Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 1101 | CVE-2025-0154 |
|
45.5th | 5.3 | IBM TXSeries for Multiplatforms versions 9.1 and 11.1 have an HTTP header injection vulnerability th | |
| 1102 | CVE-2025-27694 |
|
45.5th | 5.3 | Dell Wyse Management Suite versions before 5.1 contain an insufficient resource pool vulnerability t | |
| 1103 | CVE-2025-31628 |
|
45.5th | 5.3 | This CVE describes a Missing Authorization vulnerability in the Sliced Invoices WordPress plugin tha | |
| 1104 | CVE-2025-31863 |
|
45.5th | 5.3 | This CVE describes a missing authorization vulnerability in the Agency Toolkit WordPress plugin that | |
| 1105 | CVE-2025-31786 |
|
45.5th | 5.3 | This CVE describes a Missing Authorization vulnerability in the WordPress Simple Icons plugin that a | |
| 1106 | CVE-2025-25285 |
|
45.4th | 5.3 | This vulnerability in @octokit/endpoint allows attackers to cause a regular expression denial-of-ser | |
| 1107 | CVE-2025-31618 |
|
45.4th | 5.3 | This vulnerability allows attackers to bypass authorization controls in the Jaap Jansma Connector to | |
| 1108 | CVE-2025-31386 |
|
45.4th | 5.3 | This CVE describes a Missing Authorization vulnerability in Simple:Press WordPress plugin that allow | |
| 1109 | CVE-2025-30887 |
|
45.4th | 5.3 | This CVE describes a Missing Authorization vulnerability in the WpEvently WordPress plugin that allo | |
| 1110 | CVE-2025-30839 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the Taxi Booking Manager for WooCommerce | |
| 1111 | CVE-2025-3790 |
|
45.4th | 5.3 | This critical vulnerability in baseweb JSite 1.0's Apache Druid Monitoring Console allows unauthoriz | |
| 1112 | CVE-2025-39457 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the Booking and Rental Manager WordPress | |
| 1113 | CVE-2025-31042 |
|
45.4th | 5.3 | This CVE describes a Missing Authorization vulnerability in the Sandwich Adsense WordPress plugin th | |
| 1114 | CVE-2024-46671 |
|
45.4th | 6.2 | This vulnerability allows authenticated attackers with read-only admin permissions in FortiWeb to ma | |
| 1115 | CVE-2025-32258 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the Simple Website Logo WordPress plugin | |
| 1116 | CVE-2025-32254 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the WPBookit WordPress plugin that allow | |
| 1117 | CVE-2025-32252 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the WP Genealogy WordPress plugin that a | |
| 1118 | CVE-2025-32225 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the WP Event Manager WordPress plugin th | |
| 1119 | CVE-2025-24317 |
|
45.3th | 5.3 | This vulnerability allows remote unauthenticated attackers to cause denial-of-service conditions in | |
| 1120 | CVE-2025-31848 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the WordPress Adverts Plugin that allows | |
| 1121 | CVE-2025-31810 |
|
45.4th | 5.3 | This CVE describes a missing authorization vulnerability in the WordPress Question Answer plugin tha | |
| 1122 | CVE-2025-31774 |
|
45.4th | 5.3 | This CVE describes a Missing Authorization vulnerability in WebProtect.ai Astra Security Suite WordP | |
| 1123 | CVE-2025-31765 |
|
45.4th | 5.3 | This CVE describes a Missing Authorization vulnerability in the GDPR Cookie Notice WordPress plugin | |
| 1124 | CVE-2023-51296 |
|
45.3th | 6.1 | PHPJabbers Event Booking Calendar v4.0 contains a cross-site scripting vulnerability in multiple par | |
| 1125 | CVE-2025-32093 |
|
45.3th | 4.7 | This vulnerability allows delegated granular administration users with 'Edit Other Users' permission | |
| 1126 | CVE-2024-10894 |
|
45.2th | 6.4 | The Payment Forms for Paystack WordPress plugin has a stored cross-site scripting vulnerability in s | |
| 1127 | CVE-2025-31138 |
|
45.3th | 5.5 | This vulnerability in tarteaucitron.js allows attackers with direct access to website source code or | |
| 1128 | CVE-2025-43736 |
|
45.3th | 4.3 | This CVE describes a Denial of Service vulnerability in Liferay Portal and DXP where authenticated u | |
| 1129 | CVE-2025-53809 |
|
45.3th | 6.5 | This vulnerability allows an authorized attacker to cause a denial of service in Windows LSASS throu | |
| 1130 | CVE-2026-1111 |
|
45.3th | 4.7 | This CVE describes a path traversal vulnerability in Sanluan PublicCMS that allows attackers to writ | |
| 1131 | CVE-2025-0734 |
|
45.2th | 4.7 | This vulnerability in RuoYi up to version 4.8.0 allows remote attackers to execute arbitrary code th | |
| 1132 | CVE-2025-21499 |
|
45.2th | 4.9 | This vulnerability in MySQL Server's DDL component allows high-privileged attackers with network acc | |
| 1133 | CVE-2024-51111 |
|
45.2th | 4.1 | This Cross-Site Scripting (XSS) vulnerability in Pnetlab 5.3.11 allows attackers to inject malicious | |
| 1134 | CVE-2025-3062 |
|
45.2th | 6.6 | This vulnerability in the Drupal Admin LTE theme allows improper authentication due to CWE-287 (Impr | |
| 1135 | CVE-2021-24008 |
|
45.2th | 5.3 | This vulnerability allows remote unauthenticated attackers to obtain sensitive software version info | |
| 1136 | CVE-2024-11173 |
|
45.2th | 6.5 | An unhandled exception vulnerability in LibreChat allows attackers to crash the server, causing deni | |
| 1137 | CVE-2025-0401 |
|
45.1th | 5.3 | This critical path traversal vulnerability in the Reggie 1.0 application allows attackers to access | |
| 1138 | CVE-2025-27095 |
|
45.1th | 4.3 | This vulnerability allows attackers with low-privileged JumpServer accounts to manipulate Kubernetes | |
| 1139 | CVE-2024-12391 |
|
45.1th | 6.5 | This vulnerability allows attackers to cause a denial of service by providing specially crafted regu | |
| 1140 | CVE-2025-1791 |
|
45th | 6.3 | CVE-2025-1791 is a critical unrestricted file upload vulnerability in Zorlan SkyCaiji 2.9 that allow | |
| 1141 | CVE-2025-3298 |
|
45.1th | 4.3 | This vulnerability in SourceCodester Online Eyewear Shop 1.0 allows attackers to bypass access contr | |
| 1142 | CVE-2024-13594 |
|
44.9th | 6.5 | The Simple Downloads List WordPress plugin contains a SQL injection vulnerability in the 'neofix_sdl | |
| 1143 | CVE-2025-43928 |
|
44.9th | 5.8 | Infodraw Media Relay Service 7.1.0.0 contains a path traversal vulnerability in its web server on po | |
| 1144 | CVE-2024-57540 |
|
44.9th | 6.5 | A buffer overflow vulnerability exists in Linksys E8450 routers where the 'action' field is copied t | |
| 1145 | CVE-2023-28362 |
|
44.9th | 4.0 | This vulnerability in Ruby on Rails allows attackers to inject malicious characters into redirect UR | |
| 1146 | CVE-2025-23187 |
|
44.8th | 5.3 | This vulnerability allows unauthenticated attackers to generate technical metadata in SAP systems vi | |
| 1147 | CVE-2025-30474 |
|
44.8th | 5.0 | Apache Commons VFS versions before 2.10.0 can leak FTP passwords in error messages when file operati | |
| 1148 | CVE-2025-30196 |
|
44.8th | 6.5 | Jenkins AnchorChain Plugin 1.0 has a stored cross-site scripting (XSS) vulnerability that allows att | |
| 1149 | CVE-2025-27794 |
|
44.8th | 6.8 | This CVE describes a session hijacking vulnerability in Flarum forum software where an attacker cont | |
| 1150 | CVE-2025-24343 |
|
44.8th | 5.4 | This vulnerability allows authenticated low-privileged attackers to write arbitrary files to any loc |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free