Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252241	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4920	2012-01-6 15:28	2012-01-4	Show	GitHub Exploit DB Packet Storm

252242	4.3	警告	IBM	-	IBM TFIM および TFIMBG における意図された認証または認証要件を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1386	2012-01-6 15:26	2011-12-13	Show	GitHub Exploit DB Packet Storm

252243	4	警告	IBM	-	IBM AIX 上の invscout.rte における任意のファイルを削除される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-1384	2012-01-6 15:24	2011-12-2	Show	GitHub Exploit DB Packet Storm

252244	4.3	警告	IBM	-	IBM Web Experience Factory におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5048	2012-01-6 15:23	2012-01-3	Show	GitHub Exploit DB Packet Storm

252245	4.3	警告	Electric Sheep Fencing	-	pfSense におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5047	2012-01-6 15:22	2012-01-3	Show	GitHub Exploit DB Packet Storm

252246	7.5	危険	Electric Sheep Fencing	-	pfSense における証明書を作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4197	2012-01-6 15:21	2011-12-20	Show	GitHub Exploit DB Packet Storm

252247	4.3	警告	Splunk	-	Splunk の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4778	2012-01-5 16:29	2011-12-12	Show	GitHub Exploit DB Packet Storm

252248	9.3	危険	Splunk	-	Splunk における任意のファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2011-4644	2012-01-5 16:28	2012-01-3	Show	GitHub Exploit DB Packet Storm

252249	4	警告	Splunk	-	Splunk におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4643	2012-01-5 16:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

252250	4.6	警告	Splunk	-	Splunk の Splunk Web 内にある mappy.py における任意のコードを実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4642	2012-01-5 16:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246761	5.4	MEDIUM Network	jenkins	testlink	A cross-site scripting vulnerability exists in Jenkins TestLink Plugin 2.12 and earlier in TestLinkBuildAction/summary.jelly and others that allow an attacker who can control e.g. TestLink report nam…	CWE-79 Cross-site Scripting	CVE-2018-1000113	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246762	5.3	MEDIUM Network	jenkins	mercurial	An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and us…	CWE-863 Incorrect Authorization	CVE-2018-1000112	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246763	5.3	MEDIUM Network	jenkins	subversion	An improper authorization vulnerability exists in Jenkins Subversion Plugin version 2.10.2 and earlier in SubversionStatus.java and SubversionRepositoryStatus.java that allows an attacker with networ…	CWE-863 Incorrect Authorization	CVE-2018-1000111	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246764	5.3	MEDIUM Network	jenkins	git	An improper authorization vulnerability exists in Jenkins Git Plugin version 3.7.0 and earlier in GitStatus.java that allows an attacker with network access to obtain a list of nodes and users.	CWE-863 Incorrect Authorization	CVE-2018-1000110	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246765	4.3	MEDIUM Network	jenkins	google-play-android-publisher	An improper authorization vulnerability exists in Jenkins Google Play Android Publisher Plugin version 1.6 and earlier in GooglePlayBuildStepDescriptor.java that allow an attacker to obtain credentia…	CWE-863 Incorrect Authorization	CVE-2018-1000109	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246766	6.1	MEDIUM Network	jenkins	cppncss	A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary Jav…	CWE-79 Cross-site Scripting	CVE-2018-1000108	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246767	6.5	MEDIUM Network	jenkins	job_and_node_ownership	An improper authorization vulnerability exists in Jenkins Job and Node Ownership Plugin 0.11.0 and earlier in OwnershipDescription.java, JobOwnerJobProperty.java, and OwnerNodeProperty.java that allo…	CWE-863 Incorrect Authorization	CVE-2018-1000107	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246768	5.4	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000106	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246769	4.3	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000105	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246770	7.8	HIGH Local	jenkins	coverity	A plaintext storage of a password vulnerability exists in Jenkins Coverity Plugin 1.10.0 and earlier in CIMInstance.java that allows an attacker with local file system access or control of a Jenkins …	CWE-522 Insufficiently Protected Credentials	CVE-2018-1000104	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm