Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229171 10 危険 東芝 - Toshiba Bluetooth スタックにおける管理者アクセス権限を取得される脆弱性 - CVE-2006-6903 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229172 5.4 警告 widcomm - Widcomm BTW におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6897 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229173 5.4 警告 plantronic - Plantronic Headset の Bluetooth スタックにおける許可されていない組み合わせ操作を実行される脆弱性 - CVE-2006-6896 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229174 2.9 注意 sony ericsson - Sony Ericsson T60 の Bluetooth スタックにおける許可されていない問い合わせ応答へのアクセス権を取得される脆弱性 - CVE-2006-6895 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229175 10 危険 spine - SPINE における脆弱性 - CVE-2006-6894 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229176 5 警告 The Tor Project - Tor における非表示サービスの IP アドレスを特定される脆弱性 - CVE-2006-6893 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229177 5 警告 vz forum - Adp Forum における管理者アカウント名などを取得される脆弱性 - CVE-2006-6891 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229178 7.5 危険 voc-project - Voodoo chat におけるパスワードをダウンロードされる脆弱性 - CVE-2006-6890 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229179 5 警告 p-news - P-News における管理者アカウント名などを取得される脆弱性 - CVE-2006-6888 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229180 5 警告 phpwcms - phpwcms における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2006-6886 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199411 7.2 HIGH
Network 		qnap qts If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907. CWE-77
Command Injection 		CVE-2020-2492 2024-11-21 14:25 2020-11-16 Show GitHub Exploit DB Packet Storm
199412 7.2 HIGH
Network 		qnap qts If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907. CWE-77
Command Injection 		CVE-2020-2490 2024-11-21 14:25 2020-11-16 Show GitHub Exploit DB Packet Storm
199413 6.5 MEDIUM
Network 		jenkins vmware_lab_manager_slaves Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier stores a password unencrypted in the global config.xml file on the Jenkins controller where it can be viewed by users with access to the Jen… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2319 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199414 6.5 MEDIUM
Network 		jenkins mail_commander Jenkins Mail Commander Plugin for Jenkins-ci Plugin 1.0.0 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Re… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2318 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199415 5.4 MEDIUM
Network 		jenkins findbugs Jenkins FindBugs Plugin 5.0.0 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide r… CWE-79
Cross-site Scripting 		CVE-2020-2317 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199416 5.4 MEDIUM
Network 		jenkins static_analysis_utilities Jenkins Static Analysis Utilities Plugin 1.96 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers w… CWE-79
Cross-site Scripting 		CVE-2020-2316 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199417 6.5 MEDIUM
Network 		jenkins visualworks_store Jenkins Visualworks Store Plugin 1.1.3 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. - CVE-2020-2315 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199418 5.5 MEDIUM
Local 		jenkins appspider Jenkins AppSpider Plugin 1.0.12 and earlier stores a password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins control… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2314 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199419 4.3 MEDIUM
Network 		jenkins azure_key_vault A missing permission check in Jenkins Azure Key Vault Plugin 2.0 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. - CVE-2020-2313 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
199420 6.5 MEDIUM
Network 		jenkins sqlplus_script_runner Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier does not mask a password provided as command line argument in build logs. - CVE-2020-2312 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm