Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
7901	CVE-2026-1157	0.14%	34.2th	8.8	A buffer overflow vulnerability in the Totolink LR350 router's WiFi configuration function allows re
7902	CVE-2026-1156	0.14%	34.2th	8.8	A buffer overflow vulnerability in Totolink LR350 routers allows remote attackers to execute arbitra
7903	CVE-2025-68493	0.14%	34.3th	8.1	This CVE describes a Missing XML Validation vulnerability in Apache Struts that allows attackers to
7904	CVE-2025-14937	0.14%	34.3th	7.2	This vulnerability allows unauthenticated attackers to inject malicious JavaScript into WordPress si
7905	CVE-2025-15057	0.14%	34.3th	7.2	The SlimStat Analytics WordPress plugin has a stored XSS vulnerability in all versions up to 5.3.3.
7906	CVE-2025-15055	0.14%	34.3th	7.2	The SlimStat Analytics WordPress plugin has a stored XSS vulnerability in versions up to 5.3.4 that
7907	CVE-2025-57705	0.14%	34.2th	4.9	This CVE describes a resource allocation vulnerability in QNAP operating systems where an authentica
7908	CVE-2025-22606	0.14%	34.2th	7.8	Coolify versions before 4.0.0-beta.359 contain a command injection vulnerability in project name han
7909	CVE-2025-21607	0.14%	34.1th	7.5	The Vyper compiler fails to check success flags when using EcRecover and Identity precompiles, allow
7910	CVE-2025-1075	0.14%	34.1th	7.5	This vulnerability in Checkmk monitoring software causes LDAP authentication credentials to be writt
7911	CVE-2025-22888	0.14%	34.1th	5.4	Movable Type's MT Block Editor has a stored XSS vulnerability in the custom block edit page. Attacke
7912	CVE-2024-13374	0.14%	34.1th	4.3	The WP Table Manager WordPress plugin has an authorization vulnerability that allows authenticated u
7913	CVE-2024-9643	0.14%	34.1th	9.8	The Four-Faith F3x36 router firmware v2.0.0 contains hard-coded administrative credentials, allowing
7914	CVE-2024-39311	0.14%	34.1th	5.4	This vulnerability allows a publisher user in Publify to perform cross-site scripting (XSS) attacks
7915	CVE-2025-30366	0.14%	34.1th	5.4	WeGIA versions before 3.2.8 have a stored cross-site scripting vulnerability that allows attackers t
7916	CVE-2024-57394	0.14%	34.1th	8.8	This vulnerability in Qi-ANXIN Tianqing Endpoint Security Management System allows authenticated use
7917	CVE-2024-41447	0.14%	34.1th	5.4	This stored XSS vulnerability in Alkacon OpenCMS v17.0 allows attackers to inject malicious scripts
7918	CVE-2024-40069	0.14%	34.1th	5.4	This vulnerability allows attackers to inject malicious scripts into the Online ID Generator System
7919	CVE-2024-46494	0.14%	34.1th	5.4	This cross-site scripting vulnerability in Typecho v1.2.1 allows attackers to inject malicious scrip
7920	CVE-2025-1659	0.14%	34.2th	7.8	This vulnerability in Autodesk Navisworks allows attackers to exploit an out-of-bounds read by trick
7921	CVE-2025-5357	0.14%	34.1th	7.3	CVE-2025-5357 is a critical buffer overflow vulnerability in FreeFloat FTP Server 1.0's PWD command
7922	CVE-2025-5356	0.14%	34.1th	7.3	A critical buffer overflow vulnerability exists in FreeFloat FTP Server 1.0's BYE command handler, a
7923	CVE-2025-5331	0.14%	34.1th	7.3	A critical buffer overflow vulnerability in PCMan FTP Server 2.0.7 allows remote attackers to execut
7924	CVE-2025-5295	0.14%	34.1th	7.3	A critical buffer overflow vulnerability in FreeFloat FTP Server 1.0.0 allows remote attackers to ex
7925	CVE-2025-5221	0.14%	34.1th	7.3	CVE-2025-5221 is a critical buffer overflow vulnerability in FreeFloat FTP Server 1.0.0's QUOTE comm
7926	CVE-2025-5220	0.14%	34.1th	7.3	CVE-2025-5220 is a critical buffer overflow vulnerability in FreeFloat FTP Server 1.0.0's GET comman
7927	CVE-2025-5219	0.14%	34.1th	7.3	A critical buffer overflow vulnerability exists in FreeFloat FTP Server 1.0.0's ASCII Command Handle
7928	CVE-2025-5217	0.14%	34.1th	7.3	A critical buffer overflow vulnerability in FreeFloat FTP Server 1.0.0 allows remote attackers to ex
7929	CVE-2025-5076	0.14%	34.1th	7.3	CVE-2025-5076 is a critical buffer overflow vulnerability in FreeFloat FTP Server 1.0's SEND command
7930	CVE-2025-5075	0.14%	34.1th	7.3	CVE-2025-5075 is a critical buffer overflow vulnerability in FreeFloat FTP Server 1.0's DEBUG comman
7931	CVE-2025-5073	0.14%	34.1th	7.3	A critical buffer overflow vulnerability in FreeFloat FTP Server 1.0 allows remote attackers to exec
7932	CVE-2025-54073	0.14%	34.2th	7.5	A command injection vulnerability in mcp-package-docs MCP Server allows attackers to execute arbitra
7933	CVE-2025-9060	0.14%	34.2th	9.1	This vulnerability in MSoft MFlash allows authenticated administrators to execute arbitrary code on
7934	CVE-2025-35452	0.14%	34.1th	9.8	This vulnerability allows attackers to access PTZOptics and other ValueHD-based pan-tilt-zoom camera
7935	CVE-2025-13283	0.14%	34.1th	7.1	TenderDocTransfer software has two critical vulnerabilities: lack of CSRF protection allows unauthen
7936	CVE-2025-13619	0.14%	34.2th	9.8	The Flex Store Users WordPress plugin allows unauthenticated attackers to register accounts with adm
7937	CVE-2025-12963	0.14%	34.2th	9.8	The LazyTasks WordPress plugin has an unauthenticated privilege escalation vulnerability that allows
7938	CVE-2025-13764	0.14%	34.2th	9.8	The WP CarDealer WordPress plugin has a critical privilege escalation vulnerability that allows unau
7939	CVE-2025-66507	0.14%	34.2th	7.5	CVE-2025-66507 is an authentication bypass vulnerability in 1Panel that allows unauthenticated attac
7940	CVE-2026-25632	0.14%	34.1th	10.0	CVE-2026-25632 is a critical remote code execution vulnerability in EPyT-Flow's REST API. Attackers
7941	CVE-2025-15018	0.14%	34.2th	9.8	The Optional Email WordPress plugin contains a privilege escalation vulnerability that allows unauth
7942	CVE-2025-0842	0.14%	33.9th	7.3	This critical SQL injection vulnerability in needyamin Library Card System 1.0 allows attackers to b
7943	CVE-2023-27112	0.14%	34th	9.8	This SQL injection vulnerability in pearProjectApi allows attackers to execute arbitrary SQL command
7944	CVE-2024-40762	0.14%	34th	9.8	This vulnerability in SonicOS SSLVPN uses a weak random number generator for authentication tokens,
7945	CVE-2025-0246	0.14%	34th	6.5	This vulnerability allows an attacker to spoof the address bar in Firefox on Android by using an inv
7946	CVE-2024-12532	0.14%	33.9th	4.3	The BWD Elementor Addons WordPress plugin exposes sensitive template data including private, pending
7947	CVE-2024-12538	0.14%	33.9th	4.3	The Duplicate Post WordPress plugin allows authenticated users with Contributor-level access or high
7948	CVE-2023-46628	0.14%	34th	4.3	This CVE describes a Missing Authorization vulnerability in the WP Word Count WordPress plugin that
7949	CVE-2020-13481	0.14%	34.1th	6.1	This CVE describes a cross-site scripting (XSS) vulnerability in certain Lexmark printer products th
7950	CVE-2025-25473	0.14%	34th	5.3	A memory leak vulnerability exists in FFmpeg's avformat_free_context function, which fails to proper

← Previous Page 159 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free