Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252261	4.3	警告	gphemsley	-	SASHA の inc/lib/lib.base.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5042	2012-01-5 16:11	2011-12-30	Show	GitHub Exploit DB Packet Storm

252262	4.3	警告	PulseCMS	-	Pulse Pro CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5041	2012-01-5 16:10	2011-12-30	Show	GitHub Exploit DB Packet Storm

252263	4.3	警告	Infoproject	-	Infoproject Biznis Heroj におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5040	2012-01-5 14:27	2011-12-30	Show	GitHub Exploit DB Packet Storm

252264	7.5	危険	Infoproject	-	Infoproject Biznis Heroj における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5039	2012-01-5 14:26	2011-12-30	Show	GitHub Exploit DB Packet Storm

252265	7.5	危険	hitCode	-	hitCode hitAppoint における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5038	2012-01-5 14:24	2011-12-30	Show	GitHub Exploit DB Packet Storm

252266	4.4	警告	ConfigServer	-	ConfigServer Security & Firewall におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5033	2012-01-5 14:21	2011-12-10	Show	GitHub Exploit DB Packet Storm

252267	4.9	警告	WinMount	-	WinMount の WMDrive.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-5032	2012-01-5 14:20	2011-12-29	Show	GitHub Exploit DB Packet Storm

252268	7.5	危険	Shilpi Computers Limited.	-	cApexWEB の servlet/capexweb.parentvalidatepassword における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5031	2012-01-5 14:19	2011-12-29	Show	GitHub Exploit DB Packet Storm

252269	3.5	注意	valthebald	-	Drupal 用 Meta tags quick モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5030	2012-01-5 14:18	2011-12-14	Show	GitHub Exploit DB Packet Storm

252270	4.3	警告	Alexander Palmo	-	Simple PHP Blog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5029	2012-01-5 11:07	2011-12-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246761	5.4	MEDIUM Network	jenkins	testlink	A cross-site scripting vulnerability exists in Jenkins TestLink Plugin 2.12 and earlier in TestLinkBuildAction/summary.jelly and others that allow an attacker who can control e.g. TestLink report nam…	CWE-79 Cross-site Scripting	CVE-2018-1000113	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246762	5.3	MEDIUM Network	jenkins	mercurial	An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and us…	CWE-863 Incorrect Authorization	CVE-2018-1000112	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246763	5.3	MEDIUM Network	jenkins	subversion	An improper authorization vulnerability exists in Jenkins Subversion Plugin version 2.10.2 and earlier in SubversionStatus.java and SubversionRepositoryStatus.java that allows an attacker with networ…	CWE-863 Incorrect Authorization	CVE-2018-1000111	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246764	5.3	MEDIUM Network	jenkins	git	An improper authorization vulnerability exists in Jenkins Git Plugin version 3.7.0 and earlier in GitStatus.java that allows an attacker with network access to obtain a list of nodes and users.	CWE-863 Incorrect Authorization	CVE-2018-1000110	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246765	4.3	MEDIUM Network	jenkins	google-play-android-publisher	An improper authorization vulnerability exists in Jenkins Google Play Android Publisher Plugin version 1.6 and earlier in GooglePlayBuildStepDescriptor.java that allow an attacker to obtain credentia…	CWE-863 Incorrect Authorization	CVE-2018-1000109	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246766	6.1	MEDIUM Network	jenkins	cppncss	A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary Jav…	CWE-79 Cross-site Scripting	CVE-2018-1000108	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246767	6.5	MEDIUM Network	jenkins	job_and_node_ownership	An improper authorization vulnerability exists in Jenkins Job and Node Ownership Plugin 0.11.0 and earlier in OwnershipDescription.java, JobOwnerJobProperty.java, and OwnerNodeProperty.java that allo…	CWE-863 Incorrect Authorization	CVE-2018-1000107	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246768	5.4	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000106	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246769	4.3	MEDIUM Network	jenkins	gerrit_trigger	An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…	CWE-863 Incorrect Authorization	CVE-2018-1000105	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

246770	7.8	HIGH Local	jenkins	coverity	A plaintext storage of a password vulnerability exists in Jenkins Coverity Plugin 1.10.0 and earlier in CIMInstance.java that allows an attacker with local file system access or control of a Jenkins …	CWE-522 Insufficiently Protected Credentials	CVE-2018-1000104	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm