Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230631 9.3 危険 rising antivirus international - Rising Antivirus Online Scanner の Web Scan Object ActiveX コントロール における任意のコードを強制的にダウンロードされる脆弱性 CWE-DesignError
CVE-2008-1116 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230632 7.8 危険 Vocera - Cisco Unified Wireless IP Phone 7921 におけるハッシュされたパスワードを盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-1113 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230633 6.8 警告 Xine - xine-lib の xineplug_dmx_asf.so プラグイン におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1110 2012-12-20 18:34 2008-02-29 Show GitHub Exploit DB Packet Storm
230634 6.8 警告 quantum game library - Quantum Game Library における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1069 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230635 6.8 警告 portail web php - Portail Web Php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1068 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230636 6.8 警告 phpqladmin - phpQLAdmin における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1067 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230637 7.5 危険 Smarty - S9Y などの製品で使用される Smarty における任意の PHP 関数を呼び出される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1066 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230638 4.3 警告 WordPress.org - WordPress 用の Sniplets プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1061 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230639 7.5 危険 WordPress.org - WordPress 用の Sniplets プラグインにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1060 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
230640 7.5 危険 WordPress.org - WordPress 用の Sniplets プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1059 2012-12-20 18:34 2008-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196611 5.3 MEDIUM
Network 		sensiolabs
fedoraproject 		symfony
fedora 		Symfony is a PHP framework for web and console applications and a set of reusable PHP components. The ability to enumerate users was possible without relevant permissions due to different handling de… - CVE-2021-21424 2024-11-21 14:48 2021-05-14 Show GitHub Exploit DB Packet Storm
196612 7.1 HIGH
Network 		jenkins xcode_integration Jenkins Xcode integration Plugin 2.0.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. - CVE-2021-21656 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196613 7.1 HIGH
Network 		jenkins p4 A cross-site request forgery (CSRF) vulnerability in Jenkins P4 Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified Perforce server using attacker-specified username and pa… CWE-352
 Origin Validation Error 		CVE-2021-21655 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196614 4.3 MEDIUM
Network 		jenkins p4 Jenkins P4 Plugin 1.11.4 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified Perforce server… - CVE-2021-21654 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196615 4.3 MEDIUM
Network 		jenkins xray_-_test_management_for_jira Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier does not perform a permission check in an HTTP endpoint, allowing with Overall/Read permission to enumerate credentials IDs of credent… - CVE-2021-21653 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196616 7.1 HIGH
Network 		jenkins xray_-_test_management_for_jira A cross-site request forgery (CSRF) vulnerability in Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified… CWE-352
 Origin Validation Error 		CVE-2021-21652 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196617 4.3 MEDIUM
Network 		jenkins s3_publisher Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to obtain the list of configured profiles. - CVE-2021-21651 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196618 4.3 MEDIUM
Network 		jenkins s3_publisher Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain inform… - CVE-2021-21650 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196619 5.4 MEDIUM
Network 		jenkins dashboard_view Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers wit… CWE-79
Cross-site Scripting 		CVE-2021-21649 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
196620 6.1 MEDIUM
Network 		jenkins credentials Jenkins Credentials Plugin 2.3.18 and earlier does not escape user-controlled information on a view it provides, resulting in a reflected cross-site scripting (XSS) vulnerability. CWE-79
Cross-site Scripting 		CVE-2021-21648 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm