Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228771	7.5	危険	SugarCRM	-	SugarCRM における脆弱性	CWE-noinfo 情報不足	CVE-2006-5082	2012-12-20 18:02	2006-09-17	Show	GitHub Exploit DB Packet Storm

228772	7.5	危険	polaring	-	Kristian Niemi Polaring の view/general.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5078	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

228773	2.6	注意	TYPO3 Association	-	TYPO3 用の class.tx_indexedsearch.php エクステンションにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5069	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228774	5.1	警告	zoomstats	-	ZoomStats の libs/dbmax/mysql.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5065	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228775	5.1	警告	stefan ritt	-	Elog におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5063	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228776	5.1	警告	wired community software	-	WWWthreads におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5059	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228777	7.5	危険	web-news	-	Web-News の webnews/template.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5053	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228778	5	警告	rob landley	-	Rob Landley BusyBox の httpd におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5050	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

228779	6.8	警告	waltercedric	-	Joomla! 用の Security Images コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5048	2012-12-20 18:02	2006-07-31	Show	GitHub Exploit DB Packet Storm

228780	7.5	危険	phpartenaire	-	PHPartenaire の dix.php3 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5032	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199281	8.8	HIGH Network	jenkins	literate	Jenkins Literate Plugin 1.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.	CWE-502 Deserialization of Untrusted Data	CVE-2020-2158	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199282	4.3	MEDIUM Network	jenkins	skytap_cloud_ci	Jenkins Skytap Cloud CI Plugin 2.07 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2157	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199283	4.3	MEDIUM Network	jenkins	deployhub	Jenkins DeployHub Plugin 8.0.14 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2156	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199284	5.3	MEDIUM Network	jenkins	openshift_deployer	Jenkins OpenShift Deployer Plugin 1.2.0 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2155	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199285	5.5	MEDIUM Local	jenkins	zephyr_for_jira_test_management	Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier stores its credentials in plain text in a global configuration file on the Jenkins master file system.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-2154	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199286	4.3	MEDIUM Network	jenkins	backlog	Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2153	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199287	6.1	MEDIUM Network	jenkins	subversion_release_manager	Jenkins Subversion Release Manager Plugin 1.2 and earlier does not escape the error message for the Repository URL field form validation, resulting in a reflected cross-site scripting vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-2152	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199288	5.3	MEDIUM Network	jenkins	quality_gates	Jenkins Quality Gates Plugin 2.5 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2151	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199289	5.3	MEDIUM Network	jenkins	sonar_quality_gates	Jenkins Sonar Quality Gates Plugin 1.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2150	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm

199290	5.3	MEDIUM Network	jenkins	repository_connector	Jenkins Repository Connector Plugin 1.2.6 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-2149	2024-11-21 14:24	2020-03-10	Show	GitHub Exploit DB Packet Storm