Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217171 3.5 注意 Zoho Corporation - ZOHO ManageEngine OpStor の Properties.do におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2670 2014-04-1 18:26 2014-03-27 Show GitHub Exploit DB Packet Storm
217172 7.1 危険 Linux - Linux カーネルの IPv6 jumbogram 処理に脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0006 2014-04-1 18:26 2010-01-29 Show GitHub Exploit DB Packet Storm
217173 5 警告 Mozilla Foundation - Android 上で稼動する Mozilla Firefox におけるプロファイルのランダム化保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1516 2014-04-1 18:25 2014-03-26 Show GitHub Exploit DB Packet Storm
217174 7.5 危険 IBM - 複数の IBM 製品における CLI アクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0880 2014-04-1 17:34 2014-02-19 Show GitHub Exploit DB Packet Storm
217175 7.8 危険 ヒューレット・パッカード - 複数の HP StoreOnce 製品における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6211 2014-04-1 16:50 2013-10-21 Show GitHub Exploit DB Packet Storm
217176 5 警告 Apache Software Foundation - Apache CouchDB におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2668 2014-04-1 16:45 2014-03-24 Show GitHub Exploit DB Packet Storm
217177 4.9 警告 Xen プロジェクト - Xen の HVMOP_set_mem_access HVM 制御操作におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2599 2014-04-1 16:32 2014-03-25 Show GitHub Exploit DB Packet Storm
217178 7.5 危険 シマンテック - Symantec LiveUpdate Administrator の管理 GUI の forcepasswd.do における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1645 2014-04-1 16:16 2014-03-27 Show GitHub Exploit DB Packet Storm
217179 7.5 危険 シマンテック - Symantec LiveUpdate Administrator の管理 GUI の forcepasswd.do における任意のパスワードをリセットされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-1644 2014-04-1 16:16 2014-03-27 Show GitHub Exploit DB Packet Storm
217180 6.1 警告 シスコシステムズ - Cisco IOS のパケットドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2131 2014-04-1 16:15 2014-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295181 - moodle moodle backup/moodle2/restore_stepslib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not check for the moodle/course:changeidnumber privilege during handling of course ID numbers, which allow… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4589 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295182 - moodle moodle The ip_in_range function in mnet/lib.php in MNET in Moodle 1.9.x before 1.9.15 uses an incorrect data type, which allows remote attackers to bypass intended IP address restrictions via an XMLRPC requ… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4588 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295183 - moodle moodle lib/moodlelib.php in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 does not properly handle certain zero values in the password policy, which makes it easier for remote attac… CWE-255
Credentials Management 		CVE-2011-4587 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295184 - moodle moodle CRLF injection vulnerability in calendar/set.php in the Calendar subsystem in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote attackers to inject arbitrary HTTP h… NVD-CWE-Other
CVE-2011-4586 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295185 - moodle moodle login/change_password.php in Moodle 1.9.x before 1.9.15 does not use https for the change-password form even if the httpslogin option is enabled, which allows remote attackers to obtain credentials b… CWE-16
Configuration 		CVE-2011-4585 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295186 - moodle moodle The MNET authentication functionality in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote authenticated users to impersonate other user accounts by using the Login… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4584 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295187 - moodle moodle Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 displays web service tokens associated with (1) disabled services and (2) users who no longer have authorization, which allows remote authenticated us… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4583 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295188 - moodle moodle Open redirect vulnerability in the Calendar set page in Moodle 2.1.x before 2.1.3 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a redirec… CWE-20
 Improper Input Validation  		CVE-2011-4582 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295189 - moodle moodle mod/wiki/pagelib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 allows remote authenticated users to discover the username of a wiki creator by visiting the history and deletion user interfa… CWE-200
Information Exposure 		CVE-2011-4581 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
295190 - oracle sun_glassfish_enterprise_server Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.0.1 and 3.1.1 allows remote attackers to affect confidentiality and integrity, related to JSF. NVD-CWE-noinfo
CVE-2011-4358 2024-11-21 10:32 2012-07-18 Show GitHub Exploit DB Packet Storm