Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 5201 | CVE-2025-46000 |
|
19.3th | 6.5 | This CVE describes an arbitrary file upload vulnerability in Filemanager v2.5.0 that allows attacker | |
| 5202 | CVE-2025-6211 |
|
19.2th | 6.5 | This vulnerability in the run-llama/llama_index library uses MD5 hashing to generate document chunk | |
| 5203 | CVE-2025-54715 |
|
19.2th | 4.9 | This path traversal vulnerability in the Barcode Scanner with Inventory & Order Manager WordPress pl | |
| 5204 | CVE-2025-8708 |
|
19.1th | 5.0 | This vulnerability in Antabot White-Jotter 0.22 allows remote attackers to execute arbitrary code th | |
| 5205 | CVE-2025-8504 |
|
19.2th | 6.3 | This critical vulnerability in Kitchen Treasure 1.0 allows remote attackers to upload arbitrary file | |
| 5206 | CVE-2025-11078 |
|
19.3th | 6.3 | CVE-2025-11078 is an unrestricted file upload vulnerability in itsourcecode Open Source Job Portal 1 | |
| 5207 | CVE-2025-11050 |
|
19.3th | 6.3 | CVE-2025-11050 is an improper authorization vulnerability in Portabilis i-Educar's /periodo-lancamen | |
| 5208 | CVE-2025-11049 |
|
19.3th | 6.3 | CVE-2025-11049 is an improper authorization vulnerability in Portabilis i-Educar's /unificacao-aluno | |
| 5209 | CVE-2025-11048 |
|
19.3th | 6.3 | This vulnerability allows attackers to bypass authorization controls in Portabilis i-Educar's /consu | |
| 5210 | CVE-2025-11047 |
|
19.3th | 6.3 | This vulnerability in Portabilis i-Educar allows attackers to bypass authorization controls and enum | |
| 5211 | CVE-2025-10989 |
|
19.3th | 6.3 | This vulnerability in yangzongzhuan RuoYi up to version 4.8.1 allows attackers to bypass authorizati | |
| 5212 | CVE-2025-43806 |
|
19.4th | 4.3 | This vulnerability allows remote authenticated users to bypass permission checks in Liferay's Batch | |
| 5213 | CVE-2025-59562 |
|
19.3th | 5.5 | This CVE describes an authorization bypass vulnerability in Academy LMS WordPress plugin where attac | |
| 5214 | CVE-2025-57396 |
|
19.3th | 6.5 | CVE-2025-57396 is a privilege escalation vulnerability in Tandoor Recipes where any authenticated us | |
| 5215 | CVE-2025-10719 |
|
19.4th | 4.3 | CVE-2025-10719 is an Insecure Direct Object Reference vulnerability in Tronclass by WisdomGarden tha | |
| 5216 | CVE-2025-59036 |
|
19.3th | 5.5 | This vulnerability allows deleted or expired API tokens to remain valid for authentication in Infrah | |
| 5217 | CVE-2025-52277 |
|
19.3th | 6.1 | This Cross-Site Scripting (XSS) vulnerability in YesWiki v.4.54 allows remote attackers to inject ma | |
| 5218 | CVE-2024-51423 |
|
19.3th | 6.1 | This is a reflected Cross-Site Scripting (XSS) vulnerability in Infor Global HR GHR that allows atta | |
| 5219 | CVE-2025-62800 |
|
19.3th | 6.1 | FastMCP versions before 2.13.0 have a reflected cross-site scripting vulnerability in the OAuth clie | |
| 5220 | CVE-2025-33133 |
|
19.4th | 6.5 | This vulnerability in IBM DB2 High Performance Unload allows authenticated users to trigger an out-o | |
| 5221 | CVE-2025-33132 |
|
19.4th | 6.5 | IBM DB2 High Performance Unload contains a use-after-free vulnerability (CWE-467) where incorrect po | |
| 5222 | CVE-2025-33131 |
|
19.4th | 6.5 | This vulnerability in IBM DB2 High Performance Unload allows authenticated users to trigger a stack- | |
| 5223 | CVE-2025-33126 |
|
19.4th | 6.5 | This CVE describes an incorrect buffer size calculation vulnerability in IBM DB2 High Performance Un | |
| 5224 | CVE-2025-60859 |
|
19.3th | 6.1 | This is a reflected Cross-Site Scripting (XSS) vulnerability in Gnuboard 5.6.15 that allows authenti | |
| 5225 | CVE-2025-62175 |
|
19.3th | 4.3 | Mastodon servers running vulnerable versions allow disabled or suspended user accounts to maintain r | |
| 5226 | CVE-2025-11672 |
|
19.4th | 5.3 | Uniweb/SoliPACS WebServer developed by EBM Technologies has a missing authentication vulnerability t | |
| 5227 | CVE-2025-11671 |
|
19.4th | 5.3 | Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability ( | |
| 5228 | CVE-2025-11426 |
|
19.3th | 6.3 | Advanced Library Management System 1.0 contains an unrestricted file upload vulnerability in the edi | |
| 5229 | CVE-2025-11398 |
|
19.3th | 6.3 | SourceCodester Hotel and Lodge Management System 1.0 has an unrestricted file upload vulnerability i | |
| 5230 | CVE-2025-63892 |
|
19.4th | 6.8 | A stored cross-site scripting (XSS) vulnerability in SourceCodester Student Grades Management System | |
| 5231 | CVE-2025-5452 |
|
19.2th | 6.6 | This vulnerability allows malicious ACAP applications to steal admin-level service account credentia | |
| 5232 | CVE-2026-1786 |
|
19.2th | 6.5 | The Twitter posts to Blog WordPress plugin has a missing capability check vulnerability that allows | |
| 5233 | CVE-2025-61587 |
|
19.3th | 6.1 | This CVE describes an open redirect vulnerability in Weblate versions 5.13.2 and below when configur | |
| 5234 | CVE-2025-66073 |
|
19.2th | 6.5 | This vulnerability allows attackers to inject malicious objects through deserialization of untrusted | |
| 5235 | CVE-2025-63211 |
|
19.3th | 6.1 | A stored cross-site scripting (XSS) vulnerability in bridgetech VBC Server & Element Manager allows | |
| 5236 | CVE-2025-12427 |
|
19.3th | 5.3 | The YITH WooCommerce Wishlist plugin for WordPress has an Insecure Direct Object Reference vulnerabi | |
| 5237 | CVE-2025-63229 |
|
19.3th | 5.4 | This reflected XSS vulnerability in the Mozart FM Transmitter web interface allows attackers to inje | |
| 5238 | CVE-2025-11681 |
|
19.4th | 6.5 | An authenticated user can cause a denial-of-service by crashing the MFserver process in vulnerable M | |
| 5239 | CVE-2024-42749 |
|
19.3th | 6.1 | This CVE describes a Cross-Site Scripting (XSS) vulnerability in Alto CMS v1.1.13 that allows a loca | |
| 5240 | CVE-2025-13168 |
|
19.2th | 6.3 | This SQL injection vulnerability in ury-erp allows attackers to manipulate database queries through | |
| 5241 | CVE-2025-62449 |
|
19.2th | 6.8 | This path traversal vulnerability in Visual Studio Code CoPilot Chat Extension allows an authorized | |
| 5242 | CVE-2025-62214 |
|
19.3th | 6.7 | This command injection vulnerability in Visual Studio allows authenticated attackers to execute arbi | |
| 5243 | CVE-2025-64435 |
|
19.4th | 5.3 | This vulnerability in KubeVirt allows attackers to disrupt virtual machine control by creating malic | |
| 5244 | CVE-2025-61261 |
|
19.3th | 5.4 | A reflected cross-site scripting vulnerability in CKEditor v46.1.0 and Angular v18.0.0 allows attack | |
| 5245 | CVE-2025-36008 |
|
19.3th | 6.5 | This vulnerability in IBM Db2 allows authenticated users to cause denial of service by exploiting im | |
| 5246 | CVE-2025-36006 |
|
19.4th | 6.5 | This vulnerability in IBM Db2 allows authenticated users to cause denial of service by exploiting im | |
| 5247 | CVE-2025-2534 |
|
19.3th | 5.3 | IBM Db2 databases running vulnerable versions can be crashed by a specially crafted query, causing d | |
| 5248 | CVE-2025-11174 |
|
19.3th | 5.3 | The Document Library Lite WordPress plugin has an improper authorization vulnerability that allows u | |
| 5249 | CVE-2025-67349 |
|
19.3th | 6.1 | This cross-site scripting (XSS) vulnerability in FluentCMS allows attackers to inject malicious scri | |
| 5250 | CVE-2025-66378 |
|
19.2th | 5.9 | Pexip Infinity versions 38.0 and 38.1 have an insufficient access control vulnerability in their RTM |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free