Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251041	7.5	危険	Eucalyptus Systems	-	Eucalyptus の管理者のインターフェースのパスワードリセット機能における権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-3905	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

251042	5	警告	infradead	-	OpenConnect におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3903	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251043	5	警告	infradead	-	OpenConnect における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3902	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251044	6.4	警告	infradead	-	OpenConnect における任意の AnyConnect SSL VPN サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3901	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251045	5.8	警告	christian dywan	-	Midori における任意の HTTPS Web サイトになりすまされる脆弱性	CWE-Other その他	CVE-2010-3900	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251046	5	警告	IBM	-	IBM OmniFind におけるサービス運用妨害 (DoS) 状態となる脆弱性	CWE-399 リソース管理の問題	CVE-2010-3899	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251047	5	警告	IBM	-	IBM OmniFind における認証を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3898	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251048	5	警告	IBM	-	IBM OmniFind の ESSearchApplication/palette.do における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-3897	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251049	7.5	危険	IBM	-	IBM OmniFind の ESSearchApplication ディレクトリツリーにおけるサーバ設定を変更される脆弱性	CWE-287 不適切な認証	CVE-2010-3896	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251050	7.2	危険	IBM	-	IBM OmniFind の esRunCommand における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3895	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248021	5.4	MEDIUM Network	rebuild_project	rebuild	A cross-site scripting vulnerability exists in Jenkins Rebuilder Plugin 1.28 and earlier in RebuildAction/BooleanParameterValue.jelly, RebuildAction/ExtendedChoiceParameterValue.jelly, RebuildAction/…	CWE-79 Cross-site Scripting	CVE-2018-1000415	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248022	8.1	HIGH Network	jenkins	config_file_provider	A cross-site request forgery vulnerability exists in Jenkins Config File Provider Plugin 3.1 and earlier in ConfigFilesManagement.java, FolderConfigFileAction.java that allows creating and editing co…	CWE-352 Origin Validation Error	CVE-2018-1000414	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248023	5.4	MEDIUM Network	jenkins	config_file_provider	A cross-site scripting vulnerability exists in Jenkins Config File Provider Plugin 3.1 and earlier in configfiles.jelly, providerlist.jelly that allows users with the ability to configure configurati…	CWE-79 Cross-site Scripting	CVE-2018-1000413	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248024	8.8	HIGH Network	jenkins	jira	An improper authorization vulnerability exists in Jenkins Jira Plugin 3.0.1 and earlier in JiraSite.java that allows attackers with Overall/Read access to have Jenkins connect to an attacker-specifie…	CWE-863 Incorrect Authorization	CVE-2018-1000412	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248025	6.5	MEDIUM Network	jenkins	junit	A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result.	CWE-352 Origin Validation Error	CVE-2018-1000411	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248026	7.8	HIGH Local	jenkins	jenkins	An information exposure vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier, and the Stapler framework used by these releases, in core/src/main/java/org/kohsuke/stapler/Request…	CWE-200 Information Exposure	CVE-2018-1000410	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248027	5.4	MEDIUM Network	jenkins	jenkins	A session fixation vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that prevented Jenkins from invalid…	CWE-384 Session Fixation	CVE-2018-1000409	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248028	6.5	MEDIUM Network	jenkins	jenkins	A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Over…	NVD-CWE-noinfo	CVE-2018-1000408	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248029	6.1	MEDIUM Network	jenkins	jenkins	A cross-site scripting vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/Api.java that allows attackers to specify URLs to Jenkins that res…	CWE-79 Cross-site Scripting	CVE-2018-1000407	2024-11-21 12:40	2019-01-10	Show	GitHub Exploit DB Packet Storm

248030	7.5	HIGH Network	frontaccounting	frontaccounting	FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the attacker to grab the entire database of the applicat…	CWE-89 SQL Injection	CVE-2018-1000890	2024-11-21 12:40	2018-12-29	Show	GitHub Exploit DB Packet Storm