Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251921 9.4 危険 オラクル - Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3599 2011-02-10 11:44 2011-01-18 Show GitHub Exploit DB Packet Storm
251922 7.5 危険 オラクル - Oracle Audit Vault の Audit Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4449 2011-02-10 11:36 2011-01-18 Show GitHub Exploit DB Packet Storm
251923 6.4 警告 オラクル - Oracle Secure Backup の mod_ssl コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3596 2011-02-10 11:30 2011-01-18 Show GitHub Exploit DB Packet Storm
251924 3.6 注意 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4420 2011-02-9 16:44 2011-01-18 Show GitHub Exploit DB Packet Storm
251925 4.3 警告 オラクル - Oracle Database Server の Scheduler Agent コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4413 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
251926 4.9 警告 オラクル - Oracle Database Server の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3590 2011-02-9 16:43 2011-01-18 Show GitHub Exploit DB Packet Storm
251927 6.9 警告 オラクル - Windows 上で稼働する Oracle Database Server の Cluster Verify Utility コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4423 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
251928 6.8 警告 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4421 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
251929 7.5 危険 オラクル - 複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3600 2011-02-9 16:41 2011-01-18 Show GitHub Exploit DB Packet Storm
251930 7.2 危険 マイクロソフト - 複数の Microsoft 製品の kernel-mode ドライバにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-2743 2011-02-9 16:39 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200801 6.5 MEDIUM
Network 		jenkins harvest_scm Jenkins Harvest SCM Plugin 0.5.1 and earlier stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2130 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200802 6.5 MEDIUM
Network 		jenkins eagle_tester Jenkins Eagle Tester Plugin 1.0.9 and earlier stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file syste… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2129 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200803 4.3 MEDIUM
Network 		jenkins ecx_copy_data_management Jenkins ECX Copy Data Management Plugin 1.9 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or a… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2128 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200804 4.3 MEDIUM
Network 		jenkins bmc_release_package_and_deployment Jenkins BMC Release Package and Deployment Plugin 1.1 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access t… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2127 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200805 4.3 MEDIUM
Network 		jenkins digitalocean Jenkins DigitalOcean Plugin 1.1 and earlier stores a token unencrypted in the global config.xml file on the Jenkins master where it can be viewed by users with access to the master file system. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2126 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200806 4.3 MEDIUM
Network 		jenkins debian_package_builder Jenkins Debian Package Builder Plugin 1.6.11 and earlier stores a GPG passphrase unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the … CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2125 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200807 4.3 MEDIUM
Network 		jenkins dynamic_extended_choice_parameter Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permi… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2124 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200808 8.8 HIGH
Network 		jenkins radargun Jenkins RadarGun Plugin 1.7 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-2123 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200809 5.4 MEDIUM
Network 		jenkins brakeman Jenkins Brakeman Plugin 0.12 and earlier did not escape values received from parsed JSON files when rendering them, resulting in a stored cross-site scripting vulnerability exploitable by users able … CWE-79
Cross-site Scripting 		CVE-2020-2122 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm
200810 8.8 HIGH
Network 		jenkins google_kubernetes_engine Jenkins Google Kubernetes Engine Plugin 0.8.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. NVD-CWE-noinfo
CVE-2020-2121 2024-11-21 14:24 2020-02-13 Show GitHub Exploit DB Packet Storm