Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255631 2.1 注意 Drupal
サイバートラスト株式会社		 - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3094 2010-10-7 16:39 2010-08-11 Show GitHub Exploit DB Packet Storm
255632 3.5 注意 Drupal
サイバートラスト株式会社		 - Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3093 2010-10-7 16:38 2010-08-11 Show GitHub Exploit DB Packet Storm
255633 5.5 警告 Drupal
サイバートラスト株式会社		 - Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3092 2010-10-7 16:37 2010-08-11 Show GitHub Exploit DB Packet Storm
255634 9.3 危険 アップル - Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1818 2010-10-6 16:57 2010-08-31 Show GitHub Exploit DB Packet Storm
255635 9.3 危険 IBM - IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3407 2010-10-6 16:57 2010-09-16 Show GitHub Exploit DB Packet Storm
255636 6.8 警告 マイクロソフト - Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3213 2010-10-6 16:56 2010-09-7 Show GitHub Exploit DB Packet Storm
255637 6.9 警告 マイクロソフト - Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1891 2010-10-6 16:56 2010-09-14 Show GitHub Exploit DB Packet Storm
255638 9 危険 マイクロソフト - Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0820 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
255639 9.3 危険 マイクロソフト - Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2563 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
255640 9.3 危険 マイクロソフト - Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2567 2010-10-6 16:55 2010-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225281 6.5 MEDIUM
Network 		jenkins rundeck Jenkins Rundeck Plugin 3.6.5 and earlier stores credentials unencrypted in its global configuration file and in job config.xml files on the Jenkins master where they can be viewed by users with Exten… CWE-522
 Insufficiently Protected Credentials 		CVE-2019-16556 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225282 6.5 MEDIUM
Network 		jenkins build_failure_analyzer A user-supplied regular expression in Jenkins Build Failure Analyzer Plugin 1.24.1 and earlier was processed in a way that wasn't interruptible, allowing attackers to have Jenkins evaluate a regular … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-16555 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225283 4.3 MEDIUM
Network 		jenkins build_failure_analyzer A missing permission check in Jenkins Build Failure Analyzer Plugin 1.24.1 and earlier allows attackers with Overall/Read permission to have Jenkins evaluate a computationally expensive regular expre… CWE-276
Incorrect Default Permissions  		CVE-2019-16554 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225284 8.8 HIGH
Network 		jenkins build_failure_analyzer A cross-site request forgery vulnerability in Jenkins Build Failure Analyzer Plugin 1.24.1 and earlier allows attackers to have Jenkins evaluate a computationally expensive regular expression. CWE-352
 Origin Validation Error 		CVE-2019-16553 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225285 5.4 MEDIUM
Network 		jenkins gerrit_trigger A missing permission check in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP URL or SSH server using attacker-… CWE-276
Incorrect Default Permissions  		CVE-2019-16552 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225286 8.8 HIGH
Network 		jenkins gerrit_trigger A cross-site request forgery vulnerability in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers to connect to an attacker-specified HTTP URL or SSH server using attacker-specified cre… CWE-352
 Origin Validation Error 		CVE-2019-16551 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225287 8.8 HIGH
Network 		jenkins maven A cross-site request forgery vulnerability in a connection test form method in Jenkins Maven Release Plugin 0.16.1 and earlier allows attackers to have Jenkins connect to an attacker specified web se… CWE-352
 Origin Validation Error 		CVE-2019-16550 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225288 8.1 HIGH
Network 		jenkins maven Jenkins Maven Release Plugin 0.16.1 and earlier does not configure the XML parser to prevent XML external entity (XXE) attacks, allowing man-in-the-middle attackers to have Jenkins parse crafted XML … CWE-611
XXE 		CVE-2019-16549 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
225289 9.8 CRITICAL
Network 		intesync solismed Intesync Solismed 3.3sp1 allows Local File Inclusion (LFI), a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution. CWE-22
Path Traversal 		CVE-2019-16246 2024-11-21 13:30 2019-12-12 Show GitHub Exploit DB Packet Storm
225290 9.8 CRITICAL
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Authentication Information used in a cookie … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-16674 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm