Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
3701	CVE-2026-2227	0.09%	25th	4.7	This CVE describes a command injection vulnerability in D-Link DCS-931L IP cameras. Attackers can re
3702	CVE-2025-42924	0.09%	25th	6.1	CVE-2025-42924 is an open redirect vulnerability in SAP S/4HANA's E-Recruiting BSP component that al
3703	CVE-2025-12435	0.09%	25th	5.4	This vulnerability allows attackers to spoof the Chrome Omnibox (address bar) security UI on Android
3704	CVE-2025-14909	0.09%	25th	4.3	This vulnerability in JeecgBoot allows attackers to remotely manipulate user sessions through the Sy
3705	CVE-2025-14607	0.09%	24.9th	6.3	A memory corruption vulnerability in OFFIS DCMTK's DcmByteString::makeDicomByteString function allow
3706	CVE-2025-67640	0.09%	24.9th	5.0	This vulnerability in Jenkins Git client Plugin allows attackers who can control workspace directory
3707	CVE-2025-42872	0.09%	25th	6.1	This Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal allows unauthentica
3708	CVE-2025-63095	0.09%	25th	6.5	An improper input validation vulnerability in the BitstreamWriter::write_bits() function of Tempus E
3709	CVE-2025-57785	0.09%	25th	6.5	A double free vulnerability in the XSLT show_index function of Hiawatha webserver version 11.7 allow
3710	CVE-2026-22032	0.09%	25th	4.3	An open redirect vulnerability in Directus SAML authentication allows attackers to redirect users to
3711	CVE-2025-62857	0.09%	24.9th	6.1	A cross-site scripting (XSS) vulnerability in QuMagie allows remote attackers to inject malicious sc
3712	CVE-2026-0572	0.09%	25th	6.5	The WebPurify Profanity Filter WordPress plugin has an authorization bypass vulnerability that allow
3713	CVE-2025-0880	0.09%	24.7th	6.3	A critical SQL injection vulnerability in Codezips Gym Management System 1.0 allows remote attackers
3714	CVE-2025-0143	0.09%	24.8th	4.3	An out-of-bounds write vulnerability in Zoom Workplace App for Linux allows unauthorized attackers t
3715	CVE-2025-24666	0.09%	24.8th	5.9	This stored cross-site scripting (XSS) vulnerability in the Hyve Lite WordPress plugin allows attack
3716	CVE-2025-24657	0.09%	24.8th	5.9	This stored XSS vulnerability in WebToffee's Wishlist for WooCommerce plugin allows attackers to inj
3717	CVE-2025-24634	0.09%	24.8th	5.9	This stored cross-site scripting (XSS) vulnerability in the Orbisius Simple Notice WordPress plugin
3718	CVE-2025-22276	0.09%	24.8th	5.9	This stored cross-site scripting (XSS) vulnerability in the WordPress Related Post Shortcode plugin
3719	CVE-2025-22262	0.09%	24.8th	5.9	This stored cross-site scripting (XSS) vulnerability in the Bonjour Bar WordPress plugin allows atta
3720	CVE-2024-49338	0.09%	24.8th	4.4	IBM App Connect Enterprise versions 12.0.1.0-12.0.7.0 and 13.0.1.0, under certain configurations, al
3721	CVE-2025-0214	0.09%	24.8th	4.1	This SQL injection vulnerability in TMD Custom Header Menu 4.0.0.1 for OpenCart allows attackers to
3722	CVE-2025-0174	0.09%	24.9th	6.3	This critical SQL injection vulnerability in code-projects Point of Sales and Inventory Management S
3723	CVE-2024-57498	0.09%	24.8th	4.8	A cross-site scripting (XSS) vulnerability in sayski ForestBlog allows attackers to inject malicious
3724	CVE-2025-30342	0.09%	24.8th	5.4	This stored cross-site scripting (XSS) vulnerability in OpenSlides allows attackers to inject malici
3725	CVE-2025-28908	0.09%	24.8th	5.9	This stored cross-site scripting (XSS) vulnerability in the pipdig pipDisqus WordPress plugin allows
3726	CVE-2025-27825	0.09%	24.7th	6.4	This Cross-Site Scripting (XSS) vulnerability in the Bootstrap 5 Lite theme for Backdrop CMS allows
3727	CVE-2025-27823	0.09%	24.7th	6.4	The Mail Disguise module for Backdrop CMS before version 1.x-1.0.5 has a cross-site scripting (XSS)
3728	CVE-2025-46576	0.09%	24.7th	5.4	This vulnerability in GoldenDB database allows attackers to bypass privilege restrictions through re
3729	CVE-2025-3843	0.09%	24.8th	4.3	This vulnerability in panhainan DS-Java 1.0 allows attackers to perform cross-site request forgery (
3730	CVE-2025-22073	0.09%	24.8th	5.5	This CVE describes a memory leak vulnerability in the Linux kernel's SPUFS (Synergistic Processing U
3731	CVE-2024-11679	0.09%	24.9th	4.4	A local input validation weakness in the TpmSetup module for legacy Lenovo System x servers allows a
3732	CVE-2025-21925	0.09%	24.8th	5.5	A Linux kernel vulnerability in the LLC (Logical Link Control) subsystem allows a local attacker to
3733	CVE-2025-21922	0.09%	24.8th	5.5	A memory initialization vulnerability in the Linux kernel's PPP driver allows uninitialized data to
3734	CVE-2025-5829	0.09%	24.8th	6.8	This vulnerability allows physically present attackers to execute arbitrary code on Autel MaxiCharge
3735	CVE-2025-50464	0.09%	24.8th	6.5	A pre-authentication buffer overflow vulnerability in iptime NAS firmware allows attackers to execut
3736	CVE-2025-50481	0.09%	24.8th	4.8	This CVE describes a cross-site scripting (XSS) vulnerability in Mezzanine CMS v6.1.0 that allows at
3737	CVE-2025-7932	0.09%	24.9th	6.3	This critical vulnerability in D-Link DIR-817L routers allows remote attackers to execute arbitrary
3738	CVE-2025-8520	0.09%	24.9th	4.7	This critical Server-Side Request Forgery (SSRF) vulnerability in Vvveb's Drag-and-Drop Editor allow
3739	CVE-2025-10236	0.09%	24.7th	4.3	This vulnerability allows attackers to perform path traversal attacks through the LaTeX file handler
3740	CVE-2023-53688	0.09%	24.8th	5.4	Nagios XI versions before 5.11.3 contain XSS and CSRF vulnerabilities in the Hypermap Replay compone
3741	CVE-2025-63258	0.09%	24.8th	6.5	A remote command execution vulnerability in H3C ERG3/ERG5 series routers, XiaoBei series routers, cl
3742	CVE-2025-9524	0.09%	24.7th	4.3	CVE-2025-9524 is an input validation vulnerability in Axis camera VAPIX API's port.cgi endpoint that
3743	CVE-2025-14061	0.09%	24.7th	5.3	This vulnerability in the WP Cookie Consent WordPress plugin allows unauthenticated attackers to per
3744	CVE-2025-14366	0.09%	24.7th	5.3	This vulnerability allows unauthenticated attackers to create arbitrary WooCommerce products with cu
3745	CVE-2025-14365	0.09%	24.7th	5.3	This vulnerability in the Eyewear prescription form WordPress plugin allows unauthenticated attacker
3746	CVE-2025-12362	0.09%	24.7th	5.3	This vulnerability allows unauthenticated attackers to manipulate the myCred WordPress plugin's fina
3747	CVE-2025-11707	0.09%	24.7th	5.3	The Login Lockdown & Protection WordPress plugin has an IP block bypass vulnerability where attacker
3748	CVE-2025-67819	0.09%	24.9th	4.9	This vulnerability in Weaviate OSS allows attackers to read arbitrary files accessible to the servic
3749	CVE-2025-42875	0.09%	24.7th	6.6	This vulnerability in SAP Internet Communication Framework allows attackers to bypass authentication
3750	CVE-2025-27452	0.09%	24.8th	5.3	This vulnerability affects Apache httpd webservers running the MEAC300-FNADE4 web application with u

← Previous Page 75 of 331 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free