Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133031 3.3
Local 		Huawei Mate 30 ファームウェア Mate 30 における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-22305 2021-10-25 17:31 2021-01-27 Show GitHub Exploit DB Packet Storm
133032 3.3
Local 		Huawei Taurus-AL00A ファームウェア Taurus-AL00A における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-22304 2021-10-25 17:31 2021-01-27 Show GitHub Exploit DB Packet Storm
133033 7.1 重要
Local 		Huawei Taurus-AL00A ファームウェア Taurus-AL00A における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-22302 2021-10-25 17:30 2021-01-27 Show GitHub Exploit DB Packet Storm
133034 7.5 重要
Network 		Huawei ManageOne
CampusInsight
Taurus-AL00A ファームウェア 		複数の Huawei 製品における HTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2021-22293 2021-10-25 17:30 2021-01-20 Show GitHub Exploit DB Packet Storm
133035 7.5 重要
Network 		Huawei eCNS280 ファームウェア eCNS280 におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-22292 2021-10-25 17:30 2021-01-13 Show GitHub Exploit DB Packet Storm
133036 6.5 警告
Network 		マイクロフォーカス株式会社 Application Performance Management Micro Focus Application Performance Management 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2021-22500 2021-10-25 17:30 2021-02-4 Show GitHub Exploit DB Packet Storm
133037 7.8 重要
Local 		Huawei ManageOne
NFV_FusionSphere
iMaster MAE-M
SMC2.0 ファームウェア 		複数の Huawei 製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-22299 2021-10-25 17:30 2021-01-20 Show GitHub Exploit DB Packet Storm
133038 6.5 警告
Network 		Huawei ManageOne Huawei Gauss100 OLTP 製品における脆弱性 CWE-noinfo
情報不足 		CVE-2021-22298 2021-10-25 17:30 2021-01-13 Show GitHub Exploit DB Packet Storm
133039 3.3
Local 		Huawei Taurus-AL00A ファームウェア Taurus-AL00A における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2021-22303 2021-10-25 17:25 2021-01-27 Show GitHub Exploit DB Packet Storm
133040 4.6 警告
Physics 		Huawei Mate 30 ファームウェア Mate 30 における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-22306 2021-10-25 17:21 2021-01-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
651 5.3 MEDIUM
Network 		- - Authorization bypass through User-Controlled key vulnerability in Essential Plugin WP Logo Showcase Responsive Slider and Carousel allows Exploiting Incorrectly Configured Access Control Security Lev… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2023-40200 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
652 4.3 MEDIUM
Network 		- - Cross-Site request forgery (CSRF) vulnerability in Magepeople inc. WpEvently allows Cross Site Request Forgery. This issue affects WpEvently: from n/a through 4.1.2. New CWE-352
 Origin Validation Error 		CVE-2024-32110 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
653 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5. New CWE-862
 Missing Authorization 		CVE-2022-42479 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
654 4.6 MEDIUM
Network 		- - Cross-Site request forgery (CSRF) vulnerability in YITH YITH WooCommerce Product Slider Carousel allows Cross Site Request Forgery. This issue affects YITH WooCommerce Product Slider Carousel: from … New CWE-352
 Origin Validation Error 		CVE-2022-44630 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
655 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in BeRocket Advanced AJAX Product Filters allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Advanced AJAX Product Filter… New CWE-862
 Missing Authorization 		CVE-2022-45813 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
656 4.3 MEDIUM
Network 		- - Cross-Site request forgery (CSRF) vulnerability in weDevs WooCommerce Conversion Tracking allows Cross Site Request Forgery. This issue affects WooCommerce Conversion Tracking: from n/a through 2.0.… New CWE-352
 Origin Validation Error 		CVE-2022-47150 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
657 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in ThemeHunk Contact Form & Lead Form Elementor Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Contact Form &… New CWE-862
 Missing Authorization 		CVE-2023-25969 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
658 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Sparkle WP MetroStore metrostore allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MetroStore: from n/a through 1.3.2. New CWE-862
 Missing Authorization 		CVE-2023-32959 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
659 6.1 MEDIUM
Network 		- - draw.io is a configurable diagramming and whiteboarding application. Prior to version 29.7.12, a crafted .drawio file can execute arbitrary JavaScript in the editor's origin when the file is opened. … New CWE-79
Cross-site Scripting 		CVE-2026-46642 2026-06-11 23:16 2026-06-11 Show GitHub Exploit DB Packet Storm
660 8.1 HIGH
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, ommit d4d10006 ("Expand validation to block .. in config_file_name and configver … New CWE-22
CWE-697
Path Traversal
 Incorrect Comparison 		CVE-2026-45569 2026-06-11 23:16 2026-06-11 Show GitHub Exploit DB Packet Storm