Total CVEs
16493
last 90 days
Avg Priority
35.8
of max 220
KEV
37
actively exploited
POC
3181
public exploits
Unpatched
4158
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
Priority Distribution
| Priority | CVE |
|---|---|
| 27 |
CVE-2026-1997
Certain HP OfficeJet Pro printers may expose information if Cross‑Origin Resourc
|
| 27 |
CVE-2026-26330
Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5,
|
| 27 |
CVE-2026-20417
In pcie, there is a possible out of bounds write due to a missing bounds check.
|
| 26 |
CVE-2026-31052
An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cau
|
| 26 |
CVE-2026-29644
XiangShan (open-source high-performance RISC-V processor) commit edb1dfaf7d290ae
|
| 26 |
CVE-2026-41645
A vulnerability in Nuclei's expression evaluation engine makes it possible for a
|
| 26 |
CVE-2026-24468
OpenAEV is an open source platform allowing organizations to plan, schedule and
|
| 26 |
CVE-2026-41495
### Impact
When `n8n-mcp` runs in HTTP transport mode, incoming requests to the
|
| 26 |
CVE-2026-41572
## Summary
After a note-mark owner soft-deletes a public book, its notes and up
|
| 26 |
CVE-2026-35345
A vulnerability in the tail utility of uutils coreutils allows for the exfiltrat
|
| 26 |
CVE-2026-33311
## Summary
SVG attribute values derived from user-supplied options (`background
|
| 26 |
CVE-2026-42420
OpenClaw before 2026.4.8 contains improper input validation in base64 decode pat
|
| 26 |
CVE-2026-6357
pip prior to version 26.1 would run self-update check functionality after instal
|
| 26 |
CVE-2025-15626
Authenticated user can bypass authorization in Ribblr - Crochet & Knitting iOS a
|
| 26 |
CVE-2026-41310
### Summary
The Zipkin exporter remote endpoint cache accepted unbounded key gr
|
| 26 |
CVE-2025-60887
An issue was discovered in Cista v0.15 and below. Insecure deserialization of un
|
| 26 |
CVE-2026-7145
A weakness has been identified in mettle sendportal up to 3.0.1. Affected is the
|
| 26 |
CVE-2026-21003
Improper input validation in data related to network restrictions prior to SMR A
|
| 26 |
CVE-2026-39958
oma is a package manager for AOSC OS. Prior to 1.25.2, oma-topics is responsible
|
| 26 |
CVE-2026-2970
A vulnerability has been found in datapizza-labs datapizza-ai 0.0.2. Affected by
|
| 26 |
CVE-2026-32591
A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an or
|
| 26 |
CVE-2026-35244
Vulnerability in the Oracle Hyperion Infrastructure Technology product of Oracle
|
| 26 |
CVE-2026-24312
An erroneous authorization check in SAP Business Workflow leads to privilege esc
|
| 26 |
CVE-2026-1323
The extension fails to properly define allowed classes used when deserializing t
|
| 26 |
CVE-2026-33014
EVerest is an EV charging software stack. Prior to versions to 2026.02.0, during
|
| 26 |
CVE-2026-32707
PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, tatt
|
| 26 |
CVE-2026-33015
EVerest is an EV charging software stack. Prior to version 2026.02.0, even immed
|
| 26 |
CVE-2026-4743
NULL Pointer Dereference vulnerability in taurusxin ncmdump (src/utils modules
|
| 26 |
CVE-2026-24153
NVIDIA Jetson Linux has a vulnerability in initrd, where the nvluks trusted appl
|
| 26 |
CVE-2026-4135
During an internal security assessment, a potential vulnerability was discovered
|
| 26 |
CVE-2025-5781
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manag
|
| 26 |
CVE-2026-40335
libgphoto2 is a camera access and control library. Versions up to and including
|
| 26 |
CVE-2026-40339
libgphoto2 is a camera access and control library. Versions up to and including
|
| 26 |
CVE-2026-40338
libgphoto2 is a camera access and control library. Versions up to and including
|
| 26 |
CVE-2026-3438
A reflected cross-site scripting vulnerability exists in Sonatype Nexus Reposito
|
| 26 |
CVE-2026-3317
Reflected Cross-Site Scripting (XSS) vulnerability in Navigate Content Managemen
|
| 26 |
CVE-2026-4420
Bludit is vulnerable to Stored Cross-Site Scripting (XSS) in its page creating f
|
| 26 |
CVE-2025-69245
Raytha CMS is vulnerable to Reflected XSS via returnUrl parameter in logon funct
|
| 26 |
CVE-2025-69242
Raytha CMS is vulnerable to reflected XSS via the backToListUrl parameter. An at
|
| 26 |
CVE-2026-39425
MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below co
|
| 26 |
CVE-2026-33892
A vulnerability has been identified in Industrial Edge Management Pro V1 (All ve
|
| 26 |
CVE-2026-24907
October is a Content Management System (CMS) and web platform. Versions prior to
|
| 26 |
CVE-2026-24906
October is a Content Management System (CMS) and web platform. Versions prior to
|
| 26 |
CVE-2026-22675
OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scr
|
| 26 |
CVE-2026-33865
MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsi
|
| 26 |
CVE-2026-40353
# Stored XSS via Unescaped License Attribution Fields
## Summary
The `Abstract
|
| 26 |
CVE-2026-34161
Chamilo LMS is an open-source learning management system. In versions prior to 2
|
| 26 |
CVE-2026-39840
Improper neutralization of input during web page generation ('cross-site scripti
|
| 26 |
CVE-2026-29520
Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a reflected cross-s
|
| 26 |
CVE-2026-29513
Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a stored cross-site
|
| 26 |
CVE-2026-29510
Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a stored cross-site
|
| 26 |
CVE-2026-5010
A reflected Cross-Site Scripting (XSS) vulnerability has been discovered in Clic
|
| 26 |
CVE-2025-41026
Reflected Cross Site Scripting (XSS) vulnerabilities in GDTaller. These vulnerab
|
| 26 |
CVE-2025-41357
Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104.
|
| 26 |
CVE-2026-34821
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS)
|
| 26 |
CVE-2025-41027
Reflected Cross Site Scripting (XSS) vulnerabilities in GDTaller. These vulnerab
|
| 26 |
CVE-2025-41355
Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server
v0.104.
|
| 26 |
CVE-2026-34951
Workbench is a suite of tools for administrators and developers to interact with
|
| 26 |
CVE-2025-12454
Improper neutralization of input during web page generation ('cross-site scripti
|
| 26 |
CVE-2025-12453
Improper neutralization of input during web page generation ('cross-site scripti
|
| 26 |
CVE-2025-41356
Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104.
|
| 26 |
CVE-2026-39426
MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below co
|
| 26 |
CVE-2026-40096
immich is a high performance self-hosted photo and video management solution. Ve
|
| 26 |
CVE-2026-1564
Pega Platform versions 8.1.0 through 25.1.1 are affected by an HTML Injection vu
|
| 26 |
CVE-2025-12455
Observable response discrepancy vulnerability in OpenText™ Vertica allows Passwo
|
| 26 |
CVE-2026-35398
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redi
|
| 26 |
CVE-2026-35472
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redi
|
| 26 |
CVE-2026-35474
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, open redirec
|
| 26 |
CVE-2026-35396
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redi
|
| 26 |
CVE-2026-35473
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redi
|
| 26 |
CVE-2026-33709
JupyterHub is software that allows one to create a multi-user server for Jupyter
|
| 26 |
CVE-2026-35475
WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, the redirect
|
| 26 |
CVE-2026-41361
OpenClaw before 2026.3.28 contains an SSRF guard bypass vulnerability that fails
|
| 26 |
CVE-2026-32113
Discourse is an open-source discussion platform. From versions 2026.1.0-latest t
|
| 26 |
CVE-2026-33456
Livestatus injection in the notification test mode in Checkmk <2.5.0b4 and <2.4.
|
| 26 |
CVE-2025-69237
Raytha CMS is vulnerable to Stored XSS via FieldValues[0].Value parameter in pag
|
| 26 |
CVE-2026-35496
A path traversal vulnerability exists in CubeCart prior to 6.6.0, which may allo
|
| 26 |
CVE-2025-69236
Raytha CMS is vulnerable to Stored XSS via FieldValues[1].Value parameter in pos
|
| 26 |
CVE-2026-22191
wpDiscuz before 7.6.47 contains a shortcode injection vulnerability that allows
|
| 26 |
CVE-2026-33273
Unrestricted upload of file with dangerous type issue exists in MATCHA INVOICE 2
|
| 26 |
CVE-2026-33415
Discourse is an open-source discussion platform. From versions 2026.1.0-latest t
|
| 26 |
CVE-2026-39347
OrangeHRM is a comprehensive human resource management (HRM) system. From 5.0 to
|
| 26 |
CVE-2026-5160
Versions of the package github.com/yuin/goldmark/renderer/html before 1.7.17 are
|
| 26 |
CVE-2025-69239
Raytha CMS is vulnerable to Server-Side Request Forgery in the “Themes - Import
|
| 26 |
CVE-2026-32844
XinLiangCoder php_api_doc through commit 1ce5bbf contains a reflected cross-site
|
| 26 |
CVE-2026-21904
An Improper Neutralization of Input During Web Page Generation ('Cross-site Scri
|
| 26 |
CVE-2026-4175
A vulnerability was determined in Aureus ERP up to 1.3.0-BETA2. The affected ele
|
| 26 |
CVE-2026-40118
UDP Console provided by Arcserve contains an incorrectly specified destination i
|
| 26 |
CVE-2026-6107
A flaw has been found in 1Panel-dev MaxKB up to 2.6.1. This issue affects some u
|
| 26 |
CVE-2026-32869
OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize the conten
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 746d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2314d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2127d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1741d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2244d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4992d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1212d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1014d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3769d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 916d |