Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218111	2.1	注意	ownCloud	-	ownCloud のログインページにおけるパスワードを推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2047	2014-03-19 13:55	2013-04-7	Show	GitHub Exploit DB Packet Storm

218112	5.8	警告	ownCloud	-	ownCloud のログインページにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-2044	2014-03-19 13:54	2013-04-23	Show	GitHub Exploit DB Packet Storm

218113	4	警告	ownCloud	-	ownCloud の apps/calendar/ajax/events.php における任意のカレンダーをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2043	2014-03-19 13:53	2013-04-22	Show	GitHub Exploit DB Packet Storm

218114	3.5	注意	ownCloud	-	ownCloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2042	2014-03-19 13:53	2013-04-30	Show	GitHub Exploit DB Packet Storm

218115	3.5	注意	ownCloud	-	ownCloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2041	2014-03-19 13:49	2013-04-22	Show	GitHub Exploit DB Packet Storm

218116	3.5	注意	ownCloud	-	ownCloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2040	2014-03-19 13:48	2013-04-22	Show	GitHub Exploit DB Packet Storm

218117	4	警告	ownCloud	-	ownCloud Server の apps/files_trashbin/index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2085	2014-03-19 13:47	2013-05-6	Show	GitHub Exploit DB Packet Storm

218118	4	警告	ownCloud	-	ownCloud の lib/files/view.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2039	2014-03-19 13:46	2013-04-22	Show	GitHub Exploit DB Packet Storm

218119	4	警告	ownCloud	-	ownCloud の連絡先アプリケーションにおける任意の連絡先をダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1963	2014-03-19 13:45	2013-04-12	Show	GitHub Exploit DB Packet Storm

218120	5	警告	fruux ownCloud	-	ownCloud で使用される SabreDAV の HTML\Browser プラグインにおける任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2013-1939	2014-03-19 13:44	2013-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294021	-	moodle	moodle	Cross-site scripting (XSS) vulnerability in the Wiki subsystem in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web scrip…	CWE-79 Cross-site Scripting	CVE-2012-2360	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294022	-	moodle	moodle	admin/roles/override.php in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to gain privileges by leveraging the teacher role and modifying the…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2359	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294023	-	moodle	moodle	Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass an activity's read-only state and modify the database by leveraging the student role …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2358	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294024	-	moodle	moodle	The Multi-Authentication feature in the Central Authentication Service (CAS) functionality in auth/cas/cas_form.html in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 does not use HTTPS, which allo…	CWE-200 Information Exposure	CVE-2012-2357	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294025	-	moodle	moodle	The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a save_question…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2356	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294026	-	moodle	moodle	Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass question:use* capability requirements and add arbitrary questions to a quiz via the questions feature.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2355	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294027	-	moodle	moodle	Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/site:readallmessages capability requirement and read arbitrary messages by using the "Recent co…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2354	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294028	-	moodle	moodle	Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled u…	CWE-200 Information Exposure	CVE-2012-2353	2024-11-21 10:38	2012-07-21	Show	GitHub Exploit DB Packet Storm

294029	-	florian_weber	spaces	The Spaces module 6.x-3.x before 6.x-3.4 for Drupal does not enforce permissions on non-object pages, which allows remote attackers to obtain sensitive information and possibly have other impacts via…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2303	2024-11-21 10:38	2012-07-19	Show	GitHub Exploit DB Packet Storm

294030	-	rubygems	mail_gem	The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery.	CWE-20 Improper Input Validation	CVE-2012-2140	2024-11-21 10:38	2012-07-19	Show	GitHub Exploit DB Packet Storm