Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
218931 6.8 警告 Zenoss, Inc. - Zenoss Core におけるセッションをハイジャックされる脆弱性 CWE-Other
その他
CVE-2014-9386 2014-12-17 16:59 2014-12-5 Show GitHub Exploit DB Packet Storm
218932 6.8 警告 Zenoss, Inc. - Zenoss Core におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-9385 2014-12-17 16:57 2014-12-5 Show GitHub Exploit DB Packet Storm
218933 2.1 注意 Zenoss, Inc. - Zenoss Core における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-9252 2014-12-17 16:57 2014-12-5 Show GitHub Exploit DB Packet Storm
218934 5 警告 Zenoss, Inc. - Zenoss Core における平文の値を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2014-9251 2014-12-17 16:55 2014-12-5 Show GitHub Exploit DB Packet Storm
218935 5 警告 Zenoss, Inc. - Zenoss Core における資格情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-9250 2014-12-17 16:54 2014-12-5 Show GitHub Exploit DB Packet Storm
218936 7.5 危険 Zenoss, Inc. - Zenoss Core のデフォルト設定におけるデータベースの情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-9249 2014-12-17 16:51 2014-12-5 Show GitHub Exploit DB Packet Storm
218937 5 警告 Zenoss, Inc. - Zenoss Core におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2014-9248 2014-12-17 16:50 2014-12-5 Show GitHub Exploit DB Packet Storm
218938 4 警告 Zenoss, Inc. - Zenoss Core における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-9247 2014-12-17 16:49 2014-12-5 Show GitHub Exploit DB Packet Storm
218939 5 警告 Zenoss, Inc. - Zenoss Core における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2014-9245 2014-12-17 16:48 2014-12-5 Show GitHub Exploit DB Packet Storm
218940 9.3 危険 Zenoss, Inc. - Zenoss Core における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-6261 2014-12-17 16:46 2014-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2551 8.2 HIGH
Network
- - Joomla! Component JB Visa 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the visatype parameter… CWE-89
SQL Injection
CVE-2017-20255 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2552 8.2 HIGH
Network
- - Joomla! Component Bargain Product VM3 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the produc… CWE-89
SQL Injection
CVE-2017-20261 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2553 8.2 HIGH
Network
- - Joomla! Component Calendar Planner 1.0.1 contains an SQL injection vulnerability that allows unauthenticated attackers to inject SQL commands through the category_id parameter. Attackers can send GET… CWE-89
SQL Injection
CVE-2017-20267 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2554 8.2 HIGH
Network
- - Joomla Event Registration Pro Calendar 4.1.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id … CWE-89
SQL Injection
CVE-2017-20273 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2555 8.2 HIGH
Network
- - Joomla Payage 2.05 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the aid parameter. Attackers can send GET… CWE-89
SQL Injection
CVE-2017-20279 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2556 8.2 HIGH
Network
- - Joomla Component J-MultipleHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through th… CWE-89
SQL Injection
CVE-2019-25750 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2557 8.2 HIGH
Network
- - Joomla! Component vAccount 2.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vid parameter. … CWE-89
SQL Injection
CVE-2019-25756 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2558 7.5 HIGH
Network
- - Joomla! Component JoomProject 1.1.3.2 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive user data by exploiting the projects endpoint. Attacke… CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor
CVE-2019-25762 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2559 5.5 MEDIUM
Local
- - PraisonAI before 1.5.128 caches tool approval decisions by tool name only, not by invocation arguments, allowing subsequent execute_command calls to bypass approval prompts. Attackers can exploit thi… CWE-863
 Incorrect Authorization
CVE-2026-56074 2026-06-23 03:36 2026-06-19 Show GitHub Exploit DB Packet Storm
2560 5.4 MEDIUM
Network
- - Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and internal addresses. Organization admins can configure webhooks pointing t… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-56227 2026-06-23 03:36 2026-06-21 Show GitHub Exploit DB Packet Storm