Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 26, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224721 | 4.3 | 警告 | Moodle Yahoo! |
- | Moodle などの製品で使用される Yahoo! YUI の IO Utility コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4939 | 2013-07-30 16:19 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224722 | 4.3 | 警告 | Moodle | - | Moodle の LTI mod_form の実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-4938 | 2013-07-30 16:18 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224723 | 4 | 警告 | Moodle | - | Moodle の mod/feedback/lib.php における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2246 | 2013-07-30 16:17 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224724 | 4 | 警告 | Moodle | - | Moodle の rss/file.php における重要な block 情報を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2013-2245 | 2013-07-30 16:16 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224725 | 4.3 | 警告 | Moodle | - | Moodle の lib/conditionlib.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2244 | 2013-07-30 16:15 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224726 | 4 | 警告 | Moodle | - | Moodle の mod/lesson/pagetypes/matching.php における重要な answer 情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-2243 | 2013-07-30 16:15 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224727 | 4 | 警告 | Moodle | - | Moodle の mod/chat/gui_sockets/index.php におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2242 | 2013-07-30 16:14 | 2013-07-15 | Show | GitHub Exploit DB Packet Storm |
| 224728 | 4.3 | 警告 | TrustGo Inc. | - | TrustGo Antivirus & Mobile Security にサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-3580 | 2013-07-30 14:38 | 2013-07-29 | Show | GitHub Exploit DB Packet Storm |
| 224729 | 9.3 | 危険 | Apache Software Foundation | - | Struts で使用される Apache Struts Showcase App における任意の OGNL コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2013-1965 | 2013-07-30 13:51 | 2013-05-27 | Show | GitHub Exploit DB Packet Storm |
| 224730 | 7.5 | 危険 | ヒューレット・パッカード | - | HP LoadRunner における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-4801 | 2013-07-30 12:29 | 2013-07-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 26, 2026, 4:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 199041 | 9.8 |
CRITICAL
Network |
connie-lang_project | connie-lang | The package connie-lang before 0.1.1 are vulnerable to Prototype Pollution in the configuration language library used by connie. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7706 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 199042 | 9.8 |
CRITICAL
Network |
linux-cmdline_project | linux-cmdline | The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7704 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 199043 | 9.8 |
CRITICAL
Network |
nis-utils_project | nis-utils | All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7703 | 2024-11-21 14:37 | 2020-08-18 | Show | GitHub Exploit DB Packet Storm |
| 199044 | 9.8 |
CRITICAL
Network |
templ8_project | templ8 | All versions of package templ8 are vulnerable to Prototype Pollution via the parse function. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7702 | 2024-11-21 14:37 | 2020-08-17 | Show | GitHub Exploit DB Packet Storm |
| 199045 | 7.8 |
HIGH
Local |
siemens | automation_license_manager | A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privile… |
CWE-863
Incorrect Authorization |
CVE-2020-7583 | 2024-11-21 14:37 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |
| 199046 | 9.8 |
CRITICAL
Network |
springtree | madlib-object-utils | madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7701 | 2024-11-21 14:37 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |
| 199047 | 9.8 |
CRITICAL
Network |
php.js_project | php.js | All versions of phpjs are vulnerable to Prototype Pollution via parse_str. |
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') |
CVE-2020-7700 | 2024-11-21 14:37 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |
| 199048 | 7.3 |
HIGH
Local |
philips | smartcontrol | An Uncontrolled Search Path Element (CWE-427) vulnerability in SmartControl version 4.3.15 and versions released before April 15, 2020 may allow an authenticated user to escalate privileges by placin… |
CWE-427
Uncontrolled Search Path Element |
CVE-2020-7360 | 2024-11-21 14:37 | 2020-08-14 | Show | GitHub Exploit DB Packet Storm |
| 199049 | 5.2 |
MEDIUM
Local |
mcafee | data_loss_prevention | Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the RiskDB username and password via unprotected log… |
CWE-522
Insufficiently Protected Credentials |
CVE-2020-7307 | 2024-11-21 14:37 | 2020-08-13 | Show | GitHub Exploit DB Packet Storm |
| 199050 | 5.2 |
MEDIUM
Local |
mcafee | data_loss_prevention | Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the ADRMS username and password via unprotected log … |
CWE-522
Insufficiently Protected Credentials |
CVE-2020-7306 | 2024-11-21 14:37 | 2020-08-13 | Show | GitHub Exploit DB Packet Storm |