Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245841	6.5	警告	Moodle	-	Moodle のカレンダーの実装における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2363	2012-07-24 16:10	2012-07-21	Show	GitHub Exploit DB Packet Storm

245842	3.5	注意	Moodle	-	Moodle の Web サービスの実装におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2361	2012-07-24 16:07	2012-07-21	Show	GitHub Exploit DB Packet Storm

245843	3.5	注意	Moodle	-	Moodle の Wiki サブシステムにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2360	2012-07-24 16:05	2012-07-21	Show	GitHub Exploit DB Packet Storm

245844	6.5	警告	Moodle	-	Moodle の admin/roles/override.php における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2359	2012-07-24 16:03	2012-07-21	Show	GitHub Exploit DB Packet Storm

245845	5.5	警告	Moodle	-	Moodle におけるアクティビティの読み取り専用の状態を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2358	2012-07-24 16:00	2012-07-21	Show	GitHub Exploit DB Packet Storm

245846	5	警告	Moodle	-	Moodle の auth/cas/cas_form.html 内のマルチ認証機能における資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-2357	2012-07-24 15:54	2012-07-21	Show	GitHub Exploit DB Packet Storm

245847	4	警告	Moodle	-	Moodle の question-bank 機能における機能制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2356	2012-07-24 15:52	2012-07-21	Show	GitHub Exploit DB Packet Storm

245848	4	警告	Moodle	-	Moodle における question:use* 機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2355	2012-07-24 15:51	2012-07-21	Show	GitHub Exploit DB Packet Storm

245849	4	警告	Moodle	-	Moodle における moodle/site:readallmessages 機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2354	2012-07-24 15:50	2012-07-21	Show	GitHub Exploit DB Packet Storm

245850	4	警告	Moodle	-	Moodle における非表示フィールドから重要なユーザ情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-2353	2012-07-24 15:46	2012-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3141	8.8	HIGH Network	-	-	ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #132, any authenticated user who can upload videos can add multiple subtitles from different files and change their ti…	CWE-89 SQL Injection	CVE-2026-45418	2026-06-13 01:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3142	1.8	LOW Physics	-	-	A vulnerability was identified in Groww Stock, Mutual Fund, Gold App up to 20260805 on Android. This affects an unknown part of the component WebView URL Handler. The manipulation leads to improper a…	CWE-285 CWE-939 Improper Authorization Improper Authorization in Handler for Custom URL Scheme	CVE-2026-12065	2026-06-13 01:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3143	7.3	HIGH Network	-	-	A security flaw has been discovered in PbootCMS up to 3.2.12. This vulnerability affects the function retrieve of the file apps/home/controller/MemberController.php of the component Password Handler.…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2026-12066	2026-06-13 01:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3144	9.8	CRITICAL Network	-	-	Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or enabled leading to unauthorized access in default installations.	CWE-287 Improper Authentication	CVE-2026-48611	2026-06-13 01:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

3145	8.0	HIGH Network	-	-	Improper state verification in the OAuth implementation could allow an attacker to manipulate the authentication flow and cause a victim’s account to be linked to an attacker-controlled account. This…	CWE-352 Origin Validation Error	CVE-2026-48612	2026-06-13 01:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

3146	5.9	MEDIUM Network	-	-	SQL injection vulnerability in phpBB profile field migration due to improper handling of user-supplied profile field data during migration, allowing execution of arbitrary SQL queries. Only applies t…	CWE-89 SQL Injection	CVE-2026-48613	2026-06-13 01:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

3147	9.9	CRITICAL Network	-	-	A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UID Enterprise Agent to execute a Command Injection on the host devic…	CWE-20 Improper Input Validation	CVE-2026-47367	2026-06-13 01:10	2026-06-12	Show	GitHub Exploit DB Packet Storm

3148	8.6	HIGH Network	-	-	A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to obtain data from such UniFi OS devices or instances.	CWE-22 Path Traversal	CVE-2026-47368	2026-06-13 01:10	2026-06-12	Show	GitHub Exploit DB Packet Storm

3149	9.9	CRITICAL Network	-	-	A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to escalate privileges within such U…	CWE-20 Improper Input Validation	CVE-2026-47369	2026-06-13 01:10	2026-06-12	Show	GitHub Exploit DB Packet Storm

3150	9.9	CRITICAL Network	-	-	A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to execute a Command Injection withi…	CWE-20 Improper Input Validation	CVE-2026-47370	2026-06-13 01:10	2026-06-12	Show	GitHub Exploit DB Packet Storm