Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253251 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1188 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
253252 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1187 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
253253 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の custom heap management system におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1241 2010-04-30 10:26 2010-04-5 Show GitHub Exploit DB Packet Storm
253254 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0204 2010-04-30 10:26 2010-04-13 Show GitHub Exploit DB Packet Storm
253255 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0203 2010-04-30 10:25 2010-04-13 Show GitHub Exploit DB Packet Storm
253256 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0202 2010-04-30 10:25 2010-04-13 Show GitHub Exploit DB Packet Storm
253257 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0201 2010-04-30 10:25 2010-04-13 Show GitHub Exploit DB Packet Storm
253258 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0199 2010-04-30 10:25 2010-04-13 Show GitHub Exploit DB Packet Storm
253259 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0198 2010-04-30 10:24 2010-04-13 Show GitHub Exploit DB Packet Storm
253260 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0197 2010-04-28 15:58 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199621 4.3 MEDIUM
Network 		jenkins credentials_binding Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets containing a `$` character in some circumstances. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2182 2024-11-21 14:24 2020-05-6 Show GitHub Exploit DB Packet Storm
199622 6.5 MEDIUM
Network 		jenkins credentials_binding Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets in the build log when the build contains no build steps. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2181 2024-11-21 14:24 2020-05-6 Show GitHub Exploit DB Packet Storm
199623 8.8 HIGH
Network 		jenkins amazon_web_services_serverless_application_model Jenkins AWS SAM Plugin 1.2.2 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-2180 2024-11-21 14:24 2020-04-17 Show GitHub Exploit DB Packet Storm
199624 8.8 HIGH
Network 		jenkins yaml_axis Jenkins Yaml Axis Plugin 0.2.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-2179 2024-11-21 14:24 2020-04-17 Show GitHub Exploit DB Packet Storm
199625 7.1 HIGH
Network 		jenkins parasoft_findings Jenkins Parasoft Findings Plugin 10.4.3 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. CWE-611
XXE 		CVE-2020-2178 2024-11-21 14:24 2020-04-17 Show GitHub Exploit DB Packet Storm
199626 4.3 MEDIUM
Network 		jenkins copr Jenkins Copr Plugin 0.3 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the mast… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-2177 2024-11-21 14:24 2020-04-17 Show GitHub Exploit DB Packet Storm
199627 5.4 MEDIUM
Network 		jenkins usemango_runner Multiple form validation endpoints in Jenkins useMango Runner Plugin 1.4 and earlier do not escape values received from the useMango service, resulting in a cross-site scripting (XSS) vulnerability e… CWE-79
Cross-site Scripting 		CVE-2020-2176 2024-11-21 14:24 2020-04-7 Show GitHub Exploit DB Packet Storm
199628 5.4 MEDIUM
Network 		jenkins fitnesse Jenkins FitNesse Plugin 1.31 and earlier does not correctly escape report contents before showing them on the Jenkins UI, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by… CWE-79
Cross-site Scripting 		CVE-2020-2175 2024-11-21 14:24 2020-04-7 Show GitHub Exploit DB Packet Storm
199629 6.1 MEDIUM
Network 		jenkins awseb_deployment Jenkins AWSEB Deployment Plugin 0.3.19 and earlier does not escape various values printed as part of form validation output, resulting in a reflected cross-site scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-2174 2024-11-21 14:24 2020-04-7 Show GitHub Exploit DB Packet Storm
199630 5.4 MEDIUM
Network 		jenkins gatling Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able … CWE-79
Cross-site Scripting 		CVE-2020-2173 2024-11-21 14:24 2020-04-7 Show GitHub Exploit DB Packet Storm