Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258641	3.6	注意	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0895	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258642	4.3	警告	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0893	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258643	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-20 不適切な入力確認	CVE-2010-0453	2010-05-14 18:42	2010-02-3	Show	GitHub Exploit DB Packet Storm

258644	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0889	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258645	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0891	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258646	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0894	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258647	6.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0885	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258648	7.1	危険	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0896	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258649	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

258650	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199511	6.5	MEDIUM Network	jenkins	performance	Jenkins Performance Plugin 3.20 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	CWE-611 XXE	CVE-2021-21701	2024-11-21 14:48	2021-11-12	Show	GitHub Exploit DB Packet Storm

199512	5.4	MEDIUM Network	jenkins	scriptler	Jenkins Scriptler Plugin 3.3 and earlier does not escape the name of scripts on the UI when asking to confirm their deletion, resulting in a stored cross-site scripting (XSS) vulnerability exploitabl…	CWE-79 Cross-site Scripting	CVE-2021-21700	2024-11-21 14:48	2021-11-12	Show	GitHub Exploit DB Packet Storm

199513	5.4	MEDIUM Network	jenkins	active_choices	Jenkins Active Choices Plugin 2.5.6 and earlier does not escape the parameter name of reactive parameters and dynamic reference parameters, resulting in a stored cross-site scripting (XSS) vulnerabil…	CWE-79 Cross-site Scripting	CVE-2021-21699	2024-11-21 14:48	2021-11-12	Show	GitHub Exploit DB Packet Storm

199514	7.5	HIGH Network	jenkins	subversion	Jenkins Subversion Plugin 2.15.0 and earlier does not restrict the name of a file when looking up a subversion key file on the controller from an agent.	CWE-22 Path Traversal	CVE-2021-21698	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199515	9.1	CRITICAL Network	jenkins	jenkins	Jenkins 2.318 and earlier, LTS 2.303.2 and earlier allows any agent to read and write the contents of any build directory stored in Jenkins with very few restrictions.	NVD-CWE-Other	CVE-2021-21697	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199516	9.8	CRITICAL Network	jenkins	jenkins	Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control o…	NVD-CWE-Other	CVE-2021-21696	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199517	8.8	HIGH Network	jenkins	jenkins	FilePath#listFiles lists files outside directories that agents are allowed to access when following symbolic links in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-59 Link Following	CVE-2021-21695	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199518	9.8	CRITICAL Network	jenkins	jenkins	FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-862 Missing Authorization	CVE-2021-21694	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199519	9.8	CRITICAL Network	jenkins	jenkins	When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.	CWE-863 Incorrect Authorization	CVE-2021-21693	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm

199520	9.8	CRITICAL Network	jenkins	jenkins	FilePath#renameTo and FilePath#moveAllChildrenTo in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'.	CWE-22 Path Traversal	CVE-2021-21692	2024-11-21 14:48	2021-11-5	Show	GitHub Exploit DB Packet Storm