CVEリスト - 高リスク・悪用確認済み脆弱性

NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。

Assigner(CNA/発行元):[email protected] この条件を外す

CVSS スコア
表示中 101120 / 2911
CVE 説明 CVSS 最大値 EPSS(%) 公開 更新
CVE-2026-39445 Unauthenticated PHP Object Injection in Alukas < 3.0.0 versions. 8.1 0.40% 2026-06-17 2026-06-17
CVE-2026-39442 Unauthenticated PHP Object Injection in PressMart <= 1.2.26 versions. 8.1 0.31% 2026-06-17 2026-06-17
CVE-2025-69175 Unauthenticated Local File Inclusion in Line Agency <= 1.3.1 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69174 Unauthenticated Local File Inclusion in Etude <= 1.6 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69170 Unauthenticated Local File Inclusion in Eventicity <= 1.5 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69166 Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions. 8.1 0.43% 2026-06-17 2026-06-17
CVE-2025-69164 Unauthenticated Local File Inclusion in Skyward <= 1.10 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69158 Unauthenticated Local File Inclusion in Granola <= 1.13 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69157 Unauthenticated Local File Inclusion in Gamic <= 1.15 versions. 8.1 0.43% 2026-06-17 2026-06-17
CVE-2025-69144 Unauthenticated Local File Inclusion in Preservation <= 1.10 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69130 Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme <= 3.1.3 versions. 8.8 0.48% 2026-06-17 2026-06-17
CVE-2025-69128 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in EMV JobCareer allows Path Traversal. This issue affects JobCareer: from n/a through 7.3. 8.6 0.46% 2026-06-17 2026-06-17
CVE-2025-69127 Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions. 9.8 0.39% 2026-06-17 2026-06-17
CVE-2025-69126 Unauthenticated Local File Inclusion in Fortius <= 2.3.0 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69123 Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69120 Unauthenticated Local File Inclusion in Dazzle <= 1.0.0 versions. 8.1 0.43% 2026-06-17 2026-06-17
CVE-2025-69115 Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme <= 1.2.2 versions. 8.1 0.35% 2026-06-17 2026-06-17
CVE-2025-69111 Unauthenticated PHP Object Injection in Reisen <= 1.4.1 versions. 9.8 0.39% 2026-06-17 2026-06-17
CVE-2025-69106 Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions. 8.1 0.43% 2026-06-17 2026-06-17
CVE-2025-60236 Deserialization of Untrusted Data vulnerability in EMV Creatify allows Object Injection. This issue affects Creatify: from n/a through 1.5. 9.8 0.31% 2026-06-17 2026-06-17
cvelogic Threat Intelligence