Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224041 4.1 警告 オラクル - Oracle Database Server の Spatial における脆弱性 CWE-noinfo
情報不足 		CVE-2014-0378 2014-01-16 14:35 2014-01-14 Show GitHub Exploit DB Packet Storm
224042 4 警告 オラクル - Oracle Database Server の Core RDBMS における SYS テーブルに関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0377 2014-01-16 14:35 2014-01-14 Show GitHub Exploit DB Packet Storm
224043 6.2 警告 Fedora Project - Fedora などのオペレーティングシステムで使用される DeviceKit の DeviceKit-disks におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0746 2014-01-16 14:28 2010-04-6 Show GitHub Exploit DB Packet Storm
224044 5.5 警告 オラクル - Oracle Hyperion の Hyperion Essbase Administration Services における Admin Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0367 2014-01-16 14:19 2014-01-14 Show GitHub Exploit DB Packet Storm
224045 4 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework における Attachments に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0366 2014-01-16 14:13 2014-01-14 Show GitHub Exploit DB Packet Storm
224046 2.8 注意 オラクル - Oracle Siebel CRM の Siebel Life Sciences における Clinical Trip Report に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0370 2014-01-16 14:06 2014-01-14 Show GitHub Exploit DB Packet Storm
224047 5 警告 オラクル - Oracle Siebel CRM の Siebel Core - EAI における Java Integration に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0369 2014-01-16 14:05 2014-01-14 Show GitHub Exploit DB Packet Storm
224048 4.3 警告 オラクル - Oracle iLearning における Learner Pages に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0389 2014-01-16 13:49 2014-01-14 Show GitHub Exploit DB Packet Storm
224049 4.3 警告 オラクル - Oracle Sun Solaris における Java Web Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0390 2014-01-16 13:36 2014-01-14 Show GitHub Exploit DB Packet Storm
224050 4 警告 オラクル - Oracle MySQL の MySQL Server における InnoDB に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5894 2014-01-16 11:58 2014-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199621 6.5 MEDIUM
Network 		otrs otrs Article Bcc fields and agent personal information are shown when customer prints the ticket (PDF) via external interface. This issue affects: OTRS AG OTRS 7.0.x version 7.0.23 and prior versions; 8.0… CWE-200
Information Exposure 		CVE-2021-21435 2024-11-21 14:48 2021-02-8 Show GitHub Exploit DB Packet Storm
199622 4.8 MEDIUM
Network 		otrs survey Survey administrator can craft a survey in such way that malicious code can be executed in the agent interface (i.e. another agent who wants to make changes in the survey). This issue affects: OTRS A… CWE-79
Cross-site Scripting 		CVE-2021-21434 2024-11-21 14:48 2021-02-8 Show GitHub Exploit DB Packet Storm
199623 5.3 MEDIUM
Network 		jenkins jenkins Jenkins 2.275 and LTS 2.263.2 allows reading arbitrary files using the file browser for workspaces and archived artifacts due to a time-of-check to time-of-use (TOCTOU) race condition. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2021-21615 2024-11-21 14:48 2021-01-27 Show GitHub Exploit DB Packet Storm
199624 7.5 HIGH
Network 		zte zxr10_9904_firmware
zxr10_9908_firmware
zxr10_9916_firmware
zxr10_9904-s_firmware
zxr10_9908-s_firmware 		Some ZTE products have a DoS vulnerability. Due to the improper handling of memory release in some specific scenarios, a remote attacker can trigger the vulnerability by performing a series of operat… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-21723 2024-11-21 14:48 2021-01-27 Show GitHub Exploit DB Packet Storm
199625 4.4 MEDIUM
Local 		zte zxv10_b860a_firmware A ZTE Smart STB is impacted by an information leak vulnerability. The device did not fully verify the log, so attackers could use this vulnerability to obtain sensitive user information for further i… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-21722 2024-11-21 14:48 2021-01-15 Show GitHub Exploit DB Packet Storm
199626 5.5 MEDIUM
Local 		jenkins bumblebee_hp_alm Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkin… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-21614 2024-11-21 14:48 2021-01-14 Show GitHub Exploit DB Packet Storm
199627 6.1 MEDIUM
Network 		jenkins tics Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers able to control TICS service respon… CWE-79
Cross-site Scripting 		CVE-2021-21613 2024-11-21 14:48 2021-01-14 Show GitHub Exploit DB Packet Storm
199628 5.5 MEDIUM
Local 		jenkins tracetronic_ecu-test Jenkins TraceTronic ECU-TEST Plugin 2.23.1 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the J… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-21612 2024-11-21 14:48 2021-01-14 Show GitHub Exploit DB Packet Storm
199629 5.4 MEDIUM
Network 		jenkins jenkins Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape display names and IDs of item types shown on the New Item page, resulting in a stored cross-site scripting (XSS) vulnerability explo… CWE-79
Cross-site Scripting 		CVE-2021-21611 2024-11-21 14:48 2021-01-14 Show GitHub Exploit DB Packet Storm
199630 6.1 MEDIUM
Network 		jenkins jenkins Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not implement any restrictions for the URL rendering a formatted preview of markup passed as a query parameter, resulting in a reflected cross-… CWE-79
Cross-site Scripting 		CVE-2021-21610 2024-11-21 14:48 2021-01-14 Show GitHub Exploit DB Packet Storm