Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249591 7.8 危険 シスコシステムズ - Cisco IOS XR の NETIO および IPV4_IO プロセスにおけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3295 2012-05-8 11:28 2012-05-2 Show GitHub Exploit DB Packet Storm
249592 6.8 警告 シスコシステムズ - Cisco Secure Access Control Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3293 2012-05-8 11:28 2012-05-2 Show GitHub Exploit DB Packet Storm
249593 3.6 注意 シスコシステムズ - Cisco IOS における No Service Password-Recovery 機能を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3289 2012-05-8 11:25 2012-05-2 Show GitHub Exploit DB Packet Storm
249594 5 警告 シスコシステムズ - Cisco Adaptive Security Appliances 5500 series デバイスにおける CRLF インジェクションの脆弱性 CWE-20
CWE-94
CVE-2011-3285 2012-05-8 11:24 2012-05-2 Show GitHub Exploit DB Packet Storm
249595 5 警告 シスコシステムズ - Cisco Carrier Routing System におけるサービス運用妨害 (メトロサブシステムクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3283 2012-05-8 11:24 2012-05-2 Show GitHub Exploit DB Packet Storm
249596 5.4 警告 シスコシステムズ - Cisco IOS の HTTP クライアントにおけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2586 2012-05-8 11:23 2011-10-19 Show GitHub Exploit DB Packet Storm
249597 5 警告 シスコシステムズ - Cisco Unified Contact Center Express におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2583 2012-05-8 11:22 2012-05-2 Show GitHub Exploit DB Packet Storm
249598 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2578 2012-05-8 11:22 2012-05-2 Show GitHub Exploit DB Packet Storm
249599 7.8 危険 シスコシステムズ - Cisco Adaptive Security Appliances 5500 シリーズデバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-0378 2012-05-8 11:20 2012-05-3 Show GitHub Exploit DB Packet Storm
249600 5 警告 シスコシステムズ - Cisco Unified Communications Manager の voice-sipstack コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0376 2012-05-8 11:19 2012-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209581 6.1 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle 3.9 to 3.9.1, 3.8 to 3.8.4 and 3.7 to 3.7.7 where it was possible to include JavaScript in a book's chapter title, which was not escaped on the "Add new chapter" p… - CVE-2020-25631 2024-11-21 14:18 2020-12-8 Show GitHub Exploit DB Packet Storm
209582 7.5 HIGH
Network 		moodle moodle A vulnerability was found in Moodle where the decompressed size of zip files was not checked against available user quota before unzipping them, which could lead to a denial of service risk. This aff… - CVE-2020-25630 2024-11-21 14:18 2020-12-8 Show GitHub Exploit DB Packet Storm
209583 8.8 HIGH
Network 		moodle moodle A vulnerability was found in Moodle where users with "Log in as" capability in a course context (typically, course managers) may gain access to some site administration capabilities by "logging in as… CWE-862
 Missing Authorization 		CVE-2020-25629 2024-11-21 14:18 2020-12-8 Show GitHub Exploit DB Packet Storm
209584 6.1 MEDIUM
Network 		moodle moodle The filter in the tag manager required extra sanitizing to prevent a reflected XSS risk. This affects 3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions. Fixed i… - CVE-2020-25628 2024-11-21 14:18 2020-12-8 Show GitHub Exploit DB Packet Storm
209585 7.5 HIGH
Network 		moddable moddable Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV). CWE-476
 NULL Pointer Dereference 		CVE-2020-25465 2024-11-21 14:18 2020-12-5 Show GitHub Exploit DB Packet Storm
209586 7.5 HIGH
Network 		moddable moddable Heap buffer overflow at moddable/xs/sources/xsDebug.c in Moddable SDK before before 20200903. The top stack frame is only partially initialized because the stack overflowed while creating the frame. … CWE-787
 Out-of-bounds Write 		CVE-2020-25464 2024-11-21 14:18 2020-12-5 Show GitHub Exploit DB Packet Storm
209587 7.5 HIGH
Network 		moddable moddable Invalid Memory Access in fxUTF8Decode at moddable/xs/sources/xsCommon.c:916 in Moddable SDK before OS200908 causes a denial of service (SEGV). NVD-CWE-Other
CVE-2020-25463 2024-11-21 14:18 2020-12-5 Show GitHub Exploit DB Packet Storm
209588 6.5 MEDIUM
Network 		infinispan
redhat
netapp 		infinispan
data_grid
active_iq_unified_manager 		A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations. When authz is enabled, any user with authentication can… CWE-862
 Missing Authorization 		CVE-2020-25711 2024-11-21 14:18 2020-12-4 Show GitHub Exploit DB Packet Storm
209589 8.1 HIGH
Network 		cimg
fedoraproject 		cimg
fedora 		A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can l… - CVE-2020-25693 2024-11-21 14:18 2020-12-4 Show GitHub Exploit DB Packet Storm
209590 7.5 HIGH
Network 		fasterxml
netapp
fedoraproject
quarkus
apache
oracle 		jackson-databind
oncommand_workflow_automation
service_level_manager
oncommand_api_services
fedora
quarkus
iotdb
webcenter_portal
banking_platform
utilities_framework
ag… 		A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from t… CWE-611
XXE 		CVE-2020-25649 2024-11-21 14:18 2020-12-4 Show GitHub Exploit DB Packet Storm