Total CVEs
16347
last 90 days
Avg Priority
36.7
of max 220
KEV
39
actively exploited
POC
3315
public exploits
Unpatched
4724
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
194
CVE-2026-24061
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for t
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
184
CVE-2026-23760
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
Priority Distribution
| Priority | CVE |
|---|---|
| 49 |
CVE-2026-2248
METIS WIC devices (versions <= oscore 2.1.234-r18) expose a web-based shell at t
|
| 49 |
CVE-2026-2249
METIS DFS devices (versions <= oscore 2.1.234-r18) expose a web-based shell at t
|
| 49 |
CVE-2026-26830
pdf-image (npm package) through version 2.0.0 allows OS command injection via th
|
| 49 |
CVE-2025-66480
Wildfire IM is an instant messaging and real-time audio/video solution. Prior to
|
| 49 |
CVE-2026-33937
## Summary
`Handlebars.compile()` accepts a pre-parsed AST object in addition t
|
| 49 |
CVE-2026-21969
Vulnerability in the Oracle Agile Product Lifecycle Management for Process produ
|
| 49 |
CVE-2026-21658
Unauthenticated Remote Code Execution i.e Improper Control of Generation of Code
|
| 49 |
CVE-2026-34243
#### Summary
A GitHub Actions workflow uses untrusted user input from `issue_co
|
| 49 |
CVE-2026-25072
XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain
|
| 49 |
CVE-2026-6264
A critical vulnerability in the Talend JobServer and Talend Runtime allows unaut
|
| 49 |
CVE-2026-1056
The Snow Monkey Forms plugin for WordPress is vulnerable to arbitrary file delet
|
| 49 |
CVE-2025-14532
DobryCMS's upload file functionality allows an unauthenticated remote attacker t
|
| 49 |
CVE-2025-59388
A use of hard-coded password vulnerability has been reported to affect Hyper Dat
|
| 49 |
CVE-2026-0926
The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion
|
| 49 |
CVE-2026-28778
International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Recei
|
| 49 |
CVE-2026-5153
A flaw has been found in Tenda CH22 1.0.0.1. The affected element is the functio
|
| 49 |
CVE-2026-4554
A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element
|
| 49 |
CVE-2025-69874
nanotar through 0.2.0 has a path traversal vulnerability in parseTar() and parse
|
| 49 |
CVE-2026-26793
GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulner
|
| 49 |
CVE-2026-3300
The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Executio
|
| 49 |
CVE-2026-4257
The Contact Form by Supsystic plugin for WordPress is vulnerable to Server-Side
|
| 49 |
CVE-2026-3584
The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in al
|
| 49 |
CVE-2026-26339
Hyland Alfresco Transformation Service allows unauthenticated attackers to achie
|
| 49 |
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal
|
| 49 |
CVE-2026-3826
IFTOP developed by WellChoose has a Local File Inclusion vulnerability, allowing
|
| 49 |
CVE-2026-27446
Missing Authentication for Critical Function (CWE-306) vulnerability in Apache A
|
| 49 |
CVE-2026-2331
An attacker may perform unauthenticated read and write operations on sensitive f
|
| 49 |
CVE-2026-1405
The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads d
|
| 49 |
CVE-2026-26832
node-tesseract-ocr is an npm package that provides a Node.js wrapper for Tessera
|
| 49 |
CVE-2026-22886
OpenMQ exposes a TCP-based management service (imqbrokerd) that by default requi
|
| 49 |
CVE-2026-3136
An improper authorization vulnerability in GitHub Trigger Comment Control in Goo
|
| 49 |
CVE-2026-1830
The Quick Playground plugin for WordPress is vulnerable to Remote Code Execution
|
| 49 |
CVE-2026-2631
The Datalogics Ecommerce Delivery WordPress plugin before 2.6.60 exposes an una
|
| 49 |
CVE-2026-20160
A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allo
|
| 49 |
CVE-2026-26791
GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulner
|
| 49 |
CVE-2026-26795
GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulner
|
| 49 |
CVE-2026-26792
GL-iNet GL-AR300M16 v4.3.11 was discovered to contain multiple command injection
|
| 49 |
CVE-2026-32136
AdGuard Home is a network-wide software for blocking ads and tracking. Prior to
|
| 49 |
CVE-2026-26333
Calero VeraSMART versions prior to 2022 R1 expose an unauthenticated .NET Remoti
|
| 49 |
CVE-2026-3461
The Visa Acceptance Solutions plugin for WordPress is vulnerable to Authenticati
|
| 49 |
CVE-2026-1358
Airleader Master versions 6.381 and prior allow for file uploads without
restri
|
| 49 |
CVE-2025-54003
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-24531
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2025-50003
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2025-49994
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2025-47474
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-23975
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-3000
IDExpert Windows Logon Agent developed by Changing has a Remote Code Execution v
|
| 49 |
CVE-2026-2999
IDExpert Windows Logon Agent developed by Changing has a Remote Code Execution v
|
| 49 |
CVE-2026-0110
In MM_DATA_IND of cn_NrSmMsgHdlrFromMM.cpp, there is a possible EoP due to memor
|
| 49 |
CVE-2026-0113
In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds writ
|
| 49 |
CVE-2026-0120
In modem, there is a possible out of bounds write due to an incorrect bounds che
|
| 49 |
CVE-2026-0114
In Modem, there is a possible out of bounds write due to an incorrect bounds che
|
| 49 |
CVE-2026-0116
In __mfc_handle_released_buf of mfc_core_isr.c, there is a possible out of bound
|
| 49 |
CVE-2026-0111
In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds writ
|
| 49 |
CVE-2026-30313
DSAI-Cline's command auto-approval module contains a critical OS command injecti
|
| 49 |
CVE-2026-30312
DSAI-Cline's command auto-approval module contains a critical OS command injecti
|
| 49 |
CVE-2025-15559
An unauthenticated attacker can inject OS commands when calling a server API end
|
| 49 |
CVE-2026-22904
Improper length handling when parsing multiple cookie fields (including TRACKID)
|
| 49 |
CVE-2026-31027
TOTOlink A3600R v5.9c.4959 contains a buffer overflow vulnerability in the setAp
|
| 49 |
CVE-2026-23978
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-22365
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-28043
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
|
| 49 |
CVE-2026-21654
Improper Neutralization of Special Elements used in an OS Command ('OS Command I
|
| 49 |
CVE-2026-20129
A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager
|
| 49 |
CVE-2026-3266
Missing Authorization vulnerability in OpenText™ Filr allows Authentication Bypa
|
| 49 |
CVE-2025-14533
The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privi
|
| 49 |
CVE-2026-28430
Chamilo LMS is a learning management system. Prior to version 1.11.34, there is
|
| 49 |
CVE-2025-15521
The Academy LMS - WordPress LMS Plugin for Complete eLearning Solution plugin fo
|
| 49 |
CVE-2026-2599
The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress i
|
| 49 |
CVE-2026-4001
The Woocommerce Custom Product Addons Pro plugin for WordPress is vulnerable to
|
| 49 |
CVE-2026-30305
Syntx's command auto-approval module contains a critical OS command injection vu
|
| 49 |
CVE-2026-27613
TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. A vulnerabili
|
| 49 |
CVE-2026-30314
Ridvay Code's command auto-approval module contains a critical OS command inject
|
| 49 |
CVE-2026-30311
Ridvay Code's command auto-approval module contains a critical OS command inject
|
| 49 |
CVE-2026-30307
Roo Code's command auto-approval module contains a critical OS command injection
|
| 49 |
CVE-2025-51958
aelsantex runcommand 2014-04-01, a plugin for DokuWiki, allows unauthenticated a
|
| 49 |
CVE-2025-52998
Chamilo is a learning management system. Prior to version 1.11.30, in the applic
|
| 49 |
CVE-2026-27755
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a weak sessio
|
| 49 |
CVE-2025-56422
A deserialization vulnerability in LimeSurvey before v6.15.0+250623 allows a rem
|
| 49 |
CVE-2026-28776
International Datacasting Corporation (IDC) SFX Series SuperFlex SatelliteReceiv
|
| 49 |
CVE-2026-28777
International Datacasting Corporation (IDC)
SFX2100 Satellite Receiver, trivia
|
| 49 |
CVE-2026-29119
International Datacasting Corporation (IDC) SFX Series SuperFlex(SFX2100) Satell
|
| 49 |
CVE-2026-28514
Rocket.Chat is an open-source, secure, fully customizable communications platfor
|
| 49 |
CVE-2026-25893
FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior
|
| 49 |
CVE-2026-27975
Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, a
|
| 49 |
CVE-2026-34159
llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492
|
| 49 |
CVE-2026-3891
The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file upl
|
| 49 |
CVE-2026-25938
FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. From 1
|
| 49 |
CVE-2026-4312
GCB/FCB Audit Software developed by DrangSoft has a Missing Authentication vulne
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 738d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2305d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2118d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1732d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2235d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4983d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1203d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1005d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3760d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 907d |