NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。
Assigner(CNA/発行元):[email protected] この条件を外す
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2026-54808 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Blind SQL Injection. This issue affects WP Travel Gutenberg Blocks: from n/a through 3.9.4. | 9.3 | 0.32% | 2026-06-17 | 2026-06-17 |
| CVE-2026-52707 | Unauthenticated Local File Inclusion in Kastell <= 2.0 versions. | 8.1 | 0.44% | 2026-06-17 | 2026-06-17 |
| CVE-2026-49108 | Unauthenticated PHP Object Injection in Moderno < 1.43 versions. | 9.8 | 0.30% | 2026-06-17 | 2026-06-17 |
| CVE-2026-40757 | Unauthenticated PHP Object Injection in Château <= 1.2.1 versions. | 8.1 | 0.25% | 2026-06-17 | 2026-06-17 |
| CVE-2026-40756 | Unauthenticated PHP Object Injection in Zoya <= 1.4 versions. | 8.1 | 0.25% | 2026-06-17 | 2026-06-17 |
| CVE-2026-40752 | Unauthenticated PHP Object Injection in Manufaktur Solutions <= 1.1.1 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2026-40738 | Unauthenticated PHP Object Injection in Eldon <= 1.4.1 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2026-40733 | Unauthenticated PHP Object Injection in ShiftUp <= 1.3 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39590 | Unauthenticated Local File Inclusion in Atomlab <= 2.4.5 versions. | 8.1 | 0.34% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39576 | Unauthenticated PHP Object Injection in SingleMalt <= 1.5 versions. | 8.1 | 0.40% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39560 | Unauthenticated PHP Object Injection in Hiroshi <= 1.5.1 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39559 | Unauthenticated Local File Inclusion in Uppercase < 1.2.2 versions. | 8.1 | 0.34% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39556 | Unauthenticated PHP Object Injection in Konsept <= 1.9 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39523 | Unauthenticated Local File Inclusion in Solene Core <= 2.3.2 versions. | 8.1 | 0.34% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39445 | Unauthenticated PHP Object Injection in Alukas < 3.0.0 versions. | 8.1 | 0.40% | 2026-06-17 | 2026-06-17 |
| CVE-2026-39442 | Unauthenticated PHP Object Injection in PressMart <= 1.2.26 versions. | 8.1 | 0.31% | 2026-06-17 | 2026-06-17 |
| CVE-2025-69175 | Unauthenticated Local File Inclusion in Line Agency <= 1.3.1 versions. | 8.1 | 0.35% | 2026-06-17 | 2026-06-17 |
| CVE-2025-69174 | Unauthenticated Local File Inclusion in Etude <= 1.6 versions. | 8.1 | 0.35% | 2026-06-17 | 2026-06-17 |
| CVE-2025-69170 | Unauthenticated Local File Inclusion in Eventicity <= 1.5 versions. | 8.1 | 0.35% | 2026-06-17 | 2026-06-17 |
| CVE-2025-69166 | Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions. | 8.1 | 0.43% | 2026-06-17 | 2026-06-17 |