Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
260001 9.3 危険 アドビシステムズ - Adobe Shockwave Player に脆弱性 CWE-119
バッファエラー 		CVE-2010-3653 2010-11-16 14:49 2010-10-25 Show GitHub Exploit DB Packet Storm
260002 7.5 危険 富士通 - Interstage Application Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6258 2010-11-16 14:48 2008-02-19 Show GitHub Exploit DB Packet Storm
260003 6.5 警告 アップル
サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1848 2010-11-15 16:20 2010-05-5 Show GitHub Exploit DB Packet Storm
260004 5 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの trapper/trapper.c 内にある process_trap 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4500 2010-11-15 15:41 2009-07-21 Show GitHub Exploit DB Packet Storm
260005 9.3 危険 サイバートラスト株式会社
Zabbix		 - Zabbix Agent の net.c 内にある NET_TCP_LISTEN 関数における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4502 2010-11-15 15:41 2009-09-10 Show GitHub Exploit DB Packet Storm
260006 5 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの zbx_get_next_field 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4501 2010-11-15 15:40 2009-11-25 Show GitHub Exploit DB Packet Storm
260007 7.5 危険 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの get_history_lastid 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4499 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
260008 6.8 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの node_process_command 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-4498 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
260009 6.9 警告 Mozilla Foundation - Windows 上で稼働する複数の Mozilla 製品における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3181 2010-11-11 15:07 2010-10-19 Show GitHub Exploit DB Packet Storm
260010 9.3 危険 アドビシステムズ - 複数の Adobe 製品における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3153 2010-11-10 15:34 2010-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2341 8.2 HIGH
Network 		- - Joomla! Component Bargain Product VM3 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the produc… CWE-89
SQL Injection 		CVE-2017-20261 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2342 8.2 HIGH
Network 		- - Joomla! Component Calendar Planner 1.0.1 contains an SQL injection vulnerability that allows unauthenticated attackers to inject SQL commands through the category_id parameter. Attackers can send GET… CWE-89
SQL Injection 		CVE-2017-20267 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2343 8.2 HIGH
Network 		- - Joomla Event Registration Pro Calendar 4.1.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id … CWE-89
SQL Injection 		CVE-2017-20273 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2344 8.2 HIGH
Network 		- - Joomla Payage 2.05 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the aid parameter. Attackers can send GET… CWE-89
SQL Injection 		CVE-2017-20279 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2345 8.2 HIGH
Network 		- - Joomla Component J-MultipleHotelReservation 6.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through th… CWE-89
SQL Injection 		CVE-2019-25750 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2346 8.2 HIGH
Network 		- - Joomla! Component vAccount 2.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vid parameter. … CWE-89
SQL Injection 		CVE-2019-25756 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2347 7.5 HIGH
Network 		- - Joomla! Component JoomProject 1.1.3.2 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive user data by exploiting the projects endpoint. Attacke… CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2019-25762 2026-06-23 03:37 2026-06-20 Show GitHub Exploit DB Packet Storm
2348 5.5 MEDIUM
Local 		- - PraisonAI before 1.5.128 caches tool approval decisions by tool name only, not by invocation arguments, allowing subsequent execute_command calls to bypass approval prompts. Attackers can exploit thi… CWE-863
 Incorrect Authorization 		CVE-2026-56074 2026-06-23 03:36 2026-06-19 Show GitHub Exploit DB Packet Storm
2349 5.4 MEDIUM
Network 		- - Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and internal addresses. Organization admins can configure webhooks pointing t… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-56227 2026-06-23 03:36 2026-06-21 Show GitHub Exploit DB Packet Storm
2350 - - - Flowise before 3.1.2 contains a mass assignment vulnerability in the PUT /api/v1/user endpoint that allows authenticated users to directly modify the credential field without validation. Attackers ca… CWE-915
 Improperly Controlled Modification of Dynamically-Determined Object Attributes 		CVE-2026-56276 2026-06-23 03:36 2026-06-21 Show GitHub Exploit DB Packet Storm