Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
5101	CVE-2024-10830	0.22%	44.8th	8.2	This path traversal vulnerability in db-gpt version 0.6.0 allows attackers to delete arbitrary files
5102	CVE-2025-30196	0.22%	44.8th	6.5	Jenkins AnchorChain Plugin 1.0 has a stored cross-site scripting (XSS) vulnerability that allows att
5103	CVE-2025-27794	0.22%	44.8th	6.8	This CVE describes a session hijacking vulnerability in Flarum forum software where an attacker cont
5104	CVE-2025-24343	0.22%	44.8th	5.4	This vulnerability allows authenticated low-privileged attackers to write arbitrary files to any loc
5105	CVE-2025-3676	0.22%	44.9th	6.3	This critical SQL injection vulnerability in xxyopen Novel-Plus allows attackers to manipulate datab
5106	CVE-2025-30714	0.22%	44.8th	4.8	This vulnerability in Oracle MySQL Connector/Python allows low-privileged attackers with network acc
5107	CVE-2025-3470	0.22%	44.9th	4.9	This SQL injection vulnerability in the TS Poll WordPress plugin allows authenticated attackers with
5108	CVE-2025-32675	0.22%	44.8th	6.8	This Server-Side Request Forgery (SSRF) vulnerability in QuantumCloud SEO Help WordPress plugin allo
5109	CVE-2025-3438	0.22%	44.9th	6.5	The MStore API WordPress plugin allows unauthenticated attackers to register accounts with 'wcfm_ven
5110	CVE-2025-41656	0.22%	44.9th	10.0	This critical vulnerability allows unauthenticated remote attackers to execute arbitrary commands wi
5111	CVE-2025-54942	0.22%	44.9th	9.8	This vulnerability allows remote attackers to access deployment functionality in SUNNET Corporate Tr
5112	CVE-2025-7664	0.22%	44.8th	7.5	The AL Pack WordPress plugin has an authentication bypass vulnerability that allows unauthenticated
5113	CVE-2025-48989	0.22%	44.8th	7.5	This CVE describes an Improper Resource Shutdown or Release vulnerability in Apache Tomcat that enab
5114	CVE-2025-11170	0.22%	44.8th	9.8	The WP移行専用プラグイン for CPI WordPress plugin allows unauthenticated attackers to uploa
5115	CVE-2025-12674	0.22%	44.8th	9.8	The KiotViet Sync WordPress plugin allows unauthenticated attackers to upload arbitrary files to aff
5116	CVE-2025-12682	0.22%	44.8th	9.8	The Easy Upload Files During Checkout WordPress plugin allows unauthenticated attackers to upload ar
5117	CVE-2025-66481	0.22%	44.8th	9.6	DeepChat versions 0.5.1 and below are vulnerable to cross-site scripting (XSS) attacks through impro
5118	CVE-2026-23877	0.22%	44.9th	4.3	Swing Music versions before 2.1.4 contain a directory traversal vulnerability in the list_folders()
5119	CVE-2025-24650	0.22%	44.7th	9.1	This vulnerability allows attackers to upload arbitrary files, including web shells, to WordPress se
5120	CVE-2025-22723	0.22%	44.7th	9.1	This vulnerability allows attackers to upload arbitrary files, including web shells, to web servers
5121	CVE-2024-49781	0.22%	44.7th	7.1	IBM OpenPages with Watson versions 8.3 and 9.0 contain an XML external entity injection (XXE) vulner
5122	CVE-2025-27631	0.22%	44.8th	6.5	CVE-2025-27631 is an LDAP injection vulnerability in the TRMTracker web application that allows atta
5123	CVE-2024-8581	0.22%	44.8th	9.1	This vulnerability in parisneo/lollms-webui allows attackers to delete any file or directory on the
5124	CVE-2024-55238	0.22%	44.7th	7.1	OpenMetadata versions up to 1.4.1 contain a SQL injection vulnerability in the WorkflowDAO interface
5125	CVE-2025-3104	0.22%	44.7th	5.3	The WP STAGING Pro WordPress Backup Plugin has an information disclosure vulnerability that allows u
5126	CVE-2023-42982	0.22%	44.6th	6.4	This vulnerability in macOS allows processing malicious files to cause denial-of-service or potentia
5127	CVE-2025-32460	0.22%	44.6th	4.0	This vulnerability is a heap-based buffer over-read in GraphicsMagick's JXL image decoder that occur
5128	CVE-2025-3401	0.22%	44.7th	7.3	A critical SQL injection vulnerability in ESAFENET CDG allows remote attackers to execute arbitrary
5129	CVE-2025-3399	0.22%	44.7th	7.3	A critical SQL injection vulnerability exists in ESAFENET CDG version 5.6.3.154.205_20250114, specif
5130	CVE-2025-3345	0.22%	44.7th	7.3	CVE-2025-3345 is a critical SQL injection vulnerability in codeprojects Online Restaurant Management
5131	CVE-2025-3342	0.22%	44.7th	7.3	This critical SQL injection vulnerability in codeprojects Online Restaurant Management System 1.0 al
5132	CVE-2025-3340	0.22%	44.7th	7.3	This critical SQL injection vulnerability in codeprojects Online Restaurant Management System 1.0 al
5133	CVE-2025-3338	0.22%	44.7th	7.3	A critical SQL injection vulnerability exists in codeprojects Online Restaurant Management System 1.
5134	CVE-2025-3333	0.22%	44.7th	7.3	This critical SQL injection vulnerability in codeprojects Online Restaurant Management System 1.0 al
5135	CVE-2025-3331	0.22%	44.7th	7.3	A critical SQL injection vulnerability exists in codeprojects Online Restaurant Management System 1.
5136	CVE-2025-3330	0.22%	44.7th	7.3	This critical SQL injection vulnerability in codeprojects Online Restaurant Management System 1.0 al
5137	CVE-2025-3186	0.22%	44.7th	7.3	This critical SQL injection vulnerability in Online Doctor Appointment Booking System 1.0 allows rem
5138	CVE-2025-3184	0.22%	44.7th	7.3	This critical SQL injection vulnerability in Online Doctor Appointment Booking System 1.0 allows rem
5139	CVE-2025-3182	0.22%	44.7th	7.3	This critical SQL injection vulnerability in Online Doctor Appointment Booking System 1.0 allows att
5140	CVE-2025-3179	0.22%	44.7th	7.3	A critical SQL injection vulnerability exists in the Online Doctor Appointment Booking System 1.0, s
5141	CVE-2025-3174	0.22%	44.7th	7.3	This critical SQL injection vulnerability in Project Worlds Online Lawyer Management System 1.0 allo
5142	CVE-2025-30090	0.22%	44.8th	7.2	This Cross-Site Scripting (XSS) vulnerability in SquirrelMail allows attackers to inject malicious J
5143	CVE-2025-6565	0.22%	44.8th	8.8	A critical stack-based buffer overflow vulnerability in Netgear WNCE3001's HTTP POST request handler
5144	CVE-2025-54090	0.22%	44.7th	6.3	A bug in Apache HTTP Server 2.4.64 causes all RewriteCond expression tests to evaluate as true, pote
5145	CVE-2025-50902	0.22%	44.7th	8.8	This CSRF vulnerability in old-peanut Open-Shop allows attackers to trick authenticated users into s
5146	CVE-2025-46206	0.22%	44.6th	6.5	This vulnerability allows remote attackers to cause denial of service in Artifex mupdf by exploiting
5147	CVE-2025-12296	0.22%	44.7th	4.7	This CVE describes an OS command injection vulnerability in D-Link DAP-2695 firmware update handler
5148	CVE-2025-15351	0.22%	44.7th	7.8	This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening
5149	CVE-2025-15350	0.22%	44.7th	7.8	A deserialization vulnerability in Anritsu VectorStar's CHX file parser allows remote attackers to e
5150	CVE-2025-15348	0.22%	44.7th	7.8	This vulnerability allows remote attackers to execute arbitrary code on Anritsu ShockLine systems by

← Previous Page 103 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free