Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228891 2.6 注意 サン・マイクロシステムズ - Solaris の rm の -r および -R オプションを伴うディレクトリの再帰的削除における rm を稼働しているユーザとしてファイルなどを削除される脆弱性 - CVE-2007-0895 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
228892 6.8 警告 rainbow portal - sRainbow の jira/secure/BrowseProject.jspa におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0885 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228893 7.5 危険 Roaring Penguin Software Inc. - Roaring Penguin MIMEDefang におけるバッファオーバーフローの脆弱性 - CVE-2007-0884 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228894 5 警告 second rule llc - IP3 NetAccess の portalgroups/portalgroups/getfile.cgi におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0883 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228895 9.3 危険 smidgeonsoft - SmidgeonSoft PEBrowse Professional におけるバッファオーバーフローの脆弱性 - CVE-2007-0879 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228896 4.3 警告 qdig - Qdig におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0876 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228897 5 警告 plain old webserver - Mozilla Firefox 用の POW アドオンにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-0872 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
228898 5 警告 Yahoo! - Yahoo! Messenger の Chat Room 機能におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0868 2012-12-20 18:19 2007-02-9 Show GitHub Exploit DB Packet Storm
228899 7.5 危険 site-assistant - Site-Assistant の classes/menu.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0867 2012-12-20 18:19 2007-02-9 Show GitHub Exploit DB Packet Storm
228900 6.8 警告 RARLAB - WinRAR などの製品に同梱されている RARLabs Unrar におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-0855 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200091 7.1 HIGH
Network 		jenkins rundeck Jenkins Rundeck Plugin 3.6.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CWE-611
XXE 		CVE-2020-2144 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200092 5.3 MEDIUM
Network 		jenkins logstash Jenkins Logstash Plugin 2.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-2143 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200093 4.3 MEDIUM
Network 		jenkins p4 A missing permission check in Jenkins P4 Plugin 1.10.10 and earlier allows attackers with Overall/Read permission to trigger builds. CWE-862
 Missing Authorization 		CVE-2020-2142 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200094 4.3 MEDIUM
Network 		jenkins p4 A cross-site request forgery vulnerability in Jenkins P4 Plugin 1.10.10 and earlier allows attackers to trigger builds or add a labels in Perforce. CWE-352
 Origin Validation Error 		CVE-2020-2141 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200095 6.1 MEDIUM
Network 		jenkins audit_trail Jenkins Audit Trail Plugin 3.2 and earlier does not escape the error message for the URL Patterns field form validation, resulting in a reflected cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2140 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200096 6.5 MEDIUM
Network 		jenkins cobertura An arbitrary file write vulnerability in Jenkins Cobertura Plugin 1.15 and earlier allows attackers able to control the coverage report file contents to overwrite any file on the Jenkins master file … CWE-22
Path Traversal 		CVE-2020-2139 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200097 7.1 HIGH
Network 		jenkins cobertura Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CWE-611
XXE 		CVE-2020-2138 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200098 4.8 MEDIUM
Network 		jenkins timestamper Jenkins Timestamper Plugin 1.11.1 and earlier does not sanitize HTML formatting of its output, resulting in a stored XSS vulnerability exploitable by attackers with Overall/Administer permission. CWE-79
Cross-site Scripting 		CVE-2020-2137 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200099 5.4 MEDIUM
Network 		jenkins git Jenkins Git Plugin 4.2.0 and earlier does not escape the error message for the repository URL for Microsoft TFS field form validation, resulting in a stored cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2136 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm
200100 8.8 HIGH
Network 		jenkins script_security Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted method calls on objects that implement GroovyInterceptable. CWE-863
 Incorrect Authorization 		CVE-2020-2135 2024-11-21 14:24 2020-03-10 Show GitHub Exploit DB Packet Storm