Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253161	9	危険	IBM	-	IBM Tivoli Management Framework の Tivoli Endpoint における禁止されたページにリクエストを送信する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2330	2012-03-27 18:43	2011-05-30	Show	GitHub Exploit DB Packet Storm

253162	6.5	警告	Apache Software Foundation	-	Apache Rampart の rampart_timestamp_token_validate 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2329	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

253163	4.3	警告	Novell marcus schafer	-	SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2226	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

253164	9.3	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における脆弱性	CWE-noinfo 情報不足	CVE-2011-2225	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

253165	4.3	警告	Novell	-	Novell Data Synchronizer の Mobility Pack におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2224	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

253166	5	警告	Novell	-	Novell Data Synchronizer の Mobility Pack における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-2223	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

253167	4.3	警告	Novell	-	WebAdmin における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2011-2222	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

253168	5	警告	Novell	-	Novell Data Synchronizer の Mobility Pack におけるWebAdmin 認証を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2221	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

253169	10	危険	Novell	-	Novell File Reporter Engine の NFREngine.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2220	2012-03-27 18:43	2011-06-27	Show	GitHub Exploit DB Packet Storm

253170	9.3	危険	VMware tomsawyer	-	VI Client で使用される Tom Sawyer GET Extension Factory の特定の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2217	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245491	6.5	MEDIUM Network	agiletestware	pangolin_connector_for_testrail	A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to ove…	CWE-269 Improper Privilege Management	CVE-2018-1999032	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245492	6.5	MEDIUM Network	jenkins	meliora_testlab	An exposure of sensitive information vulnerability exists in Jenkins meliora-testlab Plugin 1.14 and earlier in TestlabNotifier.java that allows attackers with file system access to the Jenkins maste…	CWE-200 Information Exposure	CVE-2018-1999031	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245493	5.4	MEDIUM Network	jenkins	maven_artifact_choicelistprovider_\(nexus\)	An exposure of sensitive information vulnerability exists in Jenkins Maven Artifact ChoiceListProvider (Nexus) Plugin 1.3.1 and earlier in ArtifactoryChoiceListProvider.java, NexusChoiceListProvider.…	CWE-200 Information Exposure	CVE-2018-1999030	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245494	5.4	MEDIUM Network	jenkins	shelve_project	A cross-site scripting vulnerability exists in Jenkins Shelve Project Plugin 1.5 and earlier in ShelveProjectAction/index.jelly, ShelvedProjectsAction/index.jelly that allows attackers with Job/Confi…	CWE-79 Cross-site Scripting	CVE-2018-1999029	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245495	8.8	HIGH Network	jenkins	accurev	An exposure of sensitive information vulnerability exists in Jenkins Accurev Plugin 0.7.16 and earlier in AccurevSCM.java that allows attackers to capture credentials with a known credentials ID stor…	CWE-200 Information Exposure	CVE-2018-1999028	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245496	7.5	HIGH Network	jenkins	saltstack	An exposure of sensitive information vulnerability exists in Jenkins SaltStack Plugin 3.1.6 and earlier in SaltAPIBuilder.java, SaltAPIStep.java that allows attackers to capture credentials with a kn…	CWE-352 Origin Validation Error	CVE-2018-1999027	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245497	6.5	MEDIUM Network	jenkins	tracetronic_ecu-test	A server-side request forgery vulnerability exists in Jenkins TraceTronic ECU-TEST Plugin 2.3 and earlier in ATXPublisher.java that allows attackers to have Jenkins send HTTP requests to an attacker-…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-1999026	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245498	7.4	HIGH Network	jenkins	tracetronic_ecu-test	A man in the middle vulnerability exists in Jenkins TraceTronic ECU-TEST Plugin 2.3 and earlier in ATXPublisher.java, ATXValidator.java that allows attackers to impersonate any service that Jenkins c…	CWE-295 Improper Certificate Validation	CVE-2018-1999025	2024-11-21 12:57	2018-08-1	Show	GitHub Exploit DB Packet Storm

245499	5.4	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in the Stapler web framework's org/kohsuke/stapler/Stapler.java that allows attackers with the ability to…	CWE-79 Cross-site Scripting	CVE-2018-1999007	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245500	4.3	MEDIUM Network	jenkins	jenkins	A exposure of sensitive information vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Plugin.java that allows attackers to determine the date and time when a plugin HPI/JPI fi…	CWE-200 Information Exposure	CVE-2018-1999006	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm