Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
301	CVE-2023-7316	0.74%	72.5th	5.4	Nagios XI versions before 2024R1 contain a cross-site scripting vulnerability in the Graph Explorer
302	CVE-2025-46548	0.74%	72.4th	6.5	This vulnerability allows attackers to bypass Basic Authentication in Pekko Management when configur
303	CVE-2023-42785	0.74%	72.4th	6.5	A null pointer dereference vulnerability in FortiOS allows attackers to cause denial of service via
304	CVE-2025-24425	0.74%	72.3th	5.3	This CVE describes a business logic error in Adobe Commerce that allows attackers to bypass security
305	CVE-2025-4729	0.73%	72.2th	6.3	This critical vulnerability in TOTOLINK A3002R and A3002RU routers allows remote attackers to execut
306	CVE-2025-21352	0.73%	72.1th	6.5	This vulnerability in Internet Connection Sharing (ICS) allows attackers to cause a denial of servic
307	CVE-2025-20659	0.72%	72.1th	6.5	This vulnerability in MediaTek modems allows remote denial of service through improper input validat
308	CVE-2024-13619	0.72%	72.1th	6.1	This vulnerability in the LifterLMS WordPress plugin allows attackers to inject malicious scripts vi
309	CVE-2024-12724	0.72%	72.1th	6.1	WP DeskLite WordPress plugin through version 1.0.0 contains a reflected cross-site scripting (XSS) v
310	CVE-2025-13698	0.72%	72th	4.5	This vulnerability allows authenticated attackers on the same network to create arbitrary files on O
311	CVE-2025-2996	0.72%	72th	5.3	This vulnerability in Tenda FH1202 routers allows attackers to bypass access controls on the web man
312	CVE-2025-2991	0.72%	72th	5.3	This critical vulnerability in Tenda FH1202 routers allows remote attackers to bypass access control
313	CVE-2026-1735	0.72%	72th	4.3	This CVE describes a command injection vulnerability in Yealink MeetingBar A30's Diagnostic Handler
314	CVE-2025-3028	0.72%	71.9th	6.5	This vulnerability allows JavaScript code to trigger a use-after-free condition during XSLT document
315	CVE-2025-34278	0.71%	71.9th	5.4	Nagios Network Analyzer versions before 2024R1 contain a stored XSS vulnerability in the Source Grou
316	CVE-2011-10037	0.71%	71.9th	5.4	This cross-site scripting vulnerability in Nagios XI allows attackers to inject malicious scripts in
317	CVE-2025-32137	0.7%	71.6th	4.9	This CVE describes a relative path traversal vulnerability in the s2Member WordPress plugin that all
318	CVE-2025-26320	0.7%	71.6th	6.5	CVE-2025-26320 is an OS command injection vulnerability in t0mer BroadlinkManager v5.9.1 that allows
319	CVE-2025-2959	0.7%	71.5th	6.5	This vulnerability in TRENDnet TEW-410APB wireless access points allows local network attackers to c
320	CVE-2024-13946	0.7%	71.5th	6.8	This vulnerability allows attackers to execute arbitrary code by planting malicious DLL files that t
321	CVE-2025-5441	0.69%	71.4th	6.3	This critical vulnerability in Linksys WiFi range extenders allows remote attackers to execute arbit
322	CVE-2025-0390	0.68%	71.1th	5.3	This critical path traversal vulnerability in Jeewms allows attackers to access arbitrary files on t
323	CVE-2024-10636	0.68%	71th	6.1	This vulnerability allows unauthenticated attackers to inject malicious scripts via the 'content' pa
324	CVE-2024-12339	0.68%	71th	6.1	The Digihood HTML Sitemap WordPress plugin contains a reflected cross-site scripting vulnerability i
325	CVE-2024-11376	0.68%	71th	6.1	This vulnerability allows unauthenticated attackers to perform reflected cross-site scripting (XSS)
326	CVE-2024-13827	0.68%	71th	6.1	This vulnerability allows unauthenticated attackers to inject malicious scripts into WordPress pages
327	CVE-2025-3237	0.67%	70.9th	5.3	This vulnerability in Tenda FH1202 routers allows attackers to bypass access controls via the /gofor
328	CVE-2024-56366	0.67%	70.8th	5.4	PhpSpreadsheet versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 contain a reflected cross-site scri
329	CVE-2024-13434	0.67%	70.7th	6.1	The WP Inventory Manager WordPress plugin up to version 2.3.2 contains a reflected cross-site script
330	CVE-2024-56248	0.67%	70.7th	4.9	This path traversal vulnerability in the WPMasterToolKit WordPress plugin allows attackers to downlo
331	CVE-2025-2484	0.66%	70.7th	6.1	The Multi Video Box WordPress plugin has a reflected cross-site scripting vulnerability in versions
332	CVE-2025-2164	0.66%	70.7th	6.1	The pixelstats WordPress plugin contains a reflected cross-site scripting vulnerability in all versi
333	CVE-2025-2166	0.66%	70.7th	6.1	This vulnerability allows unauthenticated attackers to execute reflected cross-site scripting (XSS)
334	CVE-2024-13413	0.66%	70.7th	6.1	The ProductDyno WordPress plugin has a reflected cross-site scripting (XSS) vulnerability in all ver
335	CVE-2025-3098	0.66%	70.6th	6.1	The Video Url WordPress plugin up to version 1.0.0.3 contains a reflected cross-site scripting vulne
336	CVE-2025-5439	0.66%	70.5th	6.3	A critical OS command injection vulnerability in Linksys RE series WiFi extenders allows remote atta
337	CVE-2024-11437	0.66%	70.5th	4.9	The Timeline Designer WordPress plugin contains an SQL injection vulnerability that allows unauthent
338	CVE-2024-10908	0.65%	70.4th	6.1	An open redirect vulnerability in lm-sys/fastchat v0.2.36 allows attackers to redirect users to mali
339	CVE-2025-2708	0.65%	70.4th	5.4	This critical vulnerability in zhijiantianya ruoyi-vue-pro 2.4.1 allows remote attackers to perform
340	CVE-2025-6197	0.64%	70.1th	4.2	This CVE describes an open redirect vulnerability in Grafana OSS organization switching functionalit
341	CVE-2026-1548	0.64%	70.1th	6.3	This vulnerability allows remote attackers to execute arbitrary commands on Totolink A7000R routers
342	CVE-2024-10866	0.64%	70th	5.3	The Export Import Menus WordPress plugin has an authorization bypass vulnerability that allows unaut
343	CVE-2024-13903	0.64%	70th	4.3	This CVE describes a stack-based buffer overflow vulnerability in quickjs-ng QuickJS JavaScript engi
344	CVE-2025-3668	0.64%	69.9th	5.3	This vulnerability allows remote attackers to bypass access controls on TOTOLINK A3700R routers via
345	CVE-2025-23419	0.63%	69.8th	4.3	This CVE describes a client certificate authentication bypass vulnerability in nginx when multiple s
346	CVE-2025-3123	0.63%	69.8th	4.7	This vulnerability in WonderCMS 3.5.0 allows remote attackers to upload arbitrary files through the
347	CVE-2025-5717	0.63%	69.8th	6.8	This CVE describes an authenticated remote code execution vulnerability in WSO2 products where admin
348	CVE-2025-21350	0.63%	69.7th	5.9	This Windows Kerberos vulnerability allows attackers to cause a denial of service by sending special
349	CVE-2025-21179	0.63%	69.7th	4.8	This vulnerability in the DHCP Client Service allows an attacker to cause a denial of service by sen
350	CVE-2025-41393	0.62%	69.6th	6.1	A reflected cross-site scripting (XSS) vulnerability in Ricoh Web Image Monitor allows attackers to

← Previous Page 7 of 331 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free