Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
9001	CVE-2025-67536	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the LearnPress WordPress plugin allows attac
9002	CVE-2025-68077	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Stockholm WordPress theme allows attacke
9003	CVE-2024-13795	0.04%	11.3th	4.3	This CSRF vulnerability in the Ecwid Ecommerce Shopping Cart WordPress plugin allows unauthenticated
9004	CVE-2025-67537	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the ThirstyAffiliates WordPress plugin allow
9005	CVE-2025-68078	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Salient Portfolio WordPress theme allows
9006	CVE-2025-67538	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the JNews Gallery WordPress plugin allows at
9007	CVE-2025-68079	0.04%	11.5th	6.5	This stored XSS vulnerability in the Salient Shortcodes WordPress plugin allows attackers to inject
9008	CVE-2025-12953	0.04%	11.7th	4.3	This vulnerability allows authenticated WordPress users with subscriber-level access or higher to ad
9009	CVE-2025-67539	0.04%	11.5th	6.5	This DOM-based XSS vulnerability in the Select Core WordPress plugin allows attackers to inject mali
9010	CVE-2025-68080	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the User Avatar - Reloaded WordPress plugin
9011	CVE-2025-67542	0.04%	11.5th	6.5	This DOM-based Cross-Site Scripting (XSS) vulnerability in SilkyPress Multi-Step Checkout for WooCom
9012	CVE-2025-11960	0.04%	11.8th	6.1	This is a reflected cross-site scripting (XSS) vulnerability in Aryom Software's KVKNET software tha
9013	CVE-2025-67543	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Essential Widgets WordPress plugin allow
9014	CVE-2025-12675	0.04%	11.7th	4.3	The KiotViet Sync WordPress plugin has an authorization vulnerability that allows authenticated user
9015	CVE-2025-41101	0.04%	11.3th	5.4	This CVE describes an HTML injection vulnerability in Fairsketch's RISE CRM Framework that allows at
9016	CVE-2025-66111	0.04%	11.8th	6.1	This stored cross-site scripting (XSS) vulnerability in the Nelio Popups WordPress plugin allows att
9017	CVE-2025-67544	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Shopkeeper Extender WordPress plugin all
9018	CVE-2025-41102	0.04%	11.3th	5.4	An HTML injection vulnerability in Fairsketch's RISE CRM Framework v3.8.1 allows attackers to inject
9019	CVE-2025-54269	0.04%	11.3th	5.5	Adobe Animate versions 23.0.13, 24.0.10 and earlier contain an out-of-bounds read vulnerability that
9020	CVE-2025-54270	0.04%	11.3th	5.5	Adobe Animate versions 23.0.13, 24.0.10 and earlier contain a NULL pointer dereference vulnerability
9021	CVE-2025-41103	0.04%	11.3th	5.4	This CVE describes an HTML injection vulnerability in Fairsketch's RISE CRM Framework v3.8.1. Attack
9022	CVE-2025-67545	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the FireBox WordPress plugin allows attacker
9023	CVE-2025-41104	0.04%	11.3th	5.4	An HTML injection vulnerability in Fairsketch's RISE CRM Framework allows attackers to inject malici
9024	CVE-2025-65031	0.04%	11.7th	6.5	This vulnerability allows authenticated users of Rallly to impersonate any other user by manipulatin
9025	CVE-2025-13497	0.04%	11.5th	6.4	The Recras WordPress plugin has a stored cross-site scripting vulnerability that allows authenticate
9026	CVE-2025-41105	0.04%	11.3th	5.4	This CVE describes an HTML injection vulnerability in Fairsketch's RISE CRM Framework v3.8.1. Attack
9027	CVE-2025-11454	0.04%	11.3th	6.5	This SQL injection vulnerability in the Specific Content For Mobile WordPress plugin allows authenti
9028	CVE-2025-67549	0.04%	11.5th	6.5	This DOM-based Cross-Site Scripting (XSS) vulnerability in the oik WordPress plugin allows attackers
9029	CVE-2025-41106	0.04%	11.3th	5.4	This CVE describes an HTML injection vulnerability in Fairsketch's RISE CRM Framework v3.8.1. Attack
9030	CVE-2025-10994	0.04%	11.6th	5.3	CVE-2025-10994 is a use-after-free vulnerability in Open Babel's GAMESS file parser that could allow
9031	CVE-2025-67550	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Donation Thermometer WordPress plugin al
9032	CVE-2025-67551	0.04%	11.5th	6.5	This stored cross-site scripting (XSS) vulnerability in the Wappointment WordPress plugin allows att
9033	CVE-2025-13741	0.04%	11.3th	4.3	This vulnerability allows authenticated WordPress users with Contributor-level access or higher to r
9034	CVE-2025-13537	0.04%	11.5th	6.4	The Live Composer WordPress plugin has stored XSS vulnerabilities allowing authenticated attackers w
9035	CVE-2025-67552	0.04%	11.5th	6.5	This DOM-based Cross-Site Scripting (XSS) vulnerability in the Walker Core WordPress plugin allows a
9036	CVE-2025-50340	0.04%	11.6th	4.3	An authenticated SOGo Webmail user can send emails impersonating other users by manipulating sender
9037	CVE-2025-67553	0.04%	11.5th	6.5	This DOM-based cross-site scripting (XSS) vulnerability in the Advanced FAQ Manager WordPress plugin
9038	CVE-2025-10996	0.04%	11.6th	5.3	This vulnerability allows local attackers to execute arbitrary code or cause denial of service throu
9039	CVE-2025-66415	0.04%	11.3th	5.4	CVE-2025-66415 is an authorization bypass vulnerability in fastify-reply-from, a Fastify plugin for
9040	CVE-2025-58044	0.04%	11.3th	6.1	This CVE describes an open redirect vulnerability in JumpServer's internationalization endpoint. Att
9041	CVE-2025-20190	0.04%	11.1th	6.5	This vulnerability in Cisco IOS XE Wireless Controller Software allows authenticated lobby ambassado
9042	CVE-2025-54691	0.04%	11.2th	5.3	This CVE describes an Insecure Direct Object Reference (IDOR) vulnerability in the Stylemix Motors W
9043	CVE-2025-20300	0.04%	11.3th	4.3	In affected Splunk Enterprise and Cloud Platform versions, a low-privileged user with read-only acce
9044	CVE-2025-37959	0.04%	11.1th	5.5	A Linux kernel vulnerability in the bpf_redirect_peer function fails to properly scrub packet metada
9045	CVE-2025-67560	0.04%	11.2th	6.5	This CVE describes a Missing Authorization vulnerability in the Listdom WordPress plugin by Webilia
9046	CVE-2025-37961	0.04%	11.1th	5.5	This CVE describes an uninitialized memory vulnerability in the Linux kernel's IPVS (IP Virtual Serv
9047	CVE-2025-48929	0.04%	11.1th	4.0	This vulnerability in TeleMessage allows attackers to reuse stolen long-lived authentication credent
9048	CVE-2025-13974	0.04%	11.1th	4.4	This stored XSS vulnerability in the Email Customizer for WooCommerce WordPress plugin allows authen
9049	CVE-2025-39923	0.04%	11.3th	5.5	A Linux kernel vulnerability in the Qualcomm BAM DMA driver allows early boot crashes when device tr
9050	CVE-2024-41504	0.04%	11.1th	6.1	Jetimob Plataforma Imobiliaria 20240627-0 contains a stored cross-site scripting (XSS) vulnerability

← Previous Page 181 of 332 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free