Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259591 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3649 2011-02-2 15:06 2010-11-4 Show GitHub Exploit DB Packet Storm
259592 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3648 2011-02-2 15:06 2010-11-4 Show GitHub Exploit DB Packet Storm
259593 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3647 2011-02-2 15:05 2010-11-4 Show GitHub Exploit DB Packet Storm
259594 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3646 2011-02-2 15:05 2010-11-4 Show GitHub Exploit DB Packet Storm
259595 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3645 2011-02-2 15:05 2010-11-4 Show GitHub Exploit DB Packet Storm
259596 10 危険 アドバンテック株式会社 - Advantech Studio Test Web Server にバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0488 2011-02-2 15:00 2011-01-13 Show GitHub Exploit DB Packet Storm
259597 10 危険 WellinTech - WellinTech KingView 6.53 にヒープオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0406 2011-02-2 14:59 2011-01-13 Show GitHub Exploit DB Packet Storm
259598 6.8 警告 PNG Development Group - libpng 1.5.0 の png_set_rgb_to_gray() 関数に脆弱性 CWE-189
数値処理の問題
CVE-2011-0408 2011-02-2 14:59 2011-01-12 Show GitHub Exploit DB Packet Storm
259599 5 警告 PolyVision - PolyVision RoomWizard に脆弱性 CWE-200
情報漏えい
CVE-2010-0214 2011-02-2 14:59 2011-01-11 Show GitHub Exploit DB Packet Storm
259600 5.1 警告 Opera Software ASA - Opera における実行ファイル読み込みに関する脆弱性 CWE-Other
その他
CVE-2011-0450 2011-02-2 14:02 2011-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254411 8.8 HIGH
Network
jenkins jira An improper authorization vulnerability exists in Jenkins Jira Plugin 3.0.1 and earlier in JiraSite.java that allows attackers with Overall/Read access to have Jenkins connect to an attacker-specifie… CWE-863
 Incorrect Authorization
CVE-2018-1000412 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254412 6.5 MEDIUM
Network
jenkins junit A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result. CWE-352
 Origin Validation Error
CVE-2018-1000411 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254413 7.8 HIGH
Local
jenkins jenkins An information exposure vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier, and the Stapler framework used by these releases, in core/src/main/java/org/kohsuke/stapler/Request… CWE-200
Information Exposure
CVE-2018-1000410 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254414 5.4 MEDIUM
Network
jenkins jenkins A session fixation vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that prevented Jenkins from invalid… CWE-384
 Session Fixation
CVE-2018-1000409 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254415 6.5 MEDIUM
Network
jenkins jenkins A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Over… NVD-CWE-noinfo
CVE-2018-1000408 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254416 6.1 MEDIUM
Network
jenkins jenkins A cross-site scripting vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/Api.java that allows attackers to specify URLs to Jenkins that res… CWE-79
Cross-site Scripting
CVE-2018-1000407 2024-11-21 12:40 2019-01-10 Show GitHub Exploit DB Packet Storm
254417 7.5 HIGH
Network
frontaccounting frontaccounting FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the attacker to grab the entire database of the applicat… CWE-89
SQL Injection
CVE-2018-1000890 2024-11-21 12:40 2018-12-29 Show GitHub Exploit DB Packet Storm
254418 8.8 HIGH
Network
logisim-evolution_project logisim-evolution Logisim Evolution version 2.14.3 and earlier contains an XML External Entity (XXE) vulnerability in Circuit file loading functionality (loadXmlFrom in src/com/cburch/logisim/file/XmlReader.java) that… CWE-611
XXE
CVE-2018-1000889 2024-11-21 12:40 2018-12-29 Show GitHub Exploit DB Packet Storm
254419 4.8 MEDIUM
Network
peel peel_shopping Peel shopping peel-shopping_9_1_0 version contains a Cross Site Scripting (XSS) vulnerability that can result in an authenticated user injecting java script code in the "Site Name EN" parameter. This… CWE-79
Cross-site Scripting
CVE-2018-1000887 2024-11-21 12:40 2018-12-29 Show GitHub Exploit DB Packet Storm
254420 9.8 CRITICAL
Network
battelle v2i_hub Battelle V2I Hub 3.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the tmx/TmxCtl/src/lib/PluginStatus.cpp and TmxControl::user_info() function, whi… CWE-89
SQL Injection
CVE-2018-1000631 2024-11-21 12:40 2018-12-29 Show GitHub Exploit DB Packet Storm