Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218311 5.8 警告 hotplug cms - HotPlug CMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3189 2014-03-11 17:43 2006-06-23 Show GitHub Exploit DB Packet Storm
218312 5 警告 bt - BT Voyager 2091 Wireless ファームウェアにおける認証プロセスを回避される脆弱性 CWE-200
CWE-264
CVE-2006-3561 2014-03-11 17:43 2006-07-13 Show GitHub Exploit DB Packet Storm
218313 7.5 危険 sipfoundry - SIPfoundry sipXtapi におけるバッファオーバーフローの脆弱性 - CVE-2006-3524 2014-03-11 17:43 2006-07-12 Show GitHub Exploit DB Packet Storm
218314 5 警告 clearswift - Clearswift MIMEsweeper for Web におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3523 2014-03-11 17:43 2006-07-12 Show GitHub Exploit DB Packet Storm
218315 4.3 警告 clearswift - Clearswift MIMEsweeper for Web におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3522 2014-03-11 17:43 2006-07-12 Show GitHub Exploit DB Packet Storm
218316 5 警告 Nuked-Klan - Nuked-Klan におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2006-3479 2014-03-11 17:43 2006-07-10 Show GitHub Exploit DB Packet Storm
218317 4.3 警告 phpwebgallery - PhpWebGallery におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3476 2014-03-11 17:43 2006-07-10 Show GitHub Exploit DB Packet Storm
218318 7.5 危険 Drupal - form_mail Drupal Module における CRLF インジェクションの脆弱性 - CVE-2006-3473 2014-03-11 17:43 2006-07-10 Show GitHub Exploit DB Packet Storm
218319 7.5 危険 mybulletinboard - MyBulletinBoard におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2006-3420 2014-03-11 17:43 2006-07-7 Show GitHub Exploit DB Packet Storm
218320 5.4 警告 マイクロソフト - Windows XP および 2003 におけるバッファオーバーフローの脆弱性 - CVE-2006-3351 2014-03-11 17:43 2006-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296061 - moodle moodle Multiple cross-site scripting (XSS) vulnerabilities in the course-tags functionality in tag/coursetags_more.php in Moodle 2.0.x before 2.0.2 allow remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2011-4282 2024-11-21 10:32 2012-07-16 Show GitHub Exploit DB Packet Storm
296062 - moodle moodle Multiple cross-site request forgery (CSRF) vulnerabilities in Moodle 2.0.x before 2.0.2 allow remote attackers to hijack the authentication of arbitrary users for requests that mark the completion of… CWE-352
 Origin Validation Error 		CVE-2011-4281 2024-11-21 10:32 2012-07-16 Show GitHub Exploit DB Packet Storm
296063 - moodle
nimish_pachapurkar 		moodle
spike_phpcoverage 		Cross-site scripting (XSS) vulnerability in the Spike PHPCoverage (aka spikephpcoverage) library, as used in Moodle 2.0.x before 2.0.2 and other products, allows remote attackers to inject arbitrary … CWE-79
Cross-site Scripting 		CVE-2011-4280 2024-11-21 10:32 2012-07-16 Show GitHub Exploit DB Packet Storm
296064 - moodle moodle Moodle 2.0.x before 2.0.2 does not use the forceloginforprofiles setting for course-profiles access control, which makes it easier for remote attackers to obtain potentially sensitive information via… CWE-200
Information Exposure 		CVE-2011-4279 2024-11-21 10:32 2012-07-16 Show GitHub Exploit DB Packet Storm
296065 - moodle moodle Cross-site scripting (XSS) vulnerability in the tag autocomplete functionality in Moodle 1.9.x before 1.9.11 and 2.0.x before 2.0.2 allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2011-4278 2024-11-21 10:32 2012-07-16 Show GitHub Exploit DB Packet Storm
296066 - moodle moodle Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4309 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
296067 - moodle moodle mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated users to discover the names of other users via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4308 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
296068 - moodle moodle Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the sectio… CWE-79
Cross-site Scripting 		CVE-2011-4307 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
296069 - moodle moodle Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data. CWE-79
Cross-site Scripting 		CVE-2011-4306 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
296070 - moodle moodle message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshi… CWE-189
Numeric Errors 		CVE-2011-4305 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm