NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。
Assigner(CNA/発行元):[email protected] この条件を外す
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2026-57336 | Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions. | 7.1 | 0.15% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57335 | Subscriber Broken Access Control in Ads by WPQuads <= 3.0.3 versions. | 6.5 | 0.23% | 2026-06-29 | 2026-07-01 |
| CVE-2026-57334 | Unauthenticated Broken Access Control in WP User Frontend <= 4.3.7 versions. | 6.5 | 0.20% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57333 | Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions. | 7.1 | 0.15% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57332 | Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions. | 7.1 | 0.26% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57331 | Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. | 9.9 | 0.34% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57330 | Subscriber Cross Site Scripting (XSS) in MasterStudy LMS <= 3.7.27 versions. | 6.5 | 0.17% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57329 | Subscriber Cross Site Scripting (XSS) in WooCommerce Designer Pro <= 1.9.34 versions. | 6.5 | 0.21% | 2026-06-29 | 2026-07-01 |
| CVE-2026-57328 | Subscriber Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions. | 6.5 | 0.21% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57327 | Subscriber Broken Access Control in MainWP <= 6.1.1 versions. | 6.3 | 0.25% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57326 | Unauthenticated Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions. | 6.1 | 0.18% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57325 | Unauthenticated Cross Site Scripting (XSS) in NanoMag <= 1.8 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57324 | Unauthenticated Broken Access Control in GIFT4U <= 1.0.10 versions. | 6.5 | 0.24% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57323 | Unauthenticated Broken Access Control in Flash & HTML5 Video <= 2.11.0 versions. | 5.8 | 0.23% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57322 | Unauthenticated Cross Site Scripting (XSS) in weMail <= 2.1.2 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57321 | Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions. | 7.1 | 0.29% | 2026-06-26 | 2026-06-29 |
| CVE-2026-57320 | Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions. | 7.1 | 0.18% | 2026-06-29 | 2026-06-29 |
| CVE-2026-57319 | Unauthenticated Cross Site Scripting (XSS) in FOX <= 1.4.8 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57318 | Subscriber Sensitive Data Exposure in Site Reviews <= 8.0.11 versions. | 6.5 | 0.36% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57317 | Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments <= 1.6.12.2 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |