Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215791	7.5	危険	シスコシステムズ	-	Cisco OpenH264 の decode_slice.cpp における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-8002	2014-11-27 15:20	2014-11-24	Show	GitHub Exploit DB Packet Storm

215792	7.5	危険	シスコシステムズ	-	Cisco OpenH264 の decode.cpp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8001	2014-11-27 15:20	2014-11-24	Show	GitHub Exploit DB Packet Storm

215793	5	警告	Openswan	-	Openswan におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2037	2014-11-27 15:19	2014-02-21	Show	GitHub Exploit DB Packet Storm

215794	5	警告	シーメンス	-	複数のシーメンス製品における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-8552	2014-11-27 15:12	2014-11-21	Show	GitHub Exploit DB Packet Storm

215795	10	危険	シーメンス	-	複数のシーメンス製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-8551	2014-11-27 15:12	2014-11-21	Show	GitHub Exploit DB Packet Storm

215796	7.8	危険	Zoho Corporation	-	ManageEngine OpUtils の ConfigSaveServlet サーブレットにおけるファイルを公開される脆弱性	CWE-200 情報漏えい	CVE-2014-8678	2014-11-27 14:58	2014-11-21	Show	GitHub Exploit DB Packet Storm

215797	5	警告	シスコシステムズ	-	Network Convergence System 6000 デバイス上で稼働する Cisco IOS XR の lighttpd モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2014-8005	2014-11-27 14:53	2014-11-25	Show	GitHub Exploit DB Packet Storm

215798	6.5	警告	Jexperts	-	JExperts Channel Platform におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8558	2014-11-27 14:46	2014-10-27	Show	GitHub Exploit DB Packet Storm

215799	4.3	警告	IBM	-	IBM Web Experience Factory におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6196	2014-11-27 14:45	2014-11-12	Show	GitHub Exploit DB Packet Storm

215800	3.5	注意	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6093	2014-11-27 14:45	2014-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293801	-	tinymce moodle	spellchecker_php moodle	classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x be…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6112	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293802	-	moodle	moodle	calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2.4.1 omits a capability check, which allows remote authenticated users to remove course-level calen…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6106	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293803	-	moodle	moodle	blog/rsslib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 continues to provide a blog RSS feed after blogging is disabled, which allows remote atta…	CWE-200 Information Exposure	CVE-2012-6105	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293804	-	moodle	moodle	blog/rsslib.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allows remote attackers to obtain sensitive information from site-level blogs by leveraging the guest role and…	CWE-200 Information Exposure	CVE-2012-6104	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293805	-	moodle	moodle	Multiple cross-site request forgery (CSRF) vulnerabilities in user/messageselect.php in the messaging system in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote atta…	CWE-352 Origin Validation Error	CVE-2012-6103	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293806	-	moodle	moodle	lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and 2.4.x before 2.4.1 allows remote attackers to read or modify the submission comments (aka feedback …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6102	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293807	-	moodle	moodle	Multiple open redirect vulnerabilities in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing at…	CWE-20 Improper Input Validation	CVE-2012-6101	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293808	-	moodle	moodle	report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/user:viewhiddendetails capability requirement, which allows remo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6100	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293809	-	moodle	moodle	The moodle1 backup converter in backup/converter/moodle1/lib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly validate pathnames, wh…	CWE-20 Improper Input Validation	CVE-2012-6099	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293810	-	moodle	moodle	grade/edit/outcome/edit_form.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6098	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm