Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251901	9.3	危険	LuraTech	-	LuraWave JP2 ActiveX Control におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0977	2012-02-7 16:12	2012-02-2	Show	GitHub Exploit DB Packet Storm

251902	2.1	注意	SilverStripe	-	SilverStripe の admin/EditForm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0976	2012-02-7 16:10	2012-02-2	Show	GitHub Exploit DB Packet Storm

251903	4.3	警告	Clixint Technologies	-	Image Hosting Script DPI の misc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0975	2012-02-7 16:00	2012-02-2	Show	GitHub Exploit DB Packet Storm

251904	7.8	危険	FreeBSD NetBSD	-	複数の BSD-based オペレーティングシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2393	2012-02-7 15:51	2012-02-2	Show	GitHub Exploit DB Packet Storm

251905	5	警告	Linux	-	Linux kernel におけるネットワーク盗聴を検出される脆弱性	CWE-200 情報漏えい	CVE-2010-4563	2012-02-7 15:50	2012-02-2	Show	GitHub Exploit DB Packet Storm

251906	4.3	警告	マイクロソフト	-	Microsoft Windows におけるネットワーク盗聴を検出される問題	CWE-200 情報漏えい	CVE-2010-4562	2012-02-7 15:44	2012-02-2	Show	GitHub Exploit DB Packet Storm

251907	4	警告	Mozilla Foundation	-	Bugzilla における他のユーザアカウントを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0448	2012-02-6 16:51	2011-12-31	Show	GitHub Exploit DB Packet Storm

251908	10	危険	ヒューレット・パッカード	-	HP Data Protector Media Operations における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4791	2012-02-6 16:44	2012-02-1	Show	GitHub Exploit DB Packet Storm

251909	5.1	警告	Mozilla Foundation	-	Bugzilla の jsonrpc.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0440	2012-02-6 16:35	2012-01-15	Show	GitHub Exploit DB Packet Storm

251910	7.2	危険	アップル	-	Apple Mac OS X の WebDAV Sharing における権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2011-3463	2012-02-6 16:34	2012-02-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274381	-	redhat jenkins	openshift jenkins	Jenkins before 1.638 and LTS before 1.625.2 allow attackers to bypass intended slave-to-master access restrictions by leveraging a JNLP slave. NOTE: this vulnerability exists because of an incomplete…	CWE-284 Improper Access Control	CVE-2015-5325	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274382	-	jenkins redhat	jenkins openshift	Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to queue/api.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-5324	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274383	-	redhat jenkins	openshift jenkins	Jenkins before 1.638 and LTS before 1.625.2 do not properly restrict access to API tokens which might allow remote administrators to gain privileges and run scripts by using an API token of another u…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-5323	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274384	-	redhat jenkins	openshift jenkins	Directory traversal vulnerability in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to list directory contents and read arbitrary files in the Jenkins servlet resources via direc…	CWE-22 Path Traversal	CVE-2015-5322	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274385	-	redhat jenkins	openshift jenkins	The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the page…	CWE-200 Information Exposure	CVE-2015-5321	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274386	-	redhat jenkins	openshift jenkins	Jenkins before 1.638 and LTS before 1.625.2 do not properly verify the shared secret used in JNLP slave connections, which allows remote attackers to connect as slaves and obtain sensitive informatio…	CWE-200 Information Exposure	CVE-2015-5320	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274387	-	redhat jenkins	openshift jenkins	XML external entity (XXE) vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration th…	NVD-CWE-Other	CVE-2015-5319	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274388	-	jenkins redhat	jenkins openshift	Jenkins before 1.638 and LTS before 1.625.2 uses a publicly accessible salt to generate CSRF protection tokens, which makes it easier for remote attackers to bypass the CSRF protection mechanism via …	CWE-352 Origin Validation Error	CVE-2015-5318	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274389	-	openstack	ironic_inspector	OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by trigge…	CWE-254 7PK - Security Features	CVE-2015-5306	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm

274390	-	redhat	gluster_storage	OpenStack Swift-on-File (aka Swiftonfile) does not properly restrict use of the pickle Python module when loading metadata, which allows remote authenticated users to execute arbitrary code via a cra…	CWE-94 Code Injection	CVE-2015-5242	2024-11-21 11:32	2015-11-26	Show	GitHub Exploit DB Packet Storm