Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
2001	CVE-2026-21675	0.13%	32.9th	9.8	CVE-2026-21675 is a use-after-free vulnerability in iccDEV's CIccXform::Create() function that can l
2002	CVE-2025-47586	0.13%	32.6th	9.0	This CVE describes an unauthenticated Local File Inclusion vulnerability in the WordPress Motors - E
2003	CVE-2025-53037	0.13%	32.7th	9.8	An unauthenticated remote code execution vulnerability in Oracle Financial Services Analytical Appli
2004	CVE-2025-63807	0.13%	32.6th	9.8	This vulnerability allows unauthenticated attackers to brute-force verification codes due to weak ge
2005	CVE-2026-1162	0.13%	32.7th	9.8	This vulnerability allows remote attackers to execute arbitrary code on UTT HiPER 810 routers by exp
2006	CVE-2025-1260	0.13%	32.4th	9.1	This vulnerability allows unauthorized gNOI requests to bypass security controls on Arista EOS devic
2007	CVE-2025-41663	0.13%	32.5th	9.8	This critical vulnerability in u-link Management API allows unauthenticated attackers in man-in-the-
2008	CVE-2025-8059	0.13%	32.5th	9.8	The B Blocks WordPress plugin has a critical privilege escalation vulnerability that allows unauthen
2009	CVE-2025-40795	0.13%	32.6th	9.8	A stack-based buffer overflow vulnerability in Siemens SIMATIC PCS neo's User Management Component a
2010	CVE-2025-59818	0.13%	32.6th	10.0	This vulnerability allows authenticated attackers to execute arbitrary system commands by manipulati
2011	CVE-2025-4404	0.13%	32.3th	9.1	This CVE describes a privilege escalation vulnerability in FreeIPA where attackers can create servic
2012	CVE-2025-29514	0.13%	32.4th	9.8	This vulnerability allows unauthenticated attackers to download the configuration file of D-Link DSL
2013	CVE-2026-25895	0.13%	32.4th	9.8	CVE-2026-25895 is a path traversal vulnerability in FUXA web-based SCADA/HMI software that allows un
2014	CVE-2025-65570	0.13%	32.3th	9.8	A type confusion vulnerability in jsish 2.0 allows incorrect control flow during execution of the OP
2015	CVE-2025-64054	0.13%	32.4th	9.6	A reflected Cross-Site Scripting (XSS) vulnerability in Fanvil x210 VoIP phones running firmware ver
2016	CVE-2025-30996	0.13%	32.4th	9.9	This vulnerability allows attackers to upload arbitrary files, including web shells, to WordPress si
2017	CVE-2025-53763	0.13%	32.3th	9.8	An improper access control vulnerability in Azure Databricks allows unauthorized attackers to elevat
2018	CVE-2026-23830	0.13%	32.2th	10.0	SandboxJS versions before 0.8.26 have a critical sandbox escape vulnerability that allows attackers
2019	CVE-2025-24665	0.13%	32th	9.3	This SQL injection vulnerability in Eniture Technology's Small Package Quotes – Unishippers Editio
2020	CVE-2025-24664	0.13%	32th	9.3	This SQL injection vulnerability in the Eniture Technology LTL Freight Quotes WordPress plugin allow
2021	CVE-2025-23931	0.13%	32th	9.3	This SQL injection vulnerability in the WordPress Local SEO plugin allows attackers to execute arbit
2022	CVE-2025-22553	0.13%	32th	9.3	This SQL injection vulnerability in the WordPress Multiple Carousel plugin allows attackers to execu
2023	CVE-2025-22540	0.13%	32th	9.3	This SQL injection vulnerability in the Emailing Subscription WordPress plugin allows attackers to e
2024	CVE-2025-26974	0.13%	32th	9.3	This SQL injection vulnerability in WPExperts.io WP Multi Store Locator plugin allows attackers to e
2025	CVE-2025-26943	0.13%	32th	9.3	This SQL injection vulnerability in the Easy Quotes WordPress plugin allows attackers to execute arb
2026	CVE-2025-22290	0.13%	32th	9.3	This SQL injection vulnerability in the LTL Freight Quotes – FreightQuote Edition WordPress plugin
2027	CVE-2024-10834	0.13%	32.1th	9.1	This vulnerability in eosphoros-ai/db-gpt version 0.6.0 allows attackers to write arbitrary files to
2028	CVE-2025-26875	0.13%	32th	9.3	This SQL injection vulnerability in the 'Multiple Shipping And Billing Address For Woocommerce' Word
2029	CVE-2025-27268	0.13%	32th	9.3	This SQL injection vulnerability in the Small Package Quotes – Worldwide Express Edition WordPress
2030	CVE-2025-26535	0.13%	32th	9.3	This SQL injection vulnerability in the Bitcoin/AltCoin Payment Gateway for WooCommerce plugin allow
2031	CVE-2025-41420	0.13%	32.1th	9.6	A cross-site scripting vulnerability in WWBN AVideo's userLogin cancelUri parameter allows attackers
2032	CVE-2025-49746	0.13%	32.1th	9.9	CVE-2025-49746 is an improper authorization vulnerability in Azure Machine Learning that allows auth
2033	CVE-2025-49387	0.13%	32th	10.0	This vulnerability allows attackers to upload arbitrary files, including web shells, to websites usi
2034	CVE-2025-50567	0.13%	32.1th	10.0	Saurus CMS Community Edition 4.7.1 contains a critical SQL injection vulnerability in the DB::prepar
2035	CVE-2025-48913	0.13%	32.1th	9.8	This vulnerability in Apache CXF allows untrusted users who can configure JMS endpoints to use RMI o
2036	CVE-2025-59823	0.13%	32th	9.9	This CVE describes a code injection vulnerability in Gardener Extensions for AWS, Azure, OpenStack,
2037	CVE-2024-6107	0.13%	32th	9.6	This authentication bypass vulnerability in MAAS allows attackers to execute unauthorized RPC comman
2038	CVE-2025-34515	0.13%	32th	9.8	CVE-2025-34515 is a privilege escalation vulnerability in Ilevia EVE X1 Server firmware where the sy
2039	CVE-2025-15114	0.13%	31.9th	9.8	This critical vulnerability in Ksenia Security Lares 4.0 Home Automation version 1.6 exposes the ala
2040	CVE-2025-66590	0.13%	31.9th	9.8	This critical vulnerability in AzeoTech DAQFactory allows attackers to write data beyond allocated m
2041	CVE-2025-66588	0.13%	31.9th	9.8	An uninitialized pointer vulnerability in AzeoTech DAQFactory allows attackers to execute arbitrary
2042	CVE-2025-41732	0.13%	31.9th	9.8	This critical vulnerability allows unauthenticated remote attackers to exploit unsafe sscanf calls i
2043	CVE-2025-41730	0.13%	31.9th	9.8	An unauthenticated remote attacker can exploit unsafe sscanf calls in the check_account() function t
2044	CVE-2025-66410	0.13%	32th	9.1	CVE-2025-66410 is a path traversal vulnerability in gin-vue-admin that allows attackers to delete ar
2045	CVE-2025-52921	0.12%	31.8th	9.9	This vulnerability allows authenticated attackers to achieve remote code execution on Innoshop serve
2046	CVE-2025-3365	0.12%	31.7th	9.8	CVE-2025-3365 is a path traversal vulnerability that allows attackers to access arbitrary files on v
2047	CVE-2024-53496	0.12%	31.8th	9.8	This vulnerability allows unauthenticated attackers to bypass access controls in my-site v1.0.2.RELE
2048	CVE-2025-66257	0.12%	31.8th	9.1	This vulnerability allows unauthenticated attackers to delete arbitrary files in the /var/www/patch/
2049	CVE-2025-66254	0.12%	31.8th	9.1	This vulnerability allows unauthenticated attackers to delete arbitrary files from the /var/www/uplo
2050	CVE-2025-63994	0.12%	31.8th	9.8	An arbitrary file upload vulnerability in RichFilemanager v2.7.6 allows attackers to upload maliciou

← Previous Page 41 of 70 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free