Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218401 6.8 警告 TRENDnet - TRENDnet TEW-812DRU ルータのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3098 2014-02-6 12:18 2013-07-26 Show GitHub Exploit DB Packet Storm
218402 4.3 警告 Media5 - Media5 Mediatrix 4402 VoIP Gateway ファームウェアの Web Management Interface におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1612 2014-02-5 18:06 2014-01-23 Show GitHub Exploit DB Packet Storm
218403 8.3 危険 Seowon Intech - Seowon Intech WiMAX SWC-9100 ルータの cgi-bin/diagnostic.cgi の ping 機能における任意のコマンドを実行される脆弱性 CWE-20
CWE-Other
CVE-2013-7179 2014-02-5 17:57 2013-12-19 Show GitHub Exploit DB Packet Storm
218404 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける任意のコードを実行される脆弱性 CWE-287
CWE-Other
CVE-2013-6035 2014-02-5 17:50 2013-10-4 Show GitHub Exploit DB Packet Storm
218405 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける不特定のログインアクセス権を取得される脆弱性 CWE-255
CWE-Other
CVE-2013-6034 2014-02-5 17:49 2013-10-4 Show GitHub Exploit DB Packet Storm
218406 3.5 注意 Lexmark - Lexmark の複数のプリンタ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6033 2014-02-5 17:05 2013-10-4 Show GitHub Exploit DB Packet Storm
218407 10 危険 Lexmark - Lexmark の複数のプリンタ製品の cgi-bin/postpf/cgi-bin/dynamic/config/config.html における Password Protect の管理パスワードを削除される脆弱性 CWE-20
CWE-Other
CVE-2013-6032 2014-02-5 17:00 2013-10-4 Show GitHub Exploit DB Packet Storm
218408 4 警告 IBM - IBM General Parallel File System におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0834 2014-02-5 16:12 2014-01-31 Show GitHub Exploit DB Packet Storm
218409 6.8 警告 IBM - IBM InfoSphere Master Data Management - Collaborative Edition および InfoSphere Master Data Management Server for Product Information Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5427 2014-02-5 16:11 2013-08-22 Show GitHub Exploit DB Packet Storm
218410 9.3 危険 ZTE - ZTE ZXV10 W300 に認証情報がハードコードされている問題 CWE-255
CWE-Other
CVE-2014-0329 2014-02-5 15:50 2014-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295061 - moodle moodle The MoodleQuickForm class in the Forms Library in lib/formslib.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 does not recognize Forms API setConstant operations, which… NVD-CWE-noinfo
CVE-2011-4301 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
295062 - moodle moodle The file_browser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data, which allows remote attackers to obtain potentially sensi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4300 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
295063 - moodle moodle Cross-site scripting (XSS) vulnerability in mod/wiki/pagelib.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to inject arbitrary web script or HTML via a wik… CWE-79
Cross-site Scripting 		CVE-2011-4299 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
295064 - moodle moodle Multiple cross-site request forgery (CSRF) vulnerabilities in mod/wiki/ components in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allow remote attackers to hijack the authentication of arbitrary… CWE-352
 Origin Validation Error 		CVE-2011-4298 2024-11-21 10:32 2012-07-11 Show GitHub Exploit DB Packet Storm
295065 - linux linux_kernel The encode_share_access function in fs/nfs/nfs4xdr.c in the Linux kernel before 2.6.29 allows local users to cause a denial of service (BUG and system crash) by using the mknod system call with a pat… NVD-CWE-noinfo
CVE-2011-4324 2024-11-21 10:32 2012-06-22 Show GitHub Exploit DB Packet Storm
295066 - icu-project international_components_for_unicode Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted lo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-4599 2024-11-21 10:32 2012-06-22 Show GitHub Exploit DB Packet Storm
295067 - canonical ubuntu_linux The Ubuntu One Client for Ubuntu 10.04 LTS, 11.04, 11.10, and 12.04 LTS does not properly validate SSL certificates, which allows remote attackers to spoof a server and modify or read sensitive infor… CWE-20
 Improper Input Validation  		CVE-2011-4409 2024-11-21 10:32 2012-06-16 Show GitHub Exploit DB Packet Storm
295068 - canonical ubuntu_linux The Single Sign On Client (ubuntu-sso-client) for Ubuntu 11.04 and 11.10 does not properly validate SSL certificates when using HTTPS, which allows remote attackers to spoof a server and modify or re… NVD-CWE-Other
CVE-2011-4408 2024-11-21 10:32 2012-06-16 Show GitHub Exploit DB Packet Storm
295069 - gnu gnash plugin/npapi/plugin.cpp in Gnash before 0.8.10 uses weak permissions (world readable) for cookie files with predictable names in /tmp, which allows local users to obtain sensitive information. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-4328 2024-11-21 10:32 2012-06-16 Show GitHub Exploit DB Packet Storm
295070 - bestpractical rt SQL injection vulnerability in Best Practical Solutions RT 2.x and 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users to execute arbitrary SQL commands by leveraging access to a… CWE-89
SQL Injection 		CVE-2011-4460 2024-11-21 10:32 2012-06-5 Show GitHub Exploit DB Packet Storm