Total CVEs
2378
last 14 days
Avg Priority
26.2
of max 220
KEV
7
actively exploited
POC
137
public exploits
Unpatched
392
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
126
CVE-2026-41091
Improper link resolution before file access ('link following') in Microsoft Defender allows an autho
120
CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exp
117
CVE-2026-8398
A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows v
116
CVE-2026-48027
Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console,
108
CVE-2026-9082
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
92
CVE-2026-45498
Microsoft Defender Denial of Service Vulnerability
89
CVE-2026-34926
A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authentica
Priority Distribution
| Priority | CVE |
|---|---|
| 120 |
CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possi
|
| 117 |
CVE-2026-8398
A supply chain attack compromised the official installation packages of DAEMON T
|
| 116 |
CVE-2026-48027
Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious ver
|
| 69 |
CVE-2026-31072
The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.1
|
| 67 |
CVE-2026-41948
Dify version 1.14.1 and prior contain a path traversal vulnerability that allows
|
| 67 |
CVE-2026-41947
Dify version 1.14.1 and prior contains an authorization bypass vulnerability tha
|
| 66 |
CVE-2026-24444
SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9_B9 con
|
| 66 |
CVE-2026-31071
API endpoints in LalanaChami Pharmacy Management System (commit 5c3d028) lack au
|
| 50 |
CVE-2026-41553
PDF Export Module used in DHTMLX's products Gantt and Scheduler is vulnerable to
|
| 50 |
CVE-2026-8054
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti
|
| 50 |
CVE-2026-2031
An Improper Access Control vulnerability in several internal API endpoints for G
|
| 50 |
CVE-2026-40412
Unrestricted upload of file with dangerous type in Azure Orbital Spatio allows a
|
| 50 |
CVE-2026-41104
Deserialization of untrusted data in Microsoft Planetary Computer Pro allows an
|
| 50 |
CVE-2026-34234
CtrlPanel is open-source billing software for hosting providers. In versions 1.1
|
| 50 |
CVE-2026-45829
A pre-authentication, code injection vulnerability in version 1.0.0 or later of
|
| 50 |
CVE-2026-42822
Improper authentication in Azure Local Disconnected Operations allows an unautho
|
| 50 |
CVE-2026-23652
Improper neutralization of special elements used in a command ('command injectio
|
| 50 |
CVE-2026-9152
A missing authentication vulnerability exists in the Altium 365 SearchService. A
|
| 50 |
CVE-2026-47280
Improper authentication in Azure Resource Manager (ARM) allows an unauthorized a
|
| 50 |
CVE-2026-45444
Unrestricted Upload of File with Dangerous Type vulnerability in WP Swings Gift
|
| 50 |
CVE-2026-42901
Origin validation error in Microsoft Entra ID allows an unauthorized attacker to
|
| 50 |
CVE-2026-46595
Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server
|
| 50 |
CVE-2026-33712
Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the preview cha
|
| 50 |
CVE-2026-20223
A vulnerability in the access validation of internal REST APIs of Cisco Sec
|
| 50 |
CVE-2026-46412
## Summary
Between 2026-05-11 20:19 UTC and 22:56 UTC, an attacker used a compr
|
| 50 |
CVE-2026-34910
A malicious actor with access to the network could exploit an Improper Input Val
|
| 50 |
CVE-2026-34908
A malicious actor with access to the network could exploit an Improper Access Co
|
| 50 |
CVE-2026-46695
#### Summary
Boxlite is a sandbox service that allows users to create lightweig
|
| 50 |
CVE-2026-34909
A malicious actor with access to the network could exploit a Path Traversal vuln
|
| 50 |
CVE-2026-46840
Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service). S
|
| 50 |
CVE-2026-46339
## Summary
9router exposes two unauthenticated API endpoints that, when chained
|
| 50 |
CVE-2026-27130
Dokploy is a free, self-hostable Platform as a Service (PaaS). Versions 0.26.6 a
|
| 50 |
CVE-2026-44050
In Netatalk 2.0.0 through 4.4.2, heap buffer overflow in cnid daemon comm_rcv().
|
| 50 |
CVE-2026-40411
Improper input validation in Azure Virtual Network Gateway allows an authorized
|
| 50 |
CVE-2026-42757
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
|
| 50 |
CVE-2026-42748
Unrestricted Upload of File with Dangerous Type vulnerability in WPify WPify Woo
|
| 50 |
CVE-2026-46425
Budibase is an open-source low-code platform. Prior to 3.38.2, packages/worker/s
|
| 50 |
CVE-2026-45625
## Summary
Arcane's huma-based REST API exposes nine endpoints under `/api/cust
|
| 50 |
CVE-2026-44450
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server
|
| 50 |
CVE-2026-42756
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
|
| 50 |
CVE-2026-9645
Exposed methods allow authenticated users to create and execute arbitrary JavaSc
|
| 50 |
CVE-2026-33642
Kitty is a cross-platform GPU based terminal. In versions 0.46.2 and below, the
|
| 50 |
CVE-2026-46822
Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (componen
|
| 50 |
CVE-2026-46839
Vulnerability in Oracle REST Data Services (component: Core). Supported version
|
| 50 |
CVE-2026-46775
Vulnerability in Oracle REST Data Services (component: Core). Supported version
|
| 50 |
CVE-2026-46824
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Su
|
| 50 |
CVE-2026-46716
## Summary
`nezha`'s dashboard supports two user roles: `RoleAdmin` (Role==0) a
|
| 50 |
CVE-2026-45102
OneUptime is an open-source monitoring and observability platform. Prior to 10.0
|
| 49 |
CVE-2026-5229
The Form Notify plugin for WordPress is vulnerable to Authentication Bypass in v
|
| 49 |
CVE-2026-7304
SGLangs multimodal generation runtime is vulnerable to unauthenticated remote co
|
| 49 |
CVE-2026-6555
The ProSolution WP Client plugin for WordPress is vulnerable to Arbitrary File U
|
| 49 |
CVE-2026-44717
MCP Calculate Server is a mathematical calculation service based on MCP protocol
|
| 49 |
CVE-2026-44887
Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. Prior to
|
| 49 |
CVE-2026-7637
The Boost plugin for WordPress is vulnerable to PHP Object Injection in versions
|
| 49 |
CVE-2026-6279
The Avada Builder (fusion-builder) plugin for WordPress is vulnerable to Unauthe
|
| 49 |
CVE-2026-24207
NVIDIA Triton Inference Server contains a vulnerability where an attacker could
|
| 49 |
CVE-2026-7284
The Easy Elements for Elementor - Addons & Website Templates plugin for WordPres
|
| 49 |
CVE-2026-45434
Improper Authentication vulnerability in Apache OFBiz via Password-Change Logic
|
| 49 |
CVE-2026-4885
The Piotnet Addons for Elementor Pro plugin for WordPress is vulnerable to arbit
|
| 49 |
CVE-2026-44888
Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. Prior to
|
| 49 |
CVE-2026-8956
Integer overflow in the Networking: JAR component. This vulnerability was fixed
|
| 49 |
CVE-2026-7301
SGLangs multimodal generation runtime scheduler's ROUTER socket binds to 0.0.0.0
|
| 49 |
CVE-2026-8362
A stack-based buffer overflow condition exists in WOSDefaultHttpModule.dll when
|
| 49 |
CVE-2026-42758
Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias Webinar
|
| 49 |
CVE-2026-47323
Camel-CXF and Camel-Knative Message Header Injection via Missing Inbound Filteri
|
| 49 |
CVE-2026-31070
The LalanaChami Pharmacy Management System (commit 5c3d028) allows unauthenticat
|
| 49 |
CVE-2026-32253
Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2
|
| 49 |
CVE-2026-30118
scalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery (SS
|
| 49 |
CVE-2026-30117
scalar/astro v0.1.13 was discovered to contain an arbitrary file upload vulnerab
|
| 49 |
CVE-2026-8376
Perl versions through 5.43.10 have a heap buffer overflow when compiling regular
|
| 49 |
CVE-2026-48902
The password and username reset features created plain http links for https conn
|
| 49 |
CVE-2026-43493
In the Linux kernel, the following vulnerability has been resolved:
crypto: pcr
|
| 49 |
CVE-2026-8495
Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing
|
| 49 |
CVE-2026-48691
FastNetMon Community Edition through 1.2.9 contains an integer overflow in the B
|
| 49 |
CVE-2026-8507
Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out of bound (OOB) wr
|
| 49 |
CVE-2026-8721
Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl truncates passwords with e
|
| 49 |
CVE-2026-25879
# Security Vulnerability Report: Prompt to SQL Injection leading to RCE in lates
|
| 49 |
CVE-2026-48687
FastNetMon Community Edition through 1.2.9 contains an OS command injection vuln
|
| 49 |
CVE-2026-48689
FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buf
|
| 49 |
CVE-2026-5118
The Divi Form Builder plugin for WordPress is vulnerable to privilege escalation
|
| 49 |
CVE-2026-42731
Incorrect Privilege Assignment vulnerability in miniOrange miniorange otp verifi
|
| 49 |
CVE-2026-8175
IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM A
|
| 49 |
CVE-2026-4883
The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file upload du
|
| 49 |
CVE-2026-6960
The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file upload
|
| 49 |
CVE-2026-8760
The Login with OTP plugin for WordPress is vulnerable to authentication bypass i
|
| 49 |
CVE-2026-46562
# Remote Code Execution via Mission Database algorithm override
## Summary
The
|
| 49 |
CVE-2026-45695
## Summary
Kopia's HTTP server, when started with `--without-password `, accept
|
| 49 |
CVE-2026-48207
Deserialization of untrusted data in Apache Fory PyFory. PyFory's ReduceSerializ
|
| 49 |
CVE-2025-12686
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerabi
|
| 49 |
CVE-2026-9642
There is a mitigation bypass / (incomplete fix) for CVE-2025-62582 (Unauthentica
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 776d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2344d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2157d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1771d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2274d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 5021d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1242d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1044d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3799d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 946d |
1 / 3
Next