Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253051 5 警告 富士通 - Interstage Portalworks および Interstage Interaction Manager のポータル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-06-17 18:33 2010-05-28 Show GitHub Exploit DB Packet Storm
253052 10 危険 シスコシステムズ - Cisco Mediator Framework におけるパスワードおよびアカウントの詳細を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0600 2010-06-16 18:32 2010-05-26 Show GitHub Exploit DB Packet Storm
253053 9.3 危険 シスコシステムズ - Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0599 2010-06-16 18:32 2010-05-26 Show GitHub Exploit DB Packet Storm
253054 9.3 危険 シスコシステムズ - Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0598 2010-06-16 18:31 2010-05-26 Show GitHub Exploit DB Packet Storm
253055 9 危険 シスコシステムズ - Cisco Mediator Framework におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0597 2010-06-16 18:31 2010-05-26 Show GitHub Exploit DB Packet Storm
253056 9 危険 シスコシステムズ - Cisco Mediator Framework における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0596 2010-06-16 18:31 2010-05-26 Show GitHub Exploit DB Packet Storm
253057 10 危険 シスコシステムズ - Cisco Mediator Framework におけるアクセス権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0595 2010-06-16 18:31 2010-05-26 Show GitHub Exploit DB Packet Storm
253058 4 警告 サイバートラスト株式会社
MIT Kerberos
ターボリナックス
レッドハット		 - MIT Kerberos の kadmind におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0629 2010-06-16 16:17 2010-04-6 Show GitHub Exploit DB Packet Storm
253059 6.4 警告 OpenSSL Project - OpenSSL の EVP_PKEY_verify_recover 関数における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1633 2010-06-15 18:26 2010-06-1 Show GitHub Exploit DB Packet Storm
253060 3.6 注意 レッドハット - RHEL の yum-rhn-plugin における Red Hat Network プロファイルを閲覧される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1439 2010-06-15 18:25 2010-06-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255831 4.3 MEDIUM
Network 		jenkins blue_ocean Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines … CWE-287
Improper Authentication 		CVE-2017-1000110 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255832 6.1 MEDIUM
Network 		jenkins owasp_dependency-check The custom Details view of the Static Analysis Utilities based OWASP Dependency-Check Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the i… CWE-79
Cross-site Scripting 		CVE-2017-1000109 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255833 7.5 HIGH
Network 		jenkins pipeline-input-step The Pipeline: Input Step Plugin by default allowed users with Item/Read access to a pipeline to interact with the step to provide input. This has been changed, and now requires users to have the Item… CWE-200
Information Exposure 		CVE-2017-1000108 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255834 8.8 HIGH
Network 		jenkins script_security Script Security Plugin did not apply sandboxing restrictions to constructor invocations via positional arguments list, super constructor invocations, method references, and type coercion expressions.… NVD-CWE-noinfo
CVE-2017-1000107 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255835 5.3 MEDIUM
Network 		jenkins blue_ocean The optional Run/Artifacts permission can be enabled by setting a Java system property. Blue Ocean did not check this permission before providing access to archived artifacts, Item/Read permission wa… CWE-862
 Missing Authorization 		CVE-2017-1000105 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255836 5.4 MEDIUM
Network 		jenkins dry The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin… CWE-79
Cross-site Scripting 		CVE-2017-1000103 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255837 5.4 MEDIUM
Network 		jenkins static_analysis_utilities The Details view of some Static Analysis Utilities based plugins, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to these plugins, for e… CWE-79
Cross-site Scripting 		CVE-2017-1000102 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255838 8.5 HIGH
Network 		jenkins blue_ocean Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines … CWE-287
Improper Authentication 		CVE-2017-1000106 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255839 6.5 MEDIUM
Network 		jenkins config_file_provider The Config File Provider Plugin is used to centrally manage configuration files that often include secrets, such as passwords. Users with only Overall/Read access to Jenkins were able to access URLs … CWE-269
 Improper Privilege Management 		CVE-2017-1000104 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm
255840 6.5 MEDIUM
Network 		haxx curl curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numeri… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000101 2024-11-21 12:04 2017-10-5 Show GitHub Exploit DB Packet Storm