Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218251 6.5 警告 シマンテック - Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5015 2014-02-17 11:26 2013-07-29 Show GitHub Exploit DB Packet Storm
218252 7.5 危険 シマンテック - Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2013-5014 2014-02-17 11:21 2013-07-29 Show GitHub Exploit DB Packet Storm
218253 3.5 注意 IBM - IBM Sametime の Meeting Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6743 2014-02-17 10:58 2013-11-8 Show GitHub Exploit DB Packet Storm
218254 6.8 警告 IBM - IBM Sametime の Meeting Server におけるクリックジャッキング攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3988 2014-02-17 10:57 2013-06-7 Show GitHub Exploit DB Packet Storm
218255 7.5 危険 IBM - IBM Sametime の Meeting Server におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6742 2014-02-17 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
218256 7.5 危険 IBM - IBM Sametime の Meeting Server における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3983 2014-02-17 10:57 2013-06-7 Show GitHub Exploit DB Packet Storm
218257 5 警告 IBM - IBM Sametime の Meeting Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3978 2014-02-17 10:56 2013-06-7 Show GitHub Exploit DB Packet Storm
218258 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0729 2014-02-14 14:52 2014-02-13 Show GitHub Exploit DB Packet Storm
218259 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0728 2014-02-14 14:51 2014-02-12 Show GitHub Exploit DB Packet Storm
218260 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の CallManager Interactive Voice Response インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0727 2014-02-14 14:50 2014-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294981 - moodle moodle Cross-site scripting (XSS) vulnerability in the print_object function in lib/datalib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3, when a developer debugging script is enabled, allows remo… CWE-79
Cross-site Scripting 		CVE-2011-4591 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294982 - moodle moodle The web services implementation in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not properly consider the maintenance-mode state and account attributes during login attempts, which allows re… CWE-287
Improper Authentication 		CVE-2011-4590 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294983 - moodle moodle backup/moodle2/restore_stepslib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not check for the moodle/course:changeidnumber privilege during handling of course ID numbers, which allow… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4589 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294984 - moodle moodle The ip_in_range function in mnet/lib.php in MNET in Moodle 1.9.x before 1.9.15 uses an incorrect data type, which allows remote attackers to bypass intended IP address restrictions via an XMLRPC requ… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4588 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294985 - moodle moodle lib/moodlelib.php in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 does not properly handle certain zero values in the password policy, which makes it easier for remote attac… CWE-255
Credentials Management 		CVE-2011-4587 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294986 - moodle moodle CRLF injection vulnerability in calendar/set.php in the Calendar subsystem in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote attackers to inject arbitrary HTTP h… NVD-CWE-Other
CVE-2011-4586 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294987 - moodle moodle login/change_password.php in Moodle 1.9.x before 1.9.15 does not use https for the change-password form even if the httpslogin option is enabled, which allows remote attackers to obtain credentials b… CWE-16
Configuration 		CVE-2011-4585 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294988 - moodle moodle The MNET authentication functionality in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote authenticated users to impersonate other user accounts by using the Login… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4584 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294989 - moodle moodle Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 displays web service tokens associated with (1) disabled services and (2) users who no longer have authorization, which allows remote authenticated us… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4583 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm
294990 - moodle moodle Open redirect vulnerability in the Calendar set page in Moodle 2.1.x before 2.1.3 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a redirec… CWE-20
 Improper Input Validation  		CVE-2011-4582 2024-11-21 10:32 2012-07-20 Show GitHub Exploit DB Packet Storm