Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225031 4.7 警告 NovaTech - 複数の Orion Substation Automation Platform 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2822 2013-12-24 18:30 2013-12-18 Show GitHub Exploit DB Packet Storm
225032 7.1 危険 NovaTech - 複数の Orion Substation Automation Platform 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2821 2013-12-24 18:30 2013-12-18 Show GitHub Exploit DB Packet Storm
225033 7.2 危険 クイックヒール・テクノロジーズ・ジャパン株式会社 - Quick Heal AntiVirus Pro の pepoly.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6767 2013-12-24 18:27 2013-12-16 Show GitHub Exploit DB Packet Storm
225034 6.8 警告 Idleman - Leed の action.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2628 2013-12-24 18:06 2013-12-18 Show GitHub Exploit DB Packet Storm
225035 7.5 危険 Idleman - Leed の action.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2627 2013-12-24 18:05 2013-12-18 Show GitHub Exploit DB Packet Storm
225036 4.3 警告 TYPO3 Association - TYPO3 Flow の ActionController ベースクラスの errorAction メソッドにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7082 2013-12-24 17:57 2013-12-10 Show GitHub Exploit DB Packet Storm
225037 4.3 警告 TYPO3 Association - TYPO3 の Backend User Administration モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7077 2013-12-24 17:41 2013-12-10 Show GitHub Exploit DB Packet Storm
225038 4.3 警告 TYPO3 Association - TYPO3 の Extension Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7076 2013-12-24 17:41 2013-12-10 Show GitHub Exploit DB Packet Storm
225039 3.5 注意 TYPO3 Association - TYPO3 の Content Editing Wizards におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7074 2013-12-24 17:40 2013-12-10 Show GitHub Exploit DB Packet Storm
225040 5 警告 iScripts - iScripts AutoHoster におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7190 2013-12-24 16:50 2013-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210631 4.3 MEDIUM
Network 		jenkins mac A cross-site request forgery vulnerability in Jenkins Mac Plugin 1.1.0 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials. CWE-352
 Origin Validation Error 		CVE-2020-2147 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210632 7.4 HIGH
Network 		jenkins mac Jenkins Mac Plugin 1.1.0 and earlier does not validate SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-2146 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210633 5.5 MEDIUM
Local 		jenkins zephyr_enterprise_test_management Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2145 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210634 7.1 HIGH
Network 		jenkins rundeck Jenkins Rundeck Plugin 3.6.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CWE-611
XXE 		CVE-2020-2144 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210635 5.3 MEDIUM
Network 		jenkins logstash Jenkins Logstash Plugin 2.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-2143 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210636 4.3 MEDIUM
Network 		jenkins p4 A missing permission check in Jenkins P4 Plugin 1.10.10 and earlier allows attackers with Overall/Read permission to trigger builds. CWE-862
 Missing Authorization 		CVE-2020-2142 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210637 4.3 MEDIUM
Network 		jenkins p4 A cross-site request forgery vulnerability in Jenkins P4 Plugin 1.10.10 and earlier allows attackers to trigger builds or add a labels in Perforce. CWE-352
 Origin Validation Error 		CVE-2020-2141 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210638 6.1 MEDIUM
Network 		jenkins audit_trail Jenkins Audit Trail Plugin 3.2 and earlier does not escape the error message for the URL Patterns field form validation, resulting in a reflected cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2140 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210639 6.5 MEDIUM
Network 		jenkins cobertura An arbitrary file write vulnerability in Jenkins Cobertura Plugin 1.15 and earlier allows attackers able to control the coverage report file contents to overwrite any file on the Jenkins master file … CWE-22
Path Traversal 		CVE-2020-2139 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
210640 7.1 HIGH
Network 		jenkins cobertura Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CWE-611
XXE 		CVE-2020-2138 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm