Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228881 5 警告 xerver - Xerver HTTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3561 2012-12-20 19:28 2009-10-5 Show GitHub Exploit DB Packet Storm
228882 2.1 注意 レッドハット - Red Hat JBoss Enterprise Application Platform の Twiddle における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3554 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
228883 5 警告 Wireshark - Wireshark の SMB 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-3551 2012-12-20 19:28 2009-10-26 Show GitHub Exploit DB Packet Storm
228884 5 警告 Wireshark - Wireshark の Paltalk 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3549 2012-12-20 19:28 2009-10-26 Show GitHub Exploit DB Packet Storm
228885 5 警告 xerver - Xerver HTTP Server における Web ページに対するソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3544 2012-12-20 19:28 2009-10-5 Show GitHub Exploit DB Packet Storm
228886 7.5 危険 phpgenealogy - PHPGenealogy の CoupleDB.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3541 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
228887 4.3 警告 YourFreeWorld.com - YourFreeWorld Ultra Classifieds Pro の listads.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3540 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
228888 4.3 警告 YourFreeWorld.com - YourFreeWorld Ultra Classifieds Pro におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3539 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
228889 7.5 危険 universe - Universe CMS の vnews.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3531 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
228890 4.3 警告 radscripts - RadScripts RadBids Gold の storefront.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3530 2012-12-20 19:28 2009-10-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
207841 5.4 MEDIUM
Network 		jenkins jenkins Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the tooltip content of help icons, resulting in a stored cross-site scripting (XSS) vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2229 2024-11-21 14:25 2020-08-12 Show GitHub Exploit DB Packet Storm
207842 8.8 HIGH
Network 		jenkins gitlab_authentication Jenkins Gitlab Authentication Plugin 1.5 and earlier does not perform group authorization checks properly, resulting in a privilege escalation vulnerability. CWE-863
 Incorrect Authorization 		CVE-2020-2228 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207843 5.4 MEDIUM
Network 		jenkins deployer_framework Jenkins Deployer Framework Plugin 1.2 and earlier does not escape the URL displayed in the build home page, resulting in a stored cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2227 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207844 5.4 MEDIUM
Network 		jenkins matrix_authorization_strategy Jenkins Matrix Authorization Strategy Plugin 2.6.1 and earlier does not escape user names shown in the configuration, resulting in a stored cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2226 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207845 5.4 MEDIUM
Network 		jenkins matrix_project Jenkins Matrix Project Plugin 1.16 and earlier does not escape the axis names shown in tooltips on the overview page of builds with multiple axes, resulting in a stored cross-site scripting vulnerabi… CWE-79
Cross-site Scripting 		CVE-2020-2225 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207846 5.4 MEDIUM
Network 		jenkins matrix_project Jenkins Matrix Project Plugin 1.16 and earlier does not escape the node names shown in tooltips on the overview page of builds with a single axis, resulting in a stored cross-site scripting vulnerabi… CWE-79
Cross-site Scripting 		CVE-2020-2224 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207847 5.4 MEDIUM
Network 		jenkins jenkins Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape correctly the 'href' attribute of links to downstream jobs displayed in the build console page, resulting in a stored cross-site scr… CWE-79
Cross-site Scripting 		CVE-2020-2223 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207848 5.4 MEDIUM
Network 		jenkins jenkins Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the job name in the 'Keep this build forever' badge tooltip, resulting in a stored cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2222 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207849 6.1 MEDIUM
Network 		oracle primavera_portfolio_management Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Investor Module). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-1… CWE-79
Cross-site Scripting 		CVE-2020-2562 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm
207850 5.4 MEDIUM
Network 		oracle application_express Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker… CWE-79
Cross-site Scripting 		CVE-2020-2513 2024-11-21 14:25 2020-07-16 Show GitHub Exploit DB Packet Storm