Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225501	4	警告	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server Parser に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3783	2013-11-1 10:31	2013-07-16	Show	GitHub Exploit DB Packet Storm

225502	7.2	危険	オラクル	-	Oracle Database Server の Oracle executable における脆弱性	CWE-noinfo 情報不足	CVE-2013-3771	2013-11-1 10:27	2013-07-16	Show	GitHub Exploit DB Packet Storm

225503	7.2	危険	オラクル	-	Oracle Database Server の Oracle executable における脆弱性	CWE-noinfo 情報不足	CVE-2013-3760	2013-11-1 10:24	2013-07-16	Show	GitHub Exploit DB Packet Storm

225504	4	警告	GNU Project	-	GnuTLS の TLS の実装における識別攻撃およびプレーンテキストリカバリ攻撃を誘発される脆弱性	CWE-310 暗号の問題	CVE-2013-1619	2013-10-31 19:14	2013-02-8	Show	GitHub Exploit DB Packet Storm

225505	3.3	注意	Apache Software Foundation	-	Apache Subversion の Svnserve における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4277	2013-10-31 19:07	2013-08-30	Show	GitHub Exploit DB Packet Storm

225506	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-3363	2013-10-31 19:05	2013-09-10	Show	GitHub Exploit DB Packet Storm

225507	7.2	危険	Linux レッドハット	-	Linux Kernel の ftrace の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-3301	2013-10-31 19:01	2013-04-16	Show	GitHub Exploit DB Packet Storm

225508	3.5	注意	WordPress.org	-	WordPress の wp-admin/includes/post.php における投稿者になりすまされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4340	2013-10-31 18:50	2013-09-10	Show	GitHub Exploit DB Packet Storm

225509	7.5	危険	WordPress.org	-	WordPress におけるリダイレクション制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-4339	2013-10-31 18:50	2013-09-10	Show	GitHub Exploit DB Packet Storm

225510	7.5	危険	WordPress.org	-	WordPress の wp-includes/functions.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-4338	2013-10-31 18:50	2013-09-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209931	5.3	MEDIUM Network	jenkins	quality_gates	Jenkins Quality Gates Plugin 2.5 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2151	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209932	5.3	MEDIUM Network	jenkins	sonar_quality_gates	Jenkins Sonar Quality Gates Plugin 1.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2150	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209933	5.3	MEDIUM Network	jenkins	repository_connector	Jenkins Repository Connector Plugin 1.2.6 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2149	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209934	4.3	MEDIUM Network	jenkins	mac	A missing permission check in Jenkins Mac Plugin 1.1.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials.	CWE-863 Incorrect Authorization	CVE-2020-2148	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209935	4.3	MEDIUM Network	jenkins	mac	A cross-site request forgery vulnerability in Jenkins Mac Plugin 1.1.0 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials.	CWE-352 Origin Validation Error	CVE-2020-2147	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209936	7.4	HIGH Network	jenkins	mac	Jenkins Mac Plugin 1.1.0 and earlier does not validate SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-2146	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209937	5.5	MEDIUM Local	jenkins	zephyr_enterprise_test_management	Jenkins Zephyr Enterprise Test Management Plugin 1.9.1 and earlier stores its Zephyr password in plain text on the Jenkins master file system.	CWE-522 Insufficiently Protected Credentials	CVE-2020-2145	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209938	7.1	HIGH Network	jenkins	rundeck	Jenkins Rundeck Plugin 3.6.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	CWE-611 XXE	CVE-2020-2144	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209939	5.3	MEDIUM Network	jenkins	logstash	Jenkins Logstash Plugin 2.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2143	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

209940	4.3	MEDIUM Network	jenkins	p4	A missing permission check in Jenkins P4 Plugin 1.10.10 and earlier allows attackers with Overall/Read permission to trigger builds.	CWE-862 Missing Authorization	CVE-2020-2142	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed