Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251071 5.8 警告 Haxx - curl における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3842 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251072 4.3 警告 TWiki - TWiki の lib/TWiki.pm における クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3841 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
251073 6 警告 PostgreSQL.org
Alvaro Herrera		 - PostgreSQL の PL/php アドオンにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3781 2012-03-27 18:42 2010-10-6 Show GitHub Exploit DB Packet Storm
251074 5 警告 Mozilla Foundation - Bugzilla の Old Charts 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3764 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251075 4.3 警告 MantisBT Group - MantisBT の core/summary_api.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3763 2012-03-27 18:42 2010-08-30 Show GitHub Exploit DB Packet Storm
251076 10 危険 IBM - IBM TSM FastBack における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3761 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251077 7.8 危険 IBM - IBM TSM FastBack の FastBackMount.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3760 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251078 10 危険 IBM - IBM TSM FastBack の FastBackMount.exe における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3759 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251079 10 危険 IBM - IBM TSM FastBack の FastBackServer.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3758 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251080 10 危険 IBM - IBM TSM FastBack の _Eventlog 関数における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-3757 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208691 5.5 MEDIUM
Local 		xpdfreader
fedoraproject 		xpdf
fedora 		In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is trying to use the freed `t3GlyphStack->cache`, which causes an `heap-use-after-free` problem. The codes of a pr… - CVE-2020-25725 2024-11-21 14:18 2020-11-21 Show GitHub Exploit DB Packet Storm
208692 9.8 CRITICAL
Network 		microfocus identity_manager NetIQ Identity Manager 4.8 prior to version 4.8 SP2 HF1 are affected by an injection vulnerability. This vulnerability is fixed in NetIQ IdM 4.8 SP2 HF1. CWE-89
SQL Injection 		CVE-2020-25839 2024-11-21 14:18 2020-11-21 Show GitHub Exploit DB Packet Storm
208693 5.3 MEDIUM
Network 		moodle
fedoraproject 		moodle
fedora 		The participants table download in Moodle always included user emails, but should have only done so when users' emails are not hidden. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5 and 3.7 to 3.7.8. … CWE-200
Information Exposure 		CVE-2020-25703 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208694 6.1 MEDIUM
Network 		moodle
fedoraproject 		moodle
fedora 		In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10. CWE-79
Cross-site Scripting 		CVE-2020-25702 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208695 5.3 MEDIUM
Network 		moodle
fedoraproject 		moodle
fedora 		If the upload course tool in Moodle was used to delete an enrollment method which did not exist or was not already enabled, the tool would erroneously enable that enrollment method. This could lead t… CWE-863
 Incorrect Authorization 		CVE-2020-25701 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208696 6.5 MEDIUM
Network 		moodle
fedoraproject 		moodle
fedora 		In moodle, some database module web services allowed students to add entries within groups they did not belong to. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earli… CWE-89
SQL Injection 		CVE-2020-25700 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208697 7.5 HIGH
Network 		moodle
fedoraproject 		moodle
fedora 		In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3.9 to 3.9.2, 3.8 to 3.… CWE-863
 Incorrect Authorization 		CVE-2020-25699 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208698 7.5 HIGH
Network 		moodle
fedoraproject 		moodle
fedora 		Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could lead to them unenrolling users without having permission to do … NVD-CWE-noinfo
CVE-2020-25698 2024-11-21 14:18 2020-11-20 Show GitHub Exploit DB Packet Storm
208699 6.1 MEDIUM
Network 		kyocera ecosys_m2640idw_firmware The web application of Kyocera printer (ECOSYS M2640IDW) is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this v… CWE-79
Cross-site Scripting 		CVE-2020-25890 2024-11-21 14:18 2020-11-18 Show GitHub Exploit DB Packet Storm
208700 5.4 MEDIUM
Network 		limesurvey limesurvey A stored cross-site scripting (XSS) vulnerability in LimeSurvey before and including 3.21.1 allows authenticated users with correct permissions to inject arbitrary web script or HTML via parameter Pa… CWE-79
Cross-site Scripting 		CVE-2020-25798 2024-11-21 14:18 2020-11-18 Show GitHub Exploit DB Packet Storm