Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251411	4.6	警告	OTRS プロジェクト	-	OTRS の Kernel/System/Web/Request.pm におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7276	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

251412	4.3	警告	OTRS プロジェクト	-	OTRS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7275	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

251413	5.8	警告	boka	-	SiteEngine の api.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-7269	2012-03-27 18:42	2010-12-1	Show	GitHub Exploit DB Packet Storm

251414	4	警告	IBM	-	IBM TDS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-6743	2012-03-27 18:42	2011-04-10	Show	GitHub Exploit DB Packet Storm

251415	6.8	警告	IBM	-	IBM TDS の get_filter_list 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-6742	2012-03-27 18:42	2011-04-10	Show	GitHub Exploit DB Packet Storm

251416	4.3	警告	monkeysaudio	-	Monkey's Audio におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2006-7245	2012-03-27 18:42	2011-05-20	Show	GitHub Exploit DB Packet Storm

251417	5	警告	PNG Development Group	-	libpng の pngwutil.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2006-7244	2012-03-27 18:42	2011-08-31	Show	GitHub Exploit DB Packet Storm

251418	5	警告	boka	-	SiteEngine の phpinfo 関数におけるシステム情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-7268	2012-03-27 18:42	2010-12-1	Show	GitHub Exploit DB Packet Storm

251419	7.5	危険	boka	-	SiteEngine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7267	2012-03-27 18:42	2010-12-1	Show	GitHub Exploit DB Packet Storm

251420	4.3	警告	RSAセキュリティ	-	RSA Adaptive Authentication の Shockwave Flash におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7266	2012-03-27 18:42	2010-11-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247501	4.3	MEDIUM Network	jenkins	promoted_builds	An improper authorization vulnerability exists in Jenkins Promoted Builds Plugin 2.31.1 and earlier in Status.java and ManualCondition.java that allow an attacker with read access to jobs to perform …	CWE-863 Incorrect Authorization	CVE-2018-1000114	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247502	5.4	MEDIUM Network	jenkins	testlink	A cross-site scripting vulnerability exists in Jenkins TestLink Plugin 2.12 and earlier in TestLinkBuildAction/summary.jelly and others that allow an attacker who can control e.g. TestLink report nam…	CWE-79 Cross-site Scripting	CVE-2018-1000113	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247503	5.3	MEDIUM Network	jenkins	mercurial	An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and us…	CWE-863 Incorrect Authorization	CVE-2018-1000112	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247504	5.3	MEDIUM Network	jenkins	subversion	An improper authorization vulnerability exists in Jenkins Subversion Plugin version 2.10.2 and earlier in SubversionStatus.java and SubversionRepositoryStatus.java that allows an attacker with networ…	CWE-863 Incorrect Authorization	CVE-2018-1000111	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247505	5.3	MEDIUM Network	jenkins	git	An improper authorization vulnerability exists in Jenkins Git Plugin version 3.7.0 and earlier in GitStatus.java that allows an attacker with network access to obtain a list of nodes and users.	CWE-863 Incorrect Authorization	CVE-2018-1000110	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247506	4.3	MEDIUM Network	jenkins	google-play-android-publisher	An improper authorization vulnerability exists in Jenkins Google Play Android Publisher Plugin version 1.6 and earlier in GooglePlayBuildStepDescriptor.java that allow an attacker to obtain credentia…	CWE-863 Incorrect Authorization	CVE-2018-1000109	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247507	6.1	MEDIUM Network	jenkins	cppncss	A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary Jav…	CWE-79 Cross-site Scripting	CVE-2018-1000108	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247508	6.5	MEDIUM Network	jenkins	job_and_node_ownership	An improper authorization vulnerability exists in Jenkins Job and Node Ownership Plugin 0.11.0 and earlier in OwnershipDescription.java, JobOwnerJobProperty.java, and OwnerNodeProperty.java that allo…	CWE-863 Incorrect Authorization	CVE-2018-1000107	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247509	5.4	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000106	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

247510	4.3	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000105	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm