Total CVEs
16511
last 90 days
Avg Priority
35.9
of max 220
KEV
37
actively exploited
POC
3154
public exploits
Unpatched
4128
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
Priority Distribution
| Priority | CVE |
|---|---|
| 22 |
CVE-2026-3354
The Wikilookup plugin for WordPress is vulnerable to Stored Cross-Site Scripting
|
| 22 |
CVE-2026-3353
The Comment SPAM Wiper plugin for WordPress is vulnerable to Stored Cross-Site S
|
| 22 |
CVE-2026-2420
The LotekMedia Popup Form plugin for WordPress is vulnerable to Stored Cross-Sit
|
| 22 |
CVE-2026-1247
The Survey plugin for WordPress is vulnerable to Stored Cross-Site Scripting via
|
| 22 |
CVE-2026-1278
The Mandatory Field plugin for WordPress is vulnerable to Stored Cross-Site Scri
|
| 22 |
CVE-2026-6712
The Website LLMs.txt plugin for WordPress is vulnerable to Stored Cross-Site Scr
|
| 22 |
CVE-2026-1071
The Carta Online plugin for WordPress is vulnerable to Stored Cross-Site Scripti
|
| 22 |
CVE-2026-21007
Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 R
|
| 22 |
CVE-2026-4479
The WholeSale Products Dynamic Pricing Management WooCommerce plugin for WordPre
|
| 22 |
CVE-2026-2837
The Ricerca - advanced search plugin for WordPress is vulnerable to Stored Cross
|
| 22 |
CVE-2026-2432
The CM Custom Reports - Flexible reporting to track what matters most plugin for
|
| 22 |
CVE-2026-35347
The comm utility in uutils coreutils incorrectly consumes data from non-regular
|
| 22 |
CVE-2026-4142
The Sentence To SEO (keywords, description and tags) plugin for WordPress is vul
|
| 22 |
CVE-2026-33601
If you use the zoneToCache function with a malicious authoritative server, an at
|
| 22 |
CVE-2026-3362
The Short Comment Filter plugin for WordPress is vulnerable to Stored Cross-Site
|
| 22 |
CVE-2026-20445
In MDDP, there is a possible system crash due to a race condition. This could le
|
| 22 |
CVE-2026-33600
An RPZ sent by a malicious authoritative server can result in a null pointer der
|
| 22 |
CVE-2026-3995
The OPEN-BRAIN plugin for WordPress is vulnerable to Stored Cross-Site Scripting
|
| 22 |
CVE-2026-3551
The Custom New User Notification plugin for WordPress is vulnerable to Stored Cr
|
| 22 |
CVE-2026-20603
This issue was addressed with improved redaction of sensitive information. This
|
| 22 |
CVE-2026-29051
### Impact
`melange lint --persist-lint-results` (opt-in flag, also usable via
|
| 22 |
CVE-2025-62855
A path traversal vulnerability has been reported to affect File Station 5. If a
|
| 22 |
CVE-2026-22285
Dell Device Management Agent (DDMA), versions prior to 26.02, contain a Plaintex
|
| 22 |
CVE-2025-32007
Out-of-bounds read for some TDX before version tdx module 1.5.24 within Ring 0:
|
| 22 |
CVE-2025-11790
Credentials are not deleted from Acronis Agent after plan revocation. The follow
|
| 22 |
CVE-2026-20037
A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software
|
| 22 |
CVE-2025-30413
Credentials are not deleted from Acronis Agent after plan revocation. The follow
|
| 22 |
CVE-2026-34726
### Summary
Copier's `_subdirectory` setting is documented as the subdirectory
|
| 22 |
CVE-2026-2817
Use of insecure directory in Spring Data Geode snapshot import extracts archives
|
| 22 |
CVE-2026-20609
The issue was addressed with improved memory handling. This issue is fixed in wa
|
| 22 |
CVE-2026-28417
Vim is an open source, command line text editor. Prior to version 9.2.0073, an O
|
| 22 |
CVE-2026-30935
ImageMagick is free and open-source software used for editing and manipulating d
|
| 22 |
CVE-2026-28716
Information disclosure and manipulation due to improper authorization checks. Th
|
| 22 |
CVE-2026-20991
Improper privilege management in ThemeManager prior to SMR Mar-2026 Release 1 al
|
| 22 |
CVE-2026-28265
PowerStore, contains a Path Traversal vulnerability in the Service user. A low p
|
| 22 |
CVE-2026-0724
The WPlyr Media Block plugin for WordPress is vulnerable to Stored Cross-Site Sc
|
| 22 |
CVE-2026-0681
The Extended Random Number Generator plugin for WordPress is vulnerable to Store
|
| 22 |
CVE-2026-0743
The WP Content Permission plugin for WordPress is vulnerable to Stored Cross-Sit
|
| 22 |
CVE-2026-32061
OpenClaw versions prior to 2026.2.17 contain a path traversal vulnerability in t
|
| 22 |
CVE-2025-36187
IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1,
|
| 22 |
CVE-2025-13727
The Video Share VOD - Turnkey Video Site Builder Script plugin for WordPress is
|
| 22 |
CVE-2025-36105
IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could a
|
| 22 |
CVE-2026-1943
The YayMail - WooCommerce Email Customizer plugin for WordPress is vulnerable to
|
| 22 |
CVE-2026-2719
The Private WP suite plugin for WordPress is vulnerable to Stored Cross-Site Scr
|
| 22 |
CVE-2026-2714
The Institute Management plugin for WordPress is vulnerable to Stored Cross-Site
|
| 22 |
CVE-2026-6041
The Buzz Comments plugin for WordPress is vulnerable to Stored Cross-Site Script
|
| 22 |
CVE-2026-1379
The HTTP Headers plugin for WordPress is vulnerable to Stored Cross-Site Scripti
|
| 22 |
CVE-2026-20424
In display, there is a possible out of bounds read due to a missing bounds check
|
| 22 |
CVE-2026-20429
In display, there is a possible out of bounds read due to a missing bounds check
|
| 22 |
CVE-2026-28420
Vim is an open source, command line text editor. Prior to version 9.2.0076, a he
|
| 22 |
CVE-2026-27485
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, skills/ski
|
| 22 |
CVE-2026-20437
In MAE, there is a possible system crash due to use after free. This could lead
|
| 22 |
CVE-2026-20439
In imgsys, there is a possible system crash due to use after free. This could le
|
| 22 |
CVE-2026-20442
In display, there is a possible system crash due to use after free. This could l
|
| 22 |
CVE-2026-22780
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Pri
|
| 22 |
CVE-2026-28543
Race condition vulnerability in the maintenance and diagnostics module. Impact:
|
| 22 |
CVE-2025-43935
Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper resource
|
| 22 |
CVE-2026-24511
Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 t
|
| 22 |
CVE-2026-28418
Vim is an open source, command line text editor. Prior to version 9.2.0074, a he
|
| 22 |
CVE-2026-25645
### Impact
The `requests.utils.extract_zipped_paths()` utility function uses a p
|
| 22 |
CVE-2026-21736
Software installed and run as a non-privileged user may conduct improper GPU sys
|
| 22 |
CVE-2026-35901
A handling issue in the RTSP service of the Mercury MIPC252W 1.0.5 Build 230306
|
| 22 |
CVE-2026-35370
The id utility in uutils coreutils miscalculates the groups= section of its outp
|
| 22 |
CVE-2026-35366
The printenv utility in uutils coreutils fails to display environment variables
|
| 22 |
CVE-2026-35358
The cp utility in uutils coreutils, when performing recursive copies (-R), incor
|
| 22 |
CVE-2026-33868
Mastodon is a free, open-source social network server based on ActivityPub. Prio
|
| 22 |
CVE-2025-63372
Articentgroup Zip Rar Extractor Tool 1.345.93.0 is vulnerable to Directory Trave
|
| 22 |
CVE-2026-23624
GLPI is a free asset and IT management software package. In versions starting fr
|
| 22 |
CVE-2026-27100
Jenkins 2.550 and earlier, LTS 2.541.1 and earlier accepts Run Parameter values
|
| 22 |
CVE-2026-33071
FileRise is a self-hosted web file manager / WebDAV server. In versions prior to
|
| 22 |
CVE-2026-26477
An issue in Dokuwiki v.2025-05-14b 'Librarian' allows a remote attacker to cause
|
| 22 |
CVE-2026-33315
### Summary
The Caldav endpoint allows login using Basic Authentication, which i
|
| 22 |
CVE-2026-26233
Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2.3, 10.11.
|
| 22 |
CVE-2026-30580
File Thingie 2.5.7 is vulnerable to Directory Traversal. A malicious user can le
|
| 22 |
CVE-2026-28219
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 20
|
| 22 |
CVE-2026-20797
A stack based buffer overflow exists in an API route of XWEB Pro version
1.12.1
|
| 22 |
CVE-2026-33118
Microsoft Edge (Chromium-based) Spoofing Vulnerability
|
| 22 |
CVE-2026-24241
NVIDIA Delegated Licensing Service for all appliance platforms contains a vulner
|
| 22 |
CVE-2026-30915
### Impact
SFTPGo versions before v2.7.1 contain an input validation issue in t
|
| 22 |
CVE-2026-33829
Exposure of sensitive information to an unauthorized actor in Windows Snipping T
|
| 22 |
CVE-2026-27895
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, gr
|
| 22 |
CVE-2026-28296
A flaw was found in the FTP GVfs backend. A remote attacker could exploit this i
|
| 22 |
CVE-2026-2272
A flaw was found in GIMP. An integer overflow vulnerability exists when processi
|
| 22 |
CVE-2026-25783
Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail
|
| 22 |
CVE-2026-1694
HTTP headers are added by the default configuration of IIS and ASP.net, and are
|
| 22 |
CVE-2026-1964
A vulnerability was determined in WeKan up to 8.20. This impacts an unknown func
|
| 22 |
CVE-2026-3234
A flaw was found in mod_proxy_cluster. This vulnerability, a Carriage Return Li
|
| 22 |
CVE-2026-25738
Indico is an event management system that uses Flask-Multipass, a multi-backend
|
| 22 |
CVE-2025-15331
Tanium addressed an uncontrolled resource consumption vulnerability in Connect.
|
| 22 |
CVE-2026-2859
Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p23, 2.3.0
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 747d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2315d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2128d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1741d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2244d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4992d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1213d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1014d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3769d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 916d |