError
CVE-2008-2716 2010-09-27 16:00 2008-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247191 5.9 MEDIUM
Network 		qnap helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this improper certificate validation vulnerability could allow an attacker to spoof a trusted entity by inte… CWE-295
Improper Certificate Validation  		CVE-2018-19946 2024-11-21 12:58 2020-09-12 Show GitHub Exploit DB Packet Storm
247192 5.3 MEDIUM
Network 		kde kde_applications messagepartthemes/default/defaultrenderer.cpp in messagelib in KDE Applications before 18.12.0 does not properly restrict the handling of an http-equiv="REFRESH" value. CWE-20
 Improper Input Validation  		CVE-2018-19516 2024-11-21 12:58 2020-03-13 Show GitHub Exploit DB Packet Storm
247193 8.8 HIGH
Network 		fleetco fleet_maintenance_management Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uploading an arbitrary ".php" file with the application/x-php Content-Type to the accidents_add.php?submit=1 URI, as demonstrated by … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-19798 2024-11-21 12:58 2020-03-3 Show GitHub Exploit DB Packet Storm
247194 5.4 MEDIUM
Network 		evernote yinxiang_biji The Markdown editor in YXBJ before 8.3.2 on macOS has stored XSS. This behavior may be encountered by some Evernote users; however, it is a vulnerability in YXBJ, not a vulnerability in Evernote. CWE-79
Cross-site Scripting 		CVE-2018-19658 2024-11-21 12:58 2020-03-3 Show GitHub Exploit DB Packet Storm
247195 5.4 MEDIUM
Network 		monstra monstra_cms Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product. CWE-79
Cross-site Scripting 		CVE-2018-19599 2024-11-21 12:58 2020-03-3 Show GitHub Exploit DB Packet Storm
247196 7.5 HIGH
Network 		bombba_project bombba The quaker function of a smart contract implementation for BOMBBA (BOMB), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check t… CWE-287
Improper Authentication 		CVE-2018-19834 2024-11-21 12:58 2020-01-1 Show GitHub Exploit DB Packet Storm
247197 7.5 HIGH
Network 		ddq_project ddq The owned function of a smart contract implementation for DDQ, an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's… CWE-287
Improper Authentication 		CVE-2018-19833 2024-11-21 12:58 2020-01-1 Show GitHub Exploit DB Packet Storm
247198 7.5 HIGH
Network 		newinteltechmedia_project newinteltechmedia The NETM() function of a smart contract implementation for NewIntelTechMedia (NETM), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does … CWE-287
Improper Authentication 		CVE-2018-19832 2024-11-21 12:58 2020-01-1 Show GitHub Exploit DB Packet Storm
247199 7.5 HIGH
Network 		cryptbond_network_project cryptbond_network The ToOwner() function of a smart contract implementation for Cryptbond Network (CBN), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function doe… CWE-287
Improper Authentication 		CVE-2018-19831 2024-11-21 12:58 2020-01-1 Show GitHub Exploit DB Packet Storm
247200 7.5 HIGH
Network 		business_alliance_financial_circle_project business_alliance_financial_circle The UBSexToken() function of a smart contract implementation for Business Alliance Financial Circle (BAFC), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, bec… CWE-862
 Missing Authorization 		CVE-2018-19830 2024-11-21 12:58 2020-01-1 Show GitHub Exploit DB Packet Storm