Total CVEs
5736
last 30 days
Avg Priority
34.0
of max 220
KEV
6
actively exploited
POC
775
public exploits
Unpatched
1588
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-5281
Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had co
117
CVE-2026-33634
Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publi
117
CVE-2026-33017
## Summary
The `POST /api/v1/build_public_tmp/{flow_id}/flow` endpoint allows building public flows
117
CVE-2026-3055
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP l
109
CVE-2026-3502
TrueConf Client downloads application update code and applies it without performing verification. An
Priority Distribution
| Priority | CVE |
|---|---|
| 50 |
CVE-2026-26137
Server-side request forgery (ssrf) in Microsoft 365 Copilot's Business Chat allo
|
| 50 |
CVE-2026-32731
**Reported:** 2026-03-08
**Status:** patched and released in version 3.5.3 of
|
| 50 |
CVE-2026-33945
Incus is a system container and virtual machine manager. Incus instances have an
|
| 50 |
CVE-2026-32525
Improper Control of Generation of Code ('Code Injection') vulnerability in jetmo
|
| 50 |
CVE-2026-33897
Incus is a system container and virtual machine manager. Prior to version 6.23.0
|
| 50 |
CVE-2026-27044
Improper Control of Generation of Code ('Code Injection') vulnerability in Total
|
| 50 |
CVE-2026-25366
Improper Control of Generation of Code ('Code Injection') vulnerability in Theme
|
| 50 |
CVE-2026-34569
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, mo
|
| 50 |
CVE-2026-32536
Unrestricted Upload of File with Dangerous Type vulnerability in halfdata Green
|
| 50 |
CVE-2026-25212
An issue was discovered in Percona PMM before 3.7. Because an internal database
|
| 50 |
CVE-2026-34717
OpenProject is an open-source, web-based project management software. Prior to v
|
| 50 |
CVE-2026-39355
Genealogy is a family tree PHP application. Prior to 5.9.1, a critical broken ac
|
| 50 |
CVE-2026-25345
Improper Validation of Specified Quantity in Input vulnerability in GalleryCreat
|
| 50 |
CVE-2026-32523
Unrestricted Upload of File with Dangerous Type vulnerability in denishua WPJAM
|
| 50 |
CVE-2026-32482
Unrestricted Upload of File with Dangerous Type vulnerability in deothemes Ona o
|
| 50 |
CVE-2026-25413
Unrestricted Upload of File with Dangerous Type vulnerability in iqonicdesign WP
|
| 50 |
CVE-2026-22172
OpenClaw versions prior to 2026.3.12 contain an authorization bypass vulnerabili
|
| 50 |
CVE-2026-33396
OneUptime is an open-source monitoring and observability platform. Prior to vers
|
| 50 |
CVE-2026-40089
Sonicverse is a Self-hosted Docker Compose stack for live radio streaming. The S
|
| 50 |
CVE-2026-33502
### Summary
An unauthenticated server-side request forgery vulnerability in `plu
|
| 50 |
CVE-2026-5412
In Juju versions prior to 2.9.57 and 3.6.21, an authorization issue exists in th
|
| 50 |
CVE-2026-39888
## Summary
`execute_code()` in `praisonaiagents.tools.python_tools` defaults to
|
| 49 |
CVE-2026-4003
The Users manager - PN plugin for WordPress is vulnerable to Privilege Escalatio
|
| 49 |
CVE-2026-32985
Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbit
|
| 49 |
CVE-2026-30303
The command auto-approval module in Axon Code contains an OS Command Injection v
|
| 49 |
CVE-2026-30402
An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbit
|
| 49 |
CVE-2026-39890
## Summary
The `AgentService.loadAgentFromFile` method uses the `js-yaml` librar
|
| 49 |
CVE-2026-3535
The DSGVO Google Web Fonts GDPR plugin for WordPress is vulnerable to arbitrary
|
| 49 |
CVE-2026-33057
#### Summary
An explicit web endpoint inside the `ai/` testing module infrastruc
|
| 49 |
CVE-2017-20224
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upl
|
| 49 |
CVE-2026-26830
pdf-image (npm package) through version 2.0.0 allows OS command injection via th
|
| 49 |
CVE-2026-33937
## Summary
`Handlebars.compile()` accepts a pre-parsed AST object in addition t
|
| 49 |
CVE-2026-34243
#### Summary
A GitHub Actions workflow uses untrusted user input from `issue_co
|
| 49 |
CVE-2026-3300
The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Executio
|
| 49 |
CVE-2026-3584
The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in al
|
| 49 |
CVE-2026-4257
The Contact Form by Supsystic plugin for WordPress is vulnerable to Server-Side
|
| 49 |
CVE-2026-26832
node-tesseract-ocr is an npm package that provides a Node.js wrapper for Tessera
|
| 49 |
CVE-2026-1830
The Quick Playground plugin for WordPress is vulnerable to Remote Code Execution
|
| 49 |
CVE-2026-20160
A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allo
|
| 49 |
CVE-2026-30312
DSAI-Cline's command auto-approval module contains a critical OS command injecti
|
| 49 |
CVE-2026-30313
DSAI-Cline's command auto-approval module contains a critical OS command injecti
|
| 49 |
CVE-2026-31027
TOTOlink A3600R v5.9c.4959 contains a buffer overflow vulnerability in the setAp
|
| 49 |
CVE-2026-28430
Chamilo LMS is a learning management system. Prior to version 1.11.34, there is
|
| 49 |
CVE-2026-4001
The Woocommerce Custom Product Addons Pro plugin for WordPress is vulnerable to
|
| 49 |
CVE-2026-30314
Ridvay Code's command auto-approval module contains a critical OS command inject
|
| 49 |
CVE-2026-30311
Ridvay Code's command auto-approval module contains a critical OS command inject
|
| 49 |
CVE-2026-30307
Roo Code's command auto-approval module contains a critical OS command injection
|
| 49 |
CVE-2026-30305
Syntx's command auto-approval module contains a critical OS command injection vu
|
| 49 |
CVE-2026-34159
llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492
|
| 49 |
CVE-2026-4312
GCB/FCB Audit Software developed by DrangSoft has a Missing Authentication vulne
|
| 49 |
CVE-2026-27065
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-30703
A command injection vulnerability exists in the web management interface of the
|
| 49 |
CVE-2025-69902
A command injection vulnerability in the minimal_wrapper.py component of kubectl
|
| 49 |
CVE-2026-0558
A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows un
|
| 49 |
CVE-2026-32968
Due to the improper neutralisation of special elements used in an OS command, an
|
| 49 |
CVE-2026-32194
Improper neutralization of special elements used in a command ('command injectio
|
| 49 |
CVE-2026-32191
Improper neutralization of special elements used in an os command ('os command i
|
| 49 |
CVE-2026-26833
thumbler through 1.1.2 allows OS command injection via the input, output, time,
|
| 49 |
CVE-2025-67113
OS command injection in the CWMP client (/ftl/bin/cwmp) of Small Cell Sercomm SC
|
| 49 |
CVE-2026-30872
OpenWrt Project is a Linux operating system targeting embedded devices. In versi
|
| 49 |
CVE-2026-4631
Cockpit's remote login feature passes user-supplied hostnames and usernames from
|
| 49 |
CVE-2026-6057
FalkorDB Browser 1.9.3 contains an unauthenticated path traversal vulnerability
|
| 49 |
CVE-2026-26831
textract through 2.5.0 is vulnerable to OS Command Injection via the file path p
|
| 49 |
CVE-2026-4851
GRID::Machine versions through 0.127 for Perl allows arbitrary code execution vi
|
| 49 |
CVE-2026-0740
The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary f
|
| 49 |
CVE-2026-30643
An issue was discovered in DedeCMS 5.7.118 allowing attackers to execute code vi
|
| 49 |
CVE-2025-67114
Use of a deterministic credential generation algorithm in /ftl/bin/calc_f2 in Sm
|
| 49 |
CVE-2026-33746
Convoy is a KVM server management panel for hosting businesses. From version 3.9
|
| 49 |
CVE-2026-34877
An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4
|
| 49 |
CVE-2026-22738
In Spring AI, a SpEL injection vulnerability exists in SimpleVectorStore when a
|
| 49 |
CVE-2026-35392
### Summary
* PUT upload has no path sanitization | `httpserver/updown.go:20-69`
|
| 49 |
CVE-2026-35393
### Summary
* POST multipart upload directory not sanitized | `httpserver/updown
|
| 49 |
CVE-2026-35471
### Summary
* `deleteFile()` missing return after path traversal check | `httpse
|
| 49 |
CVE-2026-4755
CWE-20 vulnerability in MolotovCherry Android-ImageMagick7.This issue affects An
|
| 49 |
CVE-2026-33670
### Details
The /api/file/readDir interface was used to traverse and retrieve t
|
| 49 |
CVE-2026-30694
An issue in DedeCMS v.5.7.118 and before allows a remote attacker to execute arb
|
| 49 |
CVE-2026-4038
The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call th
|
| 49 |
CVE-2026-5121
A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerabi
|
| 49 |
CVE-2026-33032
### Summary
The nginx-ui MCP (Model Context Protocol) integration exposes two HT
|
| 49 |
CVE-2025-59707
In N2W before 4.3.2 and 4.4.x before 4.4.1, there is potential remote code execu
|
| 49 |
CVE-2025-59706
In N2W before 4.3.2 and 4.4.0 before 4.4.1, improper validation of API request p
|
| 49 |
CVE-2026-28858
A buffer overflow was addressed with improved bounds checking. This issue is fix
|
| 49 |
CVE-2026-34934
## Summary
The `get_all_user_threads` function constructs raw SQL queries using
|
| 49 |
CVE-2025-67112
Use of a hard-coded AES-256-CBC key in the configuration backup/restore implemen
|
| 49 |
CVE-2025-70888
An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote a
|
| 49 |
CVE-2026-4254
A weakness has been identified in Tenda AC8 up to 16.03.50.11. This vulnerabilit
|
| 49 |
CVE-2026-32767
## Summary
SiYuan Note v3.6.0 (and likely prior versions) contains an authoriza
|
| 49 |
CVE-2026-1114
In parisneo/lollms version 2.1.0, the application's session management is vulner
|
| 49 |
CVE-2026-33669
### Details
Document IDs were retrieved via the /api/file/readDir interface, an
|
| 49 |
CVE-2026-20911
A heap-based buffer overflow vulnerability exists in the HuffTable::initval func
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 730d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2298d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2111d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1725d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2228d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4975d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1196d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 998d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3752d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 900d |