Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240131	4.3	警告	opentools	-	Opentools Attachment Mod におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7073	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240132	7.5	危険	Invision Power Services, Inc	-	IPB の classes/class_session.php における SQL インジェクションの脆弱性	-	CVE-2006-7071	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240133	6	警告	オラクル	-	Oracle における内部エラーを誘発される脆弱性	-	CVE-2006-7067	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240134	5	警告	マイクロソフトキヤノン	-	Microsoft Internet Explorer 6 および 7 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7065	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240135	9.3	危険	Invision Power Services, Inc	-	IPB の forum/admin.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7064	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240136	7.8	危険	KDE project	-	kmail の calendar.php におけるサーバのフルパスを取得される脆弱性	-	CVE-2006-7062	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240137	10	危険	keith reichley	-	DotWidget For Articles における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7052	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240138	4.9	警告	Linux	-	Linux kernel の posix-timers.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7051	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240139	4.4	警告	mathsoft	-	Mathcad におけるセキュリティ機能を回避される脆弱性	-	CVE-2006-7037	2012-09-25 15:36	2007-02-22	Show	GitHub Exploit DB Packet Storm

240140	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6.0 SP2 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7031	2012-09-25 15:36	2007-02-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267671	8.8	HIGH Network	moodle	moodle	Cross-site request forgery (CSRF) vulnerability in markposts.php in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13 and earlier allows remote attackers to hijack t…	CWE-352 Origin Validation Error	CVE-2016-3734	2024-11-21 11:50	2017-04-21	Show	GitHub Exploit DB Packet Storm

267672	4.3	MEDIUM Network	moodle	moodle	The "restore teacher" feature in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to overwrite the course idnumber.	CWE-284 Improper Access Control	CVE-2016-3733	2024-11-21 11:50	2017-04-21	Show	GitHub Exploit DB Packet Storm

267673	4.3	MEDIUM Network	moodle	moodle	The capability check to access other badges in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to read the badges of…	CWE-200 Information Exposure	CVE-2016-3732	2024-11-21 11:50	2017-04-21	Show	GitHub Exploit DB Packet Storm

267674	5.3	MEDIUM Network	moodle	moodle	Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, and 2.8 through 2.8.11 allows remote attackers to obtain the names of hidden forums and forum discussions.	CWE-200 Information Exposure	CVE-2016-3731	2024-11-21 11:50	2017-04-21	Show	GitHub Exploit DB Packet Storm

267675	6.5	MEDIUM Network	moodle	moodle	The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the admini…	CWE-284 Improper Access Control	CVE-2016-3729	2024-11-21 11:50	2017-04-21	Show	GitHub Exploit DB Packet Storm

267676	7.8	HIGH Local	foxitsoftware	foxit_reader	Heap-based buffer overflow in the CreateFXPDFConvertor function in ConvertToPdf_x86.dll in Foxit Reader 7.3.4.311 allows remote attackers to execute arbitrary code via a large SamplesPerPixel value i…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3740	2024-11-21 11:50	2017-04-5	Show	GitHub Exploit DB Packet Storm

267677	9.8	CRITICAL Network	modified	ecommerce_shopsoftware	Multiple SQL injection vulnerabilities in modified eCommerce Shopsoftware 2.0.0.0 revision 9678, when the easybill-module is not installed, allow remote attackers to execute arbitrary SQL commands vi…	CWE-89 SQL Injection	CVE-2016-3694	2024-11-21 11:50	2017-02-16	Show	GitHub Exploit DB Packet Storm

267678	8.8	HIGH Network	libjpeg-turbo redhat debian canonical	libjpeg-turbo enterprise_linux debian_linux ubuntu_linux	The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.	CWE-476 NULL Pointer Dereference	CVE-2016-3616	2024-11-21 11:50	2017-02-14	Show	GitHub Exploit DB Packet Storm

267679	4.7	MEDIUM Local	sap	download_manager	SAP Download Manager 2.1.142 and earlier generates an encryption key from a small key space on Windows and Mac systems, which allows context-dependent attackers to obtain sensitive configuration info…	CWE-255 CWE-798 Credentials Management Use of Hard-coded Credentials	CVE-2016-3685	2024-11-21 11:50	2016-12-15	Show	GitHub Exploit DB Packet Storm

267680	4.7	MEDIUM Local	sap	download_manager	SAP Download Manager 2.1.142 and earlier uses a hardcoded encryption key to protect stored data, which allows context-dependent attackers to obtain sensitive configuration information by leveraging k…	NVD-CWE-Other	CVE-2016-3684	2024-11-21 11:50	2016-12-15	Show	GitHub Exploit DB Packet Storm