Total CVEs
6152
last 30 days
Avg Priority
31.3
of max 220
KEV
14
actively exploited
POC
495
public exploits
Unpatched
941
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
136
CVE-2026-0300
A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service o
133
CVE-2026-41940
cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, an
131
CVE-2026-6973
An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows
131
CVE-2026-42897
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Ex
127
CVE-2026-20182
May 2026: This security advisory provides the details and fix information for a vulnerability that w
126
CVE-2026-41091
Improper link resolution before file access ('link following') in Microsoft Defender allows an autho
120
CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exp
118
CVE-2026-45321
## Summary
On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 4
117
CVE-2026-42208
LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1
117
CVE-2026-8398
A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows v
Priority Distribution
| Priority | CVE |
|---|---|
| 44 |
CVE-2026-8526
Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 allowed a
|
| 44 |
CVE-2026-8519
Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 al
|
| 44 |
CVE-2026-31225
The superduper project thru v0.10.0 contains a critical remote code execution vu
|
| 44 |
CVE-2026-32204
External control of file name or path in Azure Monitor Agent allows an authorize
|
| 44 |
CVE-2026-41088
External control of file name or path in Windows Ancillary Function Driver for W
|
| 44 |
CVE-2026-6473
Integer wraparound in multiple PostgreSQL server features allows an unprivileged
|
| 44 |
CVE-2026-40370
External control of file name or path in SQL Server allows an authorized attacke
|
| 44 |
CVE-2026-8509
Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a
|
| 44 |
CVE-2026-41139
Math.js is an extensive math library for JavaScript and Node.js. From version 13
|
| 44 |
CVE-2026-42266
The allow-list of extensions that can be installed from PyPI Extension Manager (
|
| 44 |
CVE-2026-31218
The _load_model() function in the neural_magic_training.py script of the optimat
|
| 44 |
CVE-2026-31224
The snorkel library thru v0.10.0 contains an insecure deserialization vulnerabil
|
| 44 |
CVE-2026-31222
The snorkel library thru v0.10.0 contains an insecure deserialization vulnerabil
|
| 44 |
CVE-2026-31219
The _load_model() function in the neural_magic_training.py script of the optimat
|
| 44 |
CVE-2026-31223
The snorkel library thru v0.10.0 contains a critical insecure deserialization vu
|
| 44 |
CVE-2026-45672
### Summary
The `/api/v1/utils/code/execute` endpoint executes arbitrary Python
|
| 44 |
CVE-2026-40360
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to
|
| 44 |
CVE-2026-40359
Use after free in Microsoft Office Excel allows an unauthorized attacker to exec
|
| 44 |
CVE-2026-42831
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker t
|
| 44 |
CVE-2026-40362
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized atta
|
| 44 |
CVE-2026-2052
The Widget Options - Advanced Conditional Visibility for Gutenberg Blocks & Clas
|
| 44 |
CVE-2026-8531
Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.16
|
| 44 |
CVE-2026-35430
Authorization bypass through user-controlled key in Azure Privileged Identity Ma
|
| 44 |
CVE-2026-5127
The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Members
|
| 44 |
CVE-2026-8975
Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox
|
| 44 |
CVE-2026-5140
Improper neutralization of CRLF sequences ('CRLF injection') vulnerability in TU
|
| 44 |
CVE-2026-31232
The CosyVoice project thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025
|
| 44 |
CVE-2026-41611
Improper neutralization of script-related html tags in a web page (basic xss) in
|
| 44 |
CVE-2026-42550
### Summary
`SimplePdo::insert()`, `SimplePdo::update()`, and `SimplePdo::delete
|
| 44 |
CVE-2026-42994
Bitwarden CLI 2026.4.0 from 2026-04-22T21:57Z to 2026-04-22T23:30Z, when obtaine
|
| 44 |
CVE-2026-6475
Symlink following in PostgreSQL pg_basebackup plain format and in pg_rewind allo
|
| 44 |
CVE-2026-5161
Improper link resolution before file access ('link following') vulnerability in
|
| 44 |
CVE-2026-8974
Memory safety bugs present in Firefox ESR 140.10 and Firefox 150. Some of these
|
| 44 |
CVE-2026-31773
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth:
|
| 44 |
CVE-2026-5402
TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial o
|
| 44 |
CVE-2026-34343
Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem all
|
| 44 |
CVE-2026-33841
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to el
|
| 44 |
CVE-2026-40419
Use after free in Microsoft Office allows an authorized attacker to elevate priv
|
| 44 |
CVE-2026-41095
Use after free in Data Deduplication allows an authorized attacker to elevate pr
|
| 44 |
CVE-2026-35420
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to el
|
| 44 |
CVE-2026-46414
Microsoft UFO open-source framework for intelligent automation across devices an
|
| 44 |
CVE-2026-47161
RELATE is a web-based courseware package. Prior to commit d66ba5659b459bf1ba56b7
|
| 44 |
CVE-2026-48920
Jenkins Email Extension Plugin 1933.v45cec755423f and earlier allows inlining im
|
| 44 |
CVE-2026-8787
The Firebase Support & Chat Management plugin for WordPress is vulnerable to pri
|
| 44 |
CVE-2026-42603
OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses
|
| 44 |
CVE-2026-42216
OpenEXR provides the specification and reference implementation of the EXR file
|
| 44 |
CVE-2026-44346
# BentoML `envs[*].name` Dockerfile command injection - sibling of CVE-2026-3374
|
| 44 |
CVE-2026-38807
Insecure Permissions vulnerability in kvf-admin v1.0.0 allows a remote attacker
|
| 44 |
CVE-2026-8970
Privilege escalation in the Security component. This vulnerability was fixed in
|
| 44 |
CVE-2026-6477
Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreS
|
| 44 |
CVE-2026-39852
Quarkus version 3.32.4 is vulnerable to an authorization bypass issue (GHSL-2026
|
| 44 |
CVE-2026-42278
UltraDAG is a minimal DAG-BFT blockchain in Rust. Prior to commit fb6ef59, the U
|
| 44 |
CVE-2026-3953
Improper neutralization of input during web page generation ('cross-site scripti
|
| 44 |
CVE-2026-43892
AntSword is a cross-platform website management toolkit. Prior to 2.1.16, incomp
|
| 44 |
CVE-2026-35436
Insufficient granularity of access control in Microsoft Office Click-To-Run allo
|
| 44 |
CVE-2026-8973
Memory safety bugs present in Firefox 150. Some of these bugs showed evidence of
|
| 44 |
CVE-2026-31196
The traceroute diagnostic handler in /bin/httpd_clientside for ALTICE LABS / SFR
|
| 44 |
CVE-2026-40417
Weak authentication in Dynamics Business Central allows an authorized attacker t
|
| 44 |
CVE-2026-40381
Improper access control in Azure Connected Machine Agent allows an authorized at
|
| 44 |
CVE-2026-6456
The Account Switcher plugin for WordPress is vulnerable to Privilege Escalation
|
| 44 |
CVE-2026-40420
Improper access control in Microsoft Office Click-To-Run allows an authorized at
|
| 44 |
CVE-2026-31195
The ping diagnostic handler in /bin/httpd_clientside for ALTICE LABS / SFR Franc
|
| 44 |
CVE-2025-63705
NPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the inv
|
| 44 |
CVE-2026-42205
Avo is a framework to create admin panels for Ruby on Rails apps. Prior to versi
|
| 44 |
CVE-2026-43908
OpenImageIO is a toolset for reading, writing, and manipulating image files of a
|
| 44 |
CVE-2026-44988
LibVNCClient is a library for easy implementation of a VNC client. In 0.9.15 and
|
| 44 |
CVE-2026-32740
libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and
|
| 44 |
CVE-2026-5200
The AcyMailing - An Ultimate Newsletter Plugin and Marketing Automation Solution
|
| 44 |
CVE-2026-8719
The AI Engine - The Chatbot, AI Framework & MCP for WordPress plugin for WordPre
|
| 44 |
CVE-2026-6895
The WishList Member plugin for WordPress is vulnerable to Missing Authorization
|
| 44 |
CVE-2026-6897
The Wishlist Member plugin for WordPress is vulnerable to unauthorized modificat
|
| 44 |
CVE-2026-6898
The Wishlist Member plugin for WordPress is vulnerable to unauthorized modificat
|
| 44 |
CVE-2026-22924
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). Th
|
| 44 |
CVE-2026-6419
The WishList Member plugin for WordPress is vulnerable to Privilege Escalation v
|
| 44 |
CVE-2026-42843
### Summary
An insecure direct object reference and logic flaw in the Grav API
|
| 44 |
CVE-2026-43909
OpenImageIO is a toolset for reading, writing, and manipulating image files of a
|
| 44 |
CVE-2026-7467
The Read More & Accordion plugin for WordPress is vulnerable to Privilege Escala
|
| 44 |
CVE-2026-6637
Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged datab
|
| 44 |
CVE-2026-6001
Authorization bypass through User-Controlled key vulnerability in ABIS Technolog
|
| 44 |
CVE-2026-8558
Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 allowed a
|
| 44 |
CVE-2026-2465
Incorrect Authorization vulnerability in E-Kalite Software Hardware Engineering
|
| 44 |
CVE-2026-6543
IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow allows an attacker to execute
|
| 44 |
CVE-2026-25077
Account users are allowed by default to register templates to be downloaded dire
|
| 44 |
CVE-2026-41142
OpenEXR provides the specification and reference implementation of the EXR file
|
| 44 |
CVE-2025-14543
Improper Restriction of XML External Entity Reference vulnerability in Connext P
|
| 44 |
CVE-2026-40398
Heap-based buffer overflow in Windows Remote Desktop allows an authorized attack
|
| 44 |
CVE-2026-9126
Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remo
|
| 44 |
CVE-2026-40369
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to
|
| 44 |
CVE-2026-7474
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execu
|
| 44 |
CVE-2026-8957
Privilege escalation in the Enterprise Policies component. This vulnerability wa
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 776d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2344d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2157d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1771d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2274d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 5021d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1242d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1044d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3799d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 946d |