Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
4351	CVE-2023-35393	0.27%	50.1th	4.5	CVE-2023-35393 is a cross-site scripting (XSS) vulnerability in Azure Apache Hive that allows attack
4352	CVE-2025-10850	0.27%	50.1th	9.8	The Felan Framework WordPress plugin contains hardcoded passwords in social login functions, allowin
4353	CVE-2025-12868	0.27%	50.1th	9.8	CVE-2025-12868 is a client-side authentication vulnerability in CyberTutor's New Site Server that al
4354	CVE-2025-3125	0.27%	50.1th	6.7	An arbitrary file upload vulnerability in WSO2 products allows authenticated admin users to upload m
4355	CVE-2025-11007	0.27%	50.1th	9.8	The CE21 Suite WordPress plugin versions 2.2.1 to 2.3.1 contain an authentication bypass vulnerabili
4356	CVE-2025-15158	0.27%	50.1th	8.8	The WP Enable WebP WordPress plugin has a vulnerability that allows authenticated attackers with Aut
4357	CVE-2024-55218	0.27%	50th	6.1	IceWarp Server 10.2.1 contains a reflected cross-site scripting (XSS) vulnerability in the meta para
4358	CVE-2025-1556	0.27%	50th	4.7	A remote deserialization vulnerability exists in westboy CicadasCMS 1.0's Template Management compon
4359	CVE-2025-0838	0.27%	50th	9.8	This CVE describes a heap buffer overflow vulnerability in Abseil-cpp's hash containers where oversi
4360	CVE-2025-28916	0.27%	50.1th	9.8	This CVE describes a PHP Local File Inclusion vulnerability in the Docpro WordPress plugin that allo
4361	CVE-2024-10912	0.27%	50th	7.5	A Denial of Service (DoS) vulnerability in lm-sys/fastchat version 0.2.36 allows attackers to crash
4362	CVE-2025-3128	0.27%	50th	9.8	CVE-2025-3128 is a critical OS command injection vulnerability in Mitsubishi Electric smartRTU devic
4363	CVE-2025-60689	0.27%	50.1th	5.4	An unauthenticated command injection vulnerability in Linksys E1200 v2 routers allows remote attacke
4364	CVE-2025-20374	0.27%	50th	4.9	This vulnerability allows authenticated administrators in Cisco Unified CCX web UI to perform direct
4365	CVE-2021-47774	0.27%	50th	9.8	Kingdia CD Extractor 3.0.2 contains a critical buffer overflow vulnerability in its registration nam
4366	CVE-2023-47160	0.27%	49.9th	8.2	IBM Cognos Controller and IBM Controller are vulnerable to XML External Entity Injection (XXE) attac
4367	CVE-2025-30861	0.27%	49.9th	4.9	This CVE describes a missing authorization vulnerability in the Five Star Restaurant Reservations Wo
4368	CVE-2025-24994	0.27%	49.9th	7.3	This vulnerability allows an authenticated attacker on a Windows system to exploit improper access c
4369	CVE-2025-2197	0.27%	50th	4.3	This CVE describes a type confusion vulnerability in a browser that could allow an attacker to cause
4370	CVE-2025-30688	0.27%	49.9th	6.5	This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low pri
4371	CVE-2025-30682	0.27%	49.9th	6.5	A vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privil
4372	CVE-2025-3699	0.27%	50th	9.8	CVE-2025-3699 is a critical authentication bypass vulnerability affecting multiple Mitsubishi Electr
4373	CVE-2025-5473	0.27%	49.9th	8.8	This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening
4374	CVE-2025-41240	0.27%	49.9th	10.0	This critical vulnerability allows unauthenticated remote attackers to access Kubernetes secrets via
4375	CVE-2025-7694	0.27%	49.9th	6.8	The Woffice Core WordPress plugin allows authenticated attackers with Contributor-level access or hi
4376	CVE-2025-40836	0.27%	49.9th	9.8	Ericsson Indoor Connect 8855 has an improper input validation vulnerability that allows attackers to
4377	CVE-2025-61673	0.27%	49.9th	8.6	CVE-2025-61673 is an authentication bypass vulnerability in Karapace versions 5.0.0 and 5.0.1 when c
4378	CVE-2025-13261	0.27%	49.9th	5.3	A path traversal vulnerability in the lsfusion platform allows attackers to manipulate the Version p
4379	CVE-2025-65346	0.27%	49.9th	9.1	CVE-2025-65346 is a directory traversal vulnerability in alexusmai/laravel-file-manager that allows
4380	CVE-2025-66222	0.27%	50th	9.6	DeepChat versions 0.5.0 and earlier contain a stored XSS vulnerability in the Mermaid diagram render
4381	CVE-2025-14756	0.27%	50th	8.8	This command injection vulnerability in TP-Link Archer MR600 v5 firmware allows authenticated attack
4382	CVE-2025-60785	0.27%	50th	8.8	A remote code execution vulnerability in iceScrum v7.54 Pro On-prem allows attackers to execute arbi
4383	CVE-2025-22984	0.27%	49.9th	7.5	An unauthenticated access control vulnerability in iceCMS v2.2.0 allows attackers to access sensitiv
4384	CVE-2025-22983	0.27%	49.9th	7.5	An access control vulnerability in iceCMS v2.2.0 allows unauthenticated attackers to access sensitiv
4385	CVE-2025-28093	0.27%	49.8th	6.3	ShopXO v6.4.0 contains a Server-Side Request Forgery (SSRF) vulnerability in its email settings func
4386	CVE-2025-30357	0.27%	49.8th	7.3	In NamelessMC versions 2.1.4 and earlier, when an administrator deletes a spammer's account, all pos
4387	CVE-2025-1290	0.27%	49.9th	8.1	A race condition use-after-free vulnerability in ChromeOS Kernel 5.4's virtio_transport_space_update
4388	CVE-2025-3216	0.27%	49.9th	7.3	CVE-2025-3216 is a critical SQL injection vulnerability in PHPGurukul e-Diary Management System 1.0
4389	CVE-2025-44083	0.27%	49.8th	9.8	This vulnerability allows remote attackers to bypass administrator login authentication on D-Link DI
4390	CVE-2025-25504	0.27%	49.8th	6.5	This vulnerability allows unauthenticated attackers with network access to connect to TCP port 4444
4391	CVE-2025-34216	0.27%	49.9th	9.8	Vasion Print (formerly PrinterLogic) Virtual Appliance exposes unauthenticated REST API endpoints th
4392	CVE-2020-37186	0.27%	49.8th	9.8	CVE-2020-37186 is a critical remote code execution vulnerability in Chevereto image hosting software
4393	CVE-2025-10496	0.27%	49.8th	7.2	The Cookie Notice & Consent WordPress plugin up to version 1.6.5 has a stored XSS vulnerability in t
4394	CVE-2023-54330	0.27%	49.8th	9.8	This CVE describes a critical remote stack-based buffer overflow vulnerability in Inbit Messenger ve
4395	CVE-2025-15432	0.27%	49.9th	5.3	This is a path traversal vulnerability in yeqifu carRental software that allows attackers to access
4396	CVE-2025-26377	0.27%	49.8th	8.1	This vulnerability allows authenticated low-privileged attackers to delete user accounts in Q-Free M
4397	CVE-2025-26372	0.27%	49.8th	7.1	This vulnerability allows authenticated low-privileged attackers to remove users from groups in Q-Fr
4398	CVE-2025-26368	0.27%	49.8th	8.1	A missing authorization vulnerability in Q-Free MaxTime allows authenticated low-privileged users to
4399	CVE-2025-25247	0.27%	49.8th	6.1	This CVE describes a cross-site scripting (XSS) vulnerability in Apache Felix Webconsole that allows
4400	CVE-2025-29266	0.27%	49.7th	9.6	This vulnerability allows remote attackers to gain root access to Unraid's web interface and console

← Previous Page 88 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free