Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 6001 | CVE-2025-32613 |
|
40.2th | 7.1 | This stored cross-site scripting (XSS) vulnerability in the WordPress Debug Log Manager plugin allow | |
| 6002 | CVE-2025-32609 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the Verowa Connect WordPress plugin allow | |
| 6003 | CVE-2025-32604 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into AWSA Shipping WordPress plugin | |
| 6004 | CVE-2025-32590 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into Web2application WordPress plugi | |
| 6005 | CVE-2025-32578 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the WordPress Coming Soon Countdown plugi | |
| 6006 | CVE-2025-32566 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Lice | |
| 6007 | CVE-2025-32562 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into WP Easy Poll WordPress plugin p | |
| 6008 | CVE-2025-32560 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the WP-H | |
| 6009 | CVE-2025-32554 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by Raptive | |
| 6010 | CVE-2025-32548 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Hamb | |
| 6011 | CVE-2025-32540 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Feed | |
| 6012 | CVE-2025-32533 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6013 | CVE-2025-32531 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the Arconix FAQ WordPress plugin allows a | |
| 6014 | CVE-2025-32529 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the iONE | |
| 6015 | CVE-2025-32527 |
|
40.2th | 7.1 | This stored cross-site scripting (XSS) vulnerability in the T&P Gallery Slider WordPress plugin allo | |
| 6016 | CVE-2025-32522 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6017 | CVE-2025-32520 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Word | |
| 6018 | CVE-2025-32515 |
|
40.2th | 7.1 | This is a reflected cross-site scripting (XSS) vulnerability in the Terminal Africa WordPress plugin | |
| 6019 | CVE-2025-32513 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Nomu | |
| 6020 | CVE-2025-32511 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6021 | CVE-2025-32507 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the Event Espresso WordPress plugin allow | |
| 6022 | CVE-2025-32504 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Silv | |
| 6023 | CVE-2025-31006 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Acti | |
| 6024 | CVE-2025-27346 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the WordPress Rebuild Permalinks plugin a | |
| 6025 | CVE-2025-27343 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6026 | CVE-2025-27337 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Font | |
| 6027 | CVE-2025-27324 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the 17TR | |
| 6028 | CVE-2025-27319 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the User | |
| 6029 | CVE-2025-27313 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Goog | |
| 6030 | CVE-2025-27309 |
|
40.2th | 7.1 | This stored cross-site scripting (XSS) vulnerability in the Flickr Slideshow Wrapper WordPress plugi | |
| 6031 | CVE-2025-27293 |
|
40.2th | 7.1 | This CVE describes a reflected cross-site scripting (XSS) vulnerability in the Shipmozo Courier Trac | |
| 6032 | CVE-2025-27291 |
|
40.2th | 7.1 | This CVE describes a reflected cross-site scripting (XSS) vulnerability in the uxgallery WordPress P | |
| 6033 | CVE-2025-27288 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the File | |
| 6034 | CVE-2025-27284 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Flag | |
| 6035 | CVE-2025-24745 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Clas | |
| 6036 | CVE-2025-24655 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Pick | |
| 6037 | CVE-2025-24645 |
|
40.2th | 7.1 | This reflected cross-site scripting (XSS) vulnerability in the Eazy Under Construction WordPress plu | |
| 6038 | CVE-2025-24637 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Beac | |
| 6039 | CVE-2025-24621 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Arco | |
| 6040 | CVE-2025-24586 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6041 | CVE-2025-24553 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users | |
| 6042 | CVE-2025-24539 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the DeBo | |
| 6043 | CVE-2025-23858 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Cust | |
| 6044 | CVE-2025-23782 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by TotalCon | |
| 6045 | CVE-2025-23443 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Auth | |
| 6046 | CVE-2025-22774 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into the CRUDLab Scroll to Top WordP | |
| 6047 | CVE-2025-22651 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the Styl | |
| 6048 | CVE-2025-22565 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into vooPlayer v4 WordPress plugin p | |
| 6049 | CVE-2025-32923 |
|
40.2th | 7.1 | This is a reflected cross-site scripting (XSS) vulnerability in the Tourmaster WordPress plugin that | |
| 6050 | CVE-2025-30984 |
|
40.2th | 7.1 | This vulnerability allows attackers to inject malicious scripts into web pages generated by the SEO |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free