Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226761 5 警告 Moodle - Moodle の blog/rsslib.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-6105 2013-01-29 16:54 2013-01-21 Show GitHub Exploit DB Packet Storm
226762 5 警告 Moodle - Moodle の blog/rsslib.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-6104 2013-01-29 16:54 2013-01-21 Show GitHub Exploit DB Packet Storm
226763 6.8 警告 Moodle - Moodle の messaging システムにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-6103 2013-01-29 16:53 2013-01-21 Show GitHub Exploit DB Packet Storm
226764 6.4 警告 Moodle - Moodle における任意のユーザのサブミッションコメントを読まれるまたは改ざんされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6102 2013-01-29 16:53 2013-01-21 Show GitHub Exploit DB Packet Storm
226765 4.3 警告 Moodle - Moodle におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6101 2013-01-29 16:52 2013-01-21 Show GitHub Exploit DB Packet Storm
226766 4 警告 Moodle - Moodle の report/outline/index.php における隠し最終アクセス値を見つけられる脆弱性 CWE-200
情報漏えい 		CVE-2012-6100 2013-01-29 16:52 2013-01-21 Show GitHub Exploit DB Packet Storm
226767 4 警告 Moodle - Moodle の backup/converter/moodle1/lib.php における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-6099 2013-01-29 16:51 2013-01-21 Show GitHub Exploit DB Packet Storm
226768 4 警告 Moodle - Moodle におけるカスタム結果を標準のサイト全体の成果に変換される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6098 2013-01-29 16:51 2013-01-21 Show GitHub Exploit DB Packet Storm
226769 5 警告 General Electric Company - GE Intelligent Platforms Proficy Real-Time Information Portal におけるユーザ名のリストを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0652 2013-01-29 16:49 2013-01-22 Show GitHub Exploit DB Packet Storm
226770 5 警告 General Electric Company - GE Intelligent Platforms Proficy Real-Time Information Portal における設定ファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0651 2013-01-29 16:48 2013-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209131 5.4 MEDIUM
Network 		jeesns jeesns A stored cross-site scripting (XSS) vulnerability in the /group/post component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the title. CWE-79
Cross-site Scripting 		CVE-2020-19287 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209132 5.4 MEDIUM
Network 		jeesns jeesns A stored cross-site scripting (XSS) vulnerability in the /question/detail component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the source field… CWE-79
Cross-site Scripting 		CVE-2020-19286 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209133 5.4 MEDIUM
Network 		jeesns jeesns A stored cross-site scripting (XSS) vulnerability in the /group/apply component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Name text field. CWE-79
Cross-site Scripting 		CVE-2020-19285 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209134 5.4 MEDIUM
Network 		jeesns jeesns A stored cross-site scripting (XSS) vulnerability in the /group/comment component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the group comments… CWE-79
Cross-site Scripting 		CVE-2020-19284 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209135 6.1 MEDIUM
Network 		jeesns jeesns A reflected cross-site scripting (XSS) vulnerability in the /newVersion component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML. CWE-79
Cross-site Scripting 		CVE-2020-19283 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209136 6.1 MEDIUM
Network 		jeesns jeesns A reflected cross-site scripting (XSS) vulnerability in Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field. CWE-79
Cross-site Scripting 		CVE-2020-19282 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209137 5.4 MEDIUM
Network 		jeesns jeesns A stored cross-site scripting (XSS) vulnerability in the /manage/loginusername component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the usernam… CWE-79
Cross-site Scripting 		CVE-2020-19281 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209138 8.8 HIGH
Network 		jeesns jeesns Jeesns 1.4.2 contains a cross-site request forgery (CSRF) which allows attackers to escalate privileges and perform sensitive program operations. CWE-352
 Origin Validation Error 		CVE-2020-19280 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209139 5.7 MEDIUM
Network 		dswjcms_project dswjcms A cross-site request forgery (CSRF) in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users. CWE-352
 Origin Validation Error 		CVE-2020-19268 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm
209140 9.8 CRITICAL
Network 		dswjcms_project dswjcms An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-19267 2024-11-21 14:09 2021-09-10 Show GitHub Exploit DB Packet Storm