NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。
Assigner(CNA/発行元):[email protected] この条件を外す
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2025-53327 | Cross-Site Request Forgery (CSRF) vulnerability in rui_mashita Aioseo Multibyte Descriptions aioseo-multibyte-descriptions allows Cross Site Request Forgery.This issue affects Aioseo Multibyte Descriptions: from n/a through <= 0.0.6. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53317 | Cross-Site Request Forgery (CSRF) vulnerability in AcmeeDesign WPShapere - WordPress admin theme wpshapere-lite allows Stored XSS.This issue affects WPShapere - WordPress admin theme: from n/a through <= 1.4.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53315 | Cross-Site Request Forgery (CSRF) vulnerability in alanft Relocate Upload relocate-upload allows Stored XSS.This issue affects Relocate Upload: from n/a through <= 0.24.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53313 | Cross-Site Request Forgery (CSRF) vulnerability in plumwd Twitch TV Embed Suite twitch-tv-embed-suite allows Stored XSS.This issue affects Twitch TV Embed Suite: from n/a through <= 2.1.0. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53312 | Cross-Site Request Forgery (CSRF) vulnerability in Looks Awesome OnionBuzz onionbuzz-viral-quiz allows Stored XSS.This issue affects OnionBuzz: from n/a through <= 1.0.7. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53311 | Cross-Site Request Forgery (CSRF) vulnerability in Amol Nirmala Waman Navayan Subscribe navayan-subscribe allows Stored XSS.This issue affects Navayan Subscribe: from n/a through <= 1.13. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53310 | Cross-Site Request Forgery (CSRF) vulnerability in Funnnny HidePost hidepost allows Reflected XSS.This issue affects HidePost: from n/a through <= 2.3.8. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53308 | Cross-Site Request Forgery (CSRF) vulnerability in gopi_plus Image Slider With Description image-slider-with-description allows Stored XSS.This issue affects Image Slider With Description: from n/a through <= 9.2. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53305 | Cross-Site Request Forgery (CSRF) vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through <= 1.8.2. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53274 | Cross-Site Request Forgery (CSRF) vulnerability in Hossin Asaadi WP Permalink Translator wp-permalink-translator allows Stored XSS.This issue affects WP Permalink Translator: from n/a through <= 1.7.6. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53273 | Cross-Site Request Forgery (CSRF) vulnerability in Slickstream Slickstream slick-engagement allows Cross Site Request Forgery.This issue affects Slickstream: from n/a through <= 2.0.3. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53272 | Cross-Site Request Forgery (CSRF) vulnerability in opicron Image Cleanup image-cleanup allows Cross Site Request Forgery.This issue affects Image Cleanup: from n/a through <= 1.9.2. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53271 | Cross-Site Request Forgery (CSRF) vulnerability in Anton Bond Additional Order Filters for WooCommerce additional-order-filters-for-woocommerce allows Stored XSS.This issue affects Additional Order Filters for WooCommerce: from n/a through <= 1.22. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53270 | Cross-Site Request Forgery (CSRF) vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Cross Site Request Forgery.This issue affects WordPress CTA: from n/a through <= 1.7.0. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53269 | Cross-Site Request Forgery (CSRF) vulnerability in imw3 My Wp Brand my-wp-brand allows Cross Site Request Forgery.This issue affects My Wp Brand: from n/a through <= 1.1.3. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53268 | Cross-Site Request Forgery (CSRF) vulnerability in ryanpcmcquen Import external attachments import-external-attachments allows Cross Site Request Forgery.This issue affects Import external attachments: from n/a through <= 1.5.12. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53267 | Cross-Site Request Forgery (CSRF) vulnerability in Aftab Husain Hide Admin Bar From Front End hide-admin-bar-from-front-end allows Cross Site Request Forgery.This issue affects Hide Admin Bar From Front End: from n/a through <= 1.0.0. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53265 | Cross-Site Request Forgery (CSRF) vulnerability in Virusdie Virusdie virusdie allows Cross Site Request Forgery.This issue affects Virusdie: from n/a through <= 1.1.3. | 5.4 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53264 | Cross-Site Request Forgery (CSRF) vulnerability in Konrád Koller ONet Regenerate Thumbnails onet-regenerate-thumbnails allows Cross Site Request Forgery.This issue affects ONet Regenerate Thumbnails: from n/a through <= 1.5. | 4.3 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53263 | Cross-Site Request Forgery (CSRF) vulnerability in PluginsCafe Address Autocomplete via Google for Gravity Forms gf-google-address-autocomplete allows Cross Site Request Forgery.This issue affects Address Autocomplete via Google for Gravity Forms: from n/a through <= 1.3.4. | 5.4 | 0.05% | 2025-06-27 | 2026-06-17 |