Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219711	9.3	危険	3S-Smart Software Solutions SoftMotion3D Festo	-	Festo Modular controllers CECX-X-C1 および CECX-X-M1 における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2014-0760	2014-04-28 15:40	2014-04-24	Show	GitHub Exploit DB Packet Storm

219712	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2393	2014-04-28 15:07	2014-04-8	Show	GitHub Exploit DB Packet Storm

219713	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite の電子メール自動設定機能における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2392	2014-04-28 15:06	2014-04-8	Show	GitHub Exploit DB Packet Storm

219714	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite のパスワードリカバリサービスにおける潜在的に有用なパスワードパターンの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2391	2014-04-28 15:06	2014-04-8	Show	GitHub Exploit DB Packet Storm

219715	5.5	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2915	2014-04-28 14:56	2014-04-22	Show	GitHub Exploit DB Packet Storm

219716	7.5	危険	MODX	-	MODX Revolution における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2736	2014-04-28 14:43	2014-04-4	Show	GitHub Exploit DB Packet Storm

219717	7.5	危険	レッドハット	-	Red Hat OpenShift Enterprise の openshift-origin-broker における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-0188	2014-04-28 14:36	2014-04-23	Show	GitHub Exploit DB Packet Storm

219718	5	警告	Sixnet	-	Sixnet SixView Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2976	2014-04-28 14:24	2014-04-22	Show	GitHub Exploit DB Packet Storm

219719	6.1	警告	シスコシステムズ	-	Cisco ASR 1000 シリーズのデバイスのソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-5723	2014-04-28 13:58	2012-11-2	Show	GitHub Exploit DB Packet Storm

219720	5	警告	シスコシステムズ	-	Cisco IOS におけるインターフェース ACL 制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3946	2014-04-28 13:58	2012-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296121	-	moodle	moodle	mod/forum/unsubscribeall.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not consider whether a forum is optional, which allows remote authenticated users to bypass forum-subscription re…	CWE-16 Configuration	CVE-2012-3392	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296122	-	moodle	moodle	mod/forum/rsslib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not properly implement the requirement for posting before reading a Q&A forum, which allows remote authenticated users to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3391	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296123	-	moodle	moodle	lib/filelib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not properly restrict file access after a block has been hidden, which allows remote authenticated users to obtain sensitive i…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3390	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296124	-	moodle	moodle	Multiple cross-site scripting (XSS) vulnerabilities in mod/lti/typessettings.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 allow remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2012-3389	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296125	-	moodle	moodle	The is_enrolled function in lib/accesslib.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 does not properly interact with the caching feature, which might allow remote authenticated users to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3388	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296126	-	moodle	moodle	Moodle 2.3.x before 2.3.1 uses only a client-side check for whether references are permitted in a file upload, which allows remote authenticated users to bypass intended alias (aka shortcut) restrict…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3387	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296127	-	symantec	web_gateway	The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to change arbitrary passwords via crafted input to an application script.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2977	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296128	-	symantec	web_gateway	The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary shell commands via crafted input to application scripts, related to an "injection" is…	CWE-78 OS Command	CVE-2012-2976	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296129	-	symantec	web_gateway	SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-2961	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm

296130	-	symantec	web_gateway	The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2957	2024-11-21 10:40	2012-07-24	Show	GitHub Exploit DB Packet Storm