Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220021 8.5 危険 Huawei - Huawei Video Conference system 用の Huawei viewpoint VP9610 および VP9620 ユニットにおけるセッションをハイジャックされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4629 2013-06-24 16:53 2013-05-13 Show GitHub Exploit DB Packet Storm
220022 3.5 注意 Huawei - Huawei Campus Switch デバイス上で稼働する複数の Huawei Quidway SPU ボードにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4628 2013-06-24 16:52 2013-05-16 Show GitHub Exploit DB Packet Storm
220023 7.5 危険 Huawei - Huawei の AR ルータおよびスイッチ製品におけるセッションをハイジャックされる脆弱性 CWE-310
暗号の問題 		CVE-2012-6571 2013-06-24 16:50 2012-08-4 Show GitHub Exploit DB Packet Storm
220024 10 危険 Huawei - Huawei の AR ルータおよびスイッチ製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6570 2013-06-24 16:50 2012-08-4 Show GitHub Exploit DB Packet Storm
220025 9.3 危険 Huawei - Huawei の AR ルータおよびスイッチ製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6569 2013-06-24 16:49 2012-08-4 Show GitHub Exploit DB Packet Storm
220026 6.9 警告 Huawei - Huawei UTPS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6568 2013-06-24 16:42 2012-09-22 Show GitHub Exploit DB Packet Storm
220027 7.5 危険 Raphael Zschorsch - TYPO3 用 jQuery autocomplete for indexed_search における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4634 2013-06-24 15:26 2013-06-3 Show GitHub Exploit DB Packet Storm
220028 4.3 警告 Catalin Florian Radut - Drupal 用 Zero Point テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1905 2013-06-24 15:24 2013-03-27 Show GitHub Exploit DB Packet Storm
220029 2.1 注意 Jordan Starcher - Drupal 用 CurvyCorners モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1393 2013-06-24 15:20 2013-01-23 Show GitHub Exploit DB Packet Storm
220030 6.9 警告 Fabrice Bellard - Xen で使用される Qemu の qemu guest エージェントにおける特定のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2007 2013-06-21 15:42 2013-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 3.5 LOW
Network 		- - The Email Encoder WordPress plugin before 2.3.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks… CWE-79
Cross-site Scripting 		CVE-2024-7083 2026-04-20 23:16 2026-04-20 Show GitHub Exploit DB Packet Storm
172 3.5 LOW
Network 		- - A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripti… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-6648 2026-04-20 22:16 2026-04-20 Show GitHub Exploit DB Packet Storm
173 4.3 MEDIUM
Network 		- - A vulnerability was detected in p2r3 convert up to 6998584ace3e11db66dff0b423612a5cf91de75b. Affected is the function Bun.serve of the file buildCache.js of the component API. Performing a manipulati… CWE-22
Path Traversal 		CVE-2026-6636 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
174 7.3 HIGH
Network 		- - A security vulnerability has been detected in rowboatlabs rowboat up to 0.1.67. This impacts the function tool_call of the file apps/experimental/tools_webhook/app.py of the component tools_webhook. … CWE-287
Improper Authentication 		CVE-2026-6635 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
175 6.3 MEDIUM
Network 		- - A weakness has been identified in usememos memos up to 0.22.1. This affects the function memos_access_token of the file src/App.tsx of the component UpdateInstanceSetting. This manipulation of the ar… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-6634 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
176 3.5 LOW
Network 		- - A security flaw has been discovered in Yifang CMS up to 2.0.5. The impacted element is the function store of the file plugins/yifang_backend_account/logic/admin/L_rbac_admin.php of the component Exte… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-6633 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
177 - - - When sed is invoked with both -i (in-place edit) and --follow-symlinks, the function open_next_file() performs two separate, non-atomic filesystem operations on the same path: 1. resolves symlink to… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-5958 2026-04-20 21:16 2026-04-20 Show GitHub Exploit DB Packet Storm
178 8.8 HIGH
Network 		- - A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component httpd. The manipulatio… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6632 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm
179 8.8 HIGH
Network 		- - A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. Executing a manipul… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6631 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm
180 8.8 HIGH
Network 		- - A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of th… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6630 2026-04-20 20:16 2026-04-20 Show GitHub Exploit DB Packet Storm