Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250111 4.3 警告 Mahara - Mahara における資格情報を取得される脆弱性 CWE-16
環境設定 		CVE-2011-1406 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250112 3.5 注意 Mahara - Mahara におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1405 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250113 4 警告 Mahara - Mahara における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1404 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250114 6.8 警告 Mahara - Mahara の pieforms の実装におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1403 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250115 6.5 警告 Mahara - Mahara におけるアクセスをブロックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1402 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250116 3.5 注意 ikiwiki - ikiwiki におけるクロスサイトスクリプティング攻撃をされる脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1401 2012-03-27 18:43 2011-04-11 Show GitHub Exploit DB Packet Storm
250117 6.8 警告 Debian
Canonical		 - Debian GNU/Linux squeeze などの製品で使用される shell_escape_commands 命令の初期設定における任意のコードを実行される脆弱性 CWE-16
環境設定 		CVE-2011-1400 2012-03-27 18:43 2011-03-22 Show GitHub Exploit DB Packet Storm
250118 5 警告 IBM - IBM WAS の管理コンソールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1359 2012-03-27 18:43 2011-09-6 Show GitHub Exploit DB Packet Storm
250119 4.3 警告 IBM - IBM WSRR の agentDetect.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1357 2012-03-27 18:43 2011-08-11 Show GitHub Exploit DB Packet Storm
250120 8.8 危険 マイクロソフト - Windows 7 の Microsoft Internet Explorer 8 における任意のファイルを生成される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1347 2012-03-27 18:43 2011-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209611 7.2 HIGH
Network 		moodle moodle In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, insufficient input escaping was applied to the PHP unit webrunner admin tool. CWE-20
 Improper Input Validation  		CVE-2020-1756 2024-11-21 14:11 2022-08-17 Show GitHub Exploit DB Packet Storm
209612 5.3 MEDIUM
Network 		moodle moodle In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, X-Forwarded-For headers could be used to spoof a user's IP, in order to bypass remote address checks. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-1755 2024-11-21 14:11 2022-08-17 Show GitHub Exploit DB Packet Storm
209613 4.3 MEDIUM
Network 		moodle moodle In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, users viewing the grade history report without the 'access all groups' capability were not restricted to viewing grades of users within their own grou… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-1754 2024-11-21 14:11 2022-08-6 Show GitHub Exploit DB Packet Storm
209614 5.4 MEDIUM
Network 		moodle moodle In Moodle 3.8, messages required extra sanitizing before updating the conversation overview, to prevent the risk of stored cross-site scripting. CWE-79
Cross-site Scripting 		CVE-2020-1691 2024-11-21 14:11 2022-08-6 Show GitHub Exploit DB Packet Storm
209615 6.5 MEDIUM
Network 		whatsapp whatsapp Whatsapp iOS 2.19.80 and prior and Android 2.19.222 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages. NVD-CWE-Other
CVE-2020-20096 2024-11-21 14:11 2022-03-24 Show GitHub Exploit DB Packet Storm
209616 6.5 MEDIUM
Network 		apple imessage iMessage (Messages app) iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages. NVD-CWE-Other
CVE-2020-20095 2024-11-21 14:11 2022-03-24 Show GitHub Exploit DB Packet Storm
209617 6.5 MEDIUM
Network 		facebook instagram Instagram iOS 106.0 and prior and Android 107.0.0.11 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages NVD-CWE-Other
CVE-2020-20094 2024-11-21 14:11 2022-03-24 Show GitHub Exploit DB Packet Storm
209618 6.5 MEDIUM
Network 		facebook messenger The Facebook Messenger app for iOS 227.0 and prior and Android 228.1.0.10.116 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via speciall… NVD-CWE-Other
CVE-2020-20093 2024-11-21 14:11 2022-03-24 Show GitHub Exploit DB Packet Storm
209619 5.4 MEDIUM
Network 		laracms_project laracms LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module. CWE-79
Cross-site Scripting 		CVE-2020-20131 2024-11-21 14:11 2021-09-30 Show GitHub Exploit DB Packet Storm
209620 5.4 MEDIUM
Network 		laracms_project laracms LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the content editor. CWE-79
Cross-site Scripting 		CVE-2020-20129 2024-11-21 14:11 2021-09-30 Show GitHub Exploit DB Packet Storm