Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 6401 | CVE-2025-0637 |
|
38.6th | 9.8 | CVE-2025-0637 is an improper authentication vulnerability in Beta10 software that allows unauthentic | |
| 6402 | CVE-2024-12615 |
|
38.7th | 6.5 | The Passwords Manager WordPress plugin contains a SQL injection vulnerability that allows authentica | |
| 6403 | CVE-2025-21374 |
|
38.7th | 5.5 | This vulnerability in the Windows Client Side Caching (CSC) service allows an authenticated attacker | |
| 6404 | CVE-2024-13279 |
|
38.6th | 9.8 | A session fixation vulnerability in Drupal's Two-factor Authentication (TFA) module allows attackers | |
| 6405 | CVE-2025-0335 |
|
38.7th | 6.3 | This vulnerability allows attackers to upload arbitrary files without restrictions through the Chang | |
| 6406 | CVE-2025-1517 |
|
38.6th | 6.4 | This vulnerability allows authenticated WordPress users with contributor-level access or higher to i | |
| 6407 | CVE-2025-26304 |
|
38.7th | 8.2 | A memory leak vulnerability exists in libming's SWF parser that could lead to denial of service thro | |
| 6408 | CVE-2024-13428 |
|
38.7th | 5.3 | This vulnerability allows unauthenticated attackers to delete arbitrary company logos in the WP Job | |
| 6409 | CVE-2025-2858 |
|
38.7th | 8.8 | This privilege escalation vulnerability in saTECH BCU firmware allows attackers with CLI access to b | |
| 6410 | CVE-2025-30884 |
|
38.6th | 4.7 | This CVE describes an open redirect vulnerability in the Bit Integrations WordPress plugin that allo | |
| 6411 | CVE-2025-30859 |
|
38.6th | 4.7 | This CVE describes an open redirect vulnerability in the AliNext WordPress plugin that allows attack | |
| 6412 | CVE-2025-30781 |
|
38.6th | 4.7 | This vulnerability allows attackers to redirect users from legitimate WooCommerce order status pages | |
| 6413 | CVE-2025-2706 |
|
38.7th | 6.3 | This critical vulnerability in Digiwin ERP 5.0.1 allows remote attackers to upload arbitrary files v | |
| 6414 | CVE-2025-2268 |
|
38.6th | 7.5 | This vulnerability allows attackers to cause denial of service on HP LaserJet MFP M232-M237 printers | |
| 6415 | CVE-2025-27653 |
|
38.6th | 6.1 | This vulnerability allows attackers to inject malicious scripts into the Vasion Print (formerly Prin | |
| 6416 | CVE-2025-39599 |
|
38.6th | 4.7 | This CVE describes an open redirect vulnerability in Webilia Inc.'s Listdom WordPress plugin that al | |
| 6417 | CVE-2025-39597 |
|
38.6th | 4.7 | This CVE describes an open redirect vulnerability in the Fast eBay Listings WordPress plugin that al | |
| 6418 | CVE-2025-32694 |
|
38.6th | 4.7 | This vulnerability allows attackers to redirect users from legitimate WordPress sites to malicious w | |
| 6419 | CVE-2025-31871 |
|
38.6th | 4.7 | This vulnerability allows attackers to redirect users from legitimate WordPress sites to malicious w | |
| 6420 | CVE-2025-31821 |
|
38.6th | 4.7 | This vulnerability allows attackers to redirect users from legitimate WordPress sites to malicious w | |
| 6421 | CVE-2025-4857 |
|
38.7th | 7.2 | The Newsletters plugin for WordPress contains a Local File Inclusion vulnerability that allows authe | |
| 6422 | CVE-2025-43596 |
|
38.7th | 7.8 | An insecure file system permissions vulnerability in MSP360 Backup 8.0 allows low-privileged users t | |
| 6423 | CVE-2025-55303 |
|
38.7th | 6.1 | This vulnerability in Astro web framework allows attackers to bypass third-party domain restrictions | |
| 6424 | CVE-2025-56413 |
|
38.7th | 8.8 | This CVE describes an OS command injection vulnerability in 1panel's SSH operation function that all | |
| 6425 | CVE-2025-69874 |
|
38.6th | 9.8 | CVE-2025-69874 is a critical path traversal vulnerability in nanotar that allows attackers to write | |
| 6426 | CVE-2025-40547 |
|
38.7th | 9.1 | A logic error vulnerability in SolarWinds Serv-U allows administrators to execute arbitrary code. Th | |
| 6427 | CVE-2025-0703 |
|
38.5th | 4.3 | This CVE describes a path traversal vulnerability in JoeyBling bootplus that allows attackers to acc | |
| 6428 | CVE-2025-24591 |
|
38.6th | 4.3 | This CVE describes a missing authorization vulnerability in the NinjaTeam GDPR CCPA Compliance Suppo | |
| 6429 | CVE-2025-0343 |
|
38.5th | 7.5 | Swift ASN.1 library crashes when parsing malformed BER/DER data due to incorrect assumptions about c | |
| 6430 | CVE-2025-21210 |
|
38.6th | 4.2 | This Windows BitLocker vulnerability allows an authenticated attacker to access sensitive informatio | |
| 6431 | CVE-2024-56236 |
|
38.6th | 4.3 | This CVE describes a Missing Authorization vulnerability in the Hestia Nginx Cache WordPress plugin | |
| 6432 | CVE-2023-47515 |
|
38.6th | 5.3 | This CVE describes a Missing Authorization vulnerability in the Seers WordPress plugin that allows a | |
| 6433 | CVE-2023-46637 |
|
38.6th | 5.3 | This CVE describes a Missing Authorization vulnerability in the WordPress Generate Dummy Posts plugi | |
| 6434 | CVE-2023-46083 |
|
38.6th | 5.3 | This CVE describes a missing authorization vulnerability in Kali Forms WordPress plugin that allows | |
| 6435 | CVE-2023-46073 |
|
38.6th | 5.3 | This CVE describes a Missing Authorization vulnerability in the DX Delete Attached Media WordPress p | |
| 6436 | CVE-2023-45766 |
|
38.6th | 5.3 | This CVE describes a missing authorization vulnerability in the Poll Maker WordPress plugin that all | |
| 6437 | CVE-2023-45061 |
|
38.6th | 5.3 | This CVE describes a Missing Authorization vulnerability in the WP Job Openings WordPress plugin by | |
| 6438 | CVE-2023-44258 |
|
38.6th | 5.3 | This CVE describes a Missing Authorization vulnerability in Schema App Structured Data WordPress plu | |
| 6439 | CVE-2023-51315 |
|
38.5th | 5.4 | PHPJabbers Restaurant Booking System v3.0 contains multiple stored cross-site scripting (XSS) vulner | |
| 6440 | CVE-2023-51312 |
|
38.5th | 5.4 | PHPJabbers Restaurant Booking System v3.0 contains a reflected cross-site scripting vulnerability in | |
| 6441 | CVE-2024-24911 |
|
38.5th | 5.3 | This vulnerability causes the cpca process on Check Point Security Management/Domain Management Serv | |
| 6442 | CVE-2025-24204 |
|
38.6th | 9.8 | This vulnerability in macOS allows malicious applications to bypass security restrictions and access | |
| 6443 | CVE-2024-41643 |
|
38.6th | 6.8 | This vulnerability allows a physically proximate attacker to execute arbitrary code on Arris NVG443B | |
| 6444 | CVE-2025-27676 |
|
38.6th | 6.1 | This vulnerability allows cross-site scripting (XSS) attacks in the Reports module of Vasion Print ( | |
| 6445 | CVE-2024-22036 |
|
38.6th | 9.1 | This vulnerability in Rancher allows attackers to escape the chroot jail and gain root access to the | |
| 6446 | CVE-2025-32036 |
|
38.6th | 4.2 | CVE-2025-32036 is a captcha bypass vulnerability in DNN CMS where the generated captcha images have | |
| 6447 | CVE-2025-27205 |
|
38.6th | 5.4 | Adobe Experience Manager Screens versions FP11.3 and earlier contain a stored cross-site scripting v | |
| 6448 | CVE-2025-26649 |
|
38.5th | 7.0 | A race condition vulnerability in Windows Secure Channel allows authenticated attackers to escalate | |
| 6449 | CVE-2025-32413 |
|
38.6th | 6.4 | Vulnerability-Lookup versions before 2.7.1 contain a stored cross-site scripting (XSS) vulnerability | |
| 6450 | CVE-2025-29838 |
|
38.6th | 7.4 | This vulnerability allows an unauthorized attacker to exploit a null pointer dereference in Windows |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free