Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254191	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0034	2010-03-2 11:29	2010-02-9	Show	GitHub Exploit DB Packet Storm

254192	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0033	2010-03-2 11:28	2010-02-9	Show	GitHub Exploit DB Packet Storm

254193	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 CWE-Other	CVE-2010-0032	2010-03-2 11:28	2010-02-9	Show	GitHub Exploit DB Packet Storm

254194	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0031	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

254195	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0030	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

254196	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0029	2010-03-2 11:26	2010-02-9	Show	GitHub Exploit DB Packet Storm

254197	10	危険	マイクロソフト	-	Microsoft Office の MSO.DLL におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0243	2010-03-1 11:37	2010-02-9	Show	GitHub Exploit DB Packet Storm

254198	9.3	危険	マイクロソフト	-	Microsoft DirectX の DirectShow におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0250	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

254199	7.8	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0242	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

254200	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0241	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256741	4.3	MEDIUM Network	jenkins	dependency_graph_viewer	Jenkins Dependency Graph Viewer plugin 0.12 and earlier did not perform permission checks for the API endpoint that modifies the dependency graph, allowing anyone with Overall/Read permission to modi…	CWE-862 Missing Authorization	CVE-2017-1000388	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256742	6.1	MEDIUM Network	jenkins	global-build-stats	Some URLs provided by Jenkins global-build-stats plugin version 1.4 and earlier returned a JSON response that contained request parameters. These responses had the Content Type: text/html, so could h…	CWE-79 Cross-site Scripting	CVE-2017-1000389	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256743	7.8	HIGH Local	jenkins	build-publisher	Jenkins Build-Publisher plugin version 1.21 and earlier stores credentials to other Jenkins instances in the file hudson.plugins.build_publisher.BuildPublisher.xml in the Jenkins master home director…	CWE-522 Insufficiently Protected Credentials	CVE-2017-1000387	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256744	5.4	MEDIUM Network	jenkins	active_choices	Jenkins Active Choices plugin version 1.5.3 and earlier allowed users with Job/Configure permission to provide arbitrary HTML to be shown on the 'Build With Parameters' page through the 'Active Choic…	CWE-79 Cross-site Scripting	CVE-2017-1000386	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256745	6.5	MEDIUM Network	jenkins	script_security	In Jenkins Script Security Plugin version 1.36 and earlier, users with the ability to configure sandboxed Groovy scripts are able to use a type coercion feature in Groovy to create new `File` objects…	CWE-200 Information Exposure	CVE-2017-1000505	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256746	7.5	HIGH Network	impulseadventure	jpegsnoop	ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode handling resulting denial of service.	CWE-369 Divide By Zero	CVE-2017-1000414	2024-11-21 12:04	2018-01-26	Show	GitHub Exploit DB Packet Storm

256747	8.1	HIGH Network	jenkins	jenkins	A race condition during Jenkins 2.94 and earlier; 2.89.1 and earlier startup could result in the wrong order of execution of commands during initialization. There is a very short window of time after…	CWE-352 Origin Validation Error	CVE-2017-1000504	2024-11-21 12:04	2018-01-25	Show	GitHub Exploit DB Packet Storm

256748	8.1	HIGH Network	jenkins	jenkins	A race condition during Jenkins 2.81 through 2.94 (inclusive); 2.89.1 startup could result in the wrong order of execution of commands during initialization. This could in rare cases result in failur…	CWE-362 Race Condition	CVE-2017-1000503	2024-11-21 12:04	2018-01-25	Show	GitHub Exploit DB Packet Storm

256749	8.8	HIGH Network	jenkins	ec2	Users with permission to create or configure agents in Jenkins 1.37 and earlier could configure an EC2 agent to run arbitrary shell commands on the master node whenever the agent was supposed to be l…	CWE-78 OS Command	CVE-2017-1000502	2024-11-21 12:04	2018-01-25	Show	GitHub Exploit DB Packet Storm

256750	9.8	CRITICAL Network	vehicle_sales_management_system_project	vehicle_sales_management_system	Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is vulnerable to multiple SQL Injecting in login/vehicle.php, login/profile.php, login/Actions.php, login/manage_employee.php, and …	CWE-89 SQL Injection	CVE-2017-1000474	2024-11-21 12:04	2018-01-25	Show	GitHub Exploit DB Packet Storm