Total CVEs
17852
last 90 days
Avg Priority
34.1
of max 220
KEV
31
actively exploited
POC
2281
public exploits
Unpatched
3557
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
136
CVE-2026-0300
A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service o
133
CVE-2026-41940
cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, an
131
CVE-2026-6973
An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows
131
CVE-2026-42897
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Ex
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
127
CVE-2026-20182
May 2026: This security advisory provides the details and fix information for a vulnerability that w
126
CVE-2026-41091
Improper link resolution before file access ('link following') in Microsoft Defender allows an autho
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
120
CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exp
Priority Distribution
| Priority | CVE |
|---|---|
| 48 |
CVE-2026-4617
A weakness has been identified in SourceCodester Patients Waiting Area Queue Man
|
| 48 |
CVE-2026-7147
A vulnerability was detected in JoeCastrom mcp-chat-studio up to 1.5.0. Affected
|
| 48 |
CVE-2026-7065
A vulnerability has been found in BidingCC BuildingAI up to 26.0.1. Impacted is
|
| 48 |
CVE-2026-5633
A vulnerability was determined in assafelovic gpt-researcher up to 3.4.3. Affect
|
| 48 |
CVE-2026-7468
A security vulnerability has been detected in 1024-lab smart-admin up to 3.30.0.
|
| 48 |
CVE-2026-5016
A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the f
|
| 48 |
CVE-2026-8738
A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impa
|
| 48 |
CVE-2026-6224
A security flaw has been discovered in nocobase plugin-workflow-javascript up to
|
| 48 |
CVE-2026-7668
A vulnerability was identified in MikroTik RouterOS 6.49.8. This vulnerability a
|
| 48 |
CVE-2026-5330
A vulnerability was found in SourceCodester/mayuri_k Best Courier Management Sys
|
| 48 |
CVE-2026-3744
A vulnerability has been found in code-projects Student Web Portal 1.0. This imp
|
| 48 |
CVE-2026-6605
A security flaw has been discovered in modelscope agentscope up to 1.0.18. This
|
| 48 |
CVE-2026-4200
A security flaw has been discovered in glowxq glowxq-oj up to 6f7c72309047205725
|
| 48 |
CVE-2026-4191
A flaw has been found in JawherKl node-api-postgres up to 2.5. Affected is the f
|
| 48 |
CVE-2026-4201
A weakness has been identified in glowxq glowxq-oj up to 6f7c723090472057252040f
|
| 48 |
CVE-2026-4528
A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element i
|
| 48 |
CVE-2026-6625
A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Af
|
| 48 |
CVE-2026-4221
A vulnerability was found in Tiandy Easy7 Integrated Management Platform 7.17.0.
|
| 48 |
CVE-2026-4953
A weakness has been identified in mingSoft MCMS 迄 5.5.0. This issue affects the
|
| 48 |
CVE-2026-5001
A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e5
|
| 48 |
CVE-2026-9350
A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. Thi
|
| 48 |
CVE-2026-6606
A weakness has been identified in modelscope agentscope up to 1.0.18. This vulne
|
| 48 |
CVE-2026-8758
A vulnerability was determined in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This
|
| 48 |
CVE-2026-7025
A vulnerability was found in Typecho up to 1.3.0. This vulnerability affects the
|
| 48 |
CVE-2026-4536
A vulnerability was found in Acrel Environmental Monitoring Cloud Platform 1.1.0
|
| 48 |
CVE-2026-5573
A weakness has been identified in Technostrobe HI-LED-WR120-G2 5.5.0.1R6.03.30.
|
| 48 |
CVE-2026-8725
A weakness has been identified in CoreWorxLab CAAL up to 1.6.0. The affected ele
|
| 48 |
CVE-2026-6574
A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue aff
|
| 48 |
CVE-2026-6604
A vulnerability was identified in modelscope agentscope up to 1.0.18. Affected b
|
| 48 |
CVE-2026-4231
A vulnerability was found in vanna-ai vanna up to 2.0.2. Affected by this vulner
|
| 48 |
CVE-2026-8032
A flaw has been found in PicoTronica e-Clinic Healthcare System ECHS 5.7. The im
|
| 48 |
CVE-2026-6596
A security flaw has been discovered in langflow-ai langflow up to 1.1.0. This is
|
| 48 |
CVE-2026-7681
A security vulnerability has been detected in jsbroks COCO Annotator up to 0.11.
|
| 48 |
CVE-2026-5569
A vulnerability was found in Technostrobe HI-LED-WR120-G2 5.5.0.1R6.03.30. Impac
|
| 48 |
CVE-2026-4220
A vulnerability has been found in Technologies Integrated Management Platform 7.
|
| 48 |
CVE-2026-6977
A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. The af
|
| 48 |
CVE-2026-6602
A vulnerability was found in rickxy Hospital Management System up to 88a4290d957
|
| 48 |
CVE-2026-5261
A vulnerability was identified in Shandong Hoteam InforCenter PLM up to 8.3.8. T
|
| 48 |
CVE-2026-6580
A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.
|
| 48 |
CVE-2026-8751
A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the
|
| 48 |
CVE-2026-4860
A security flaw has been discovered in 648540858 wvp-GB28181-pro up to 2.7.4. Th
|
| 48 |
CVE-2026-4236
A security vulnerability has been detected in itsourcecode Online Enrollment Sys
|
| 48 |
CVE-2026-8133
A security vulnerability has been detected in zyx0814 FilePress up to 2.2.0. Aff
|
| 48 |
CVE-2026-3411
A security vulnerability has been detected in itsourcecode University Management
|
| 48 |
CVE-2026-3410
A weakness has been identified in itsourcecode Society Management System 1.0. Af
|
| 48 |
CVE-2026-6993
A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impact
|
| 48 |
CVE-2026-5484
A weakness has been identified in BookStackApp BookStack up to 26.03. Affected i
|
| 48 |
CVE-2026-3413
A flaw has been found in itsourcecode University Management System 1.0. This vul
|
| 48 |
CVE-2026-6608
A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the fu
|
| 48 |
CVE-2026-7060
A vulnerability was determined in liyupi yu-picture up to a053632c41340152bf75b6
|
| 48 |
CVE-2026-7632
A vulnerability was determined in code-projects Online Hospital Management Syste
|
| 48 |
CVE-2026-3723
A security flaw has been discovered in code-projects Simple Flight Ticket Bookin
|
| 48 |
CVE-2026-4532
A security vulnerability has been detected in code-projects Simple Food Ordering
|
| 48 |
CVE-2026-3709
A weakness has been identified in code-projects Simple Flight Ticket Booking Sys
|
| 48 |
CVE-2026-3734
A flaw has been found in SourceCodester Client Database Management System 1.0. A
|
| 48 |
CVE-2026-3705
A vulnerability was found in code-projects Simple Flight Ticket Booking System 1
|
| 48 |
CVE-2026-7109
A vulnerability was detected in code-projects Invoice System in Laravel 1.0. Thi
|
| 48 |
CVE-2026-23238
In the Linux kernel, the following vulnerability has been resolved:
romfs: chec
|
| 48 |
CVE-2026-5326
A vulnerability was identified in SourceCodester Leave Application System 1.0. I
|
| 48 |
CVE-2026-4900
A weakness has been identified in code-projects Online Food Ordering System 1.0.
|
| 48 |
CVE-2026-3764
A vulnerability was determined in SourceCodester Client Database Management Syst
|
| 48 |
CVE-2026-5414
A security flaw has been discovered in Newgen OmniDocs up to 12.0.00. Affected b
|
| 48 |
CVE-2026-6160
A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this
|
| 48 |
CVE-2026-3762
A vulnerability has been found in SourceCodester Client Database Management Syst
|
| 48 |
CVE-2026-7071
A security vulnerability has been detected in CodeAstro Online Job Portal 1.0. A
|
| 48 |
CVE-2026-5650
A vulnerability was found in code-projects Online Application System for Admissi
|
| 48 |
CVE-2026-5666
A vulnerability was detected in code-projects Online FIR System 1.0. Affected by
|
| 48 |
CVE-2026-4624
A vulnerability was detected in SourceCodester Online Library Management System
|
| 48 |
CVE-2026-5827
A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0.
|
| 48 |
CVE-2026-6153
A vulnerability was identified in code-projects Vehicle Showroom Management Syst
|
| 48 |
CVE-2026-6151
A vulnerability was found in code-projects Vehicle Showroom Management System 1.
|
| 48 |
CVE-2026-5198
A vulnerability was determined in code-projects Student Membership System 1.0. T
|
| 48 |
CVE-2026-4580
A security flaw has been discovered in code-projects Simple Laundry System 1.0.
|
| 48 |
CVE-2026-7074
A vulnerability has been found in itsourcecode Construction Management System 1.
|
| 48 |
CVE-2026-7224
A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1
|
| 48 |
CVE-2026-6031
A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0.
|
| 48 |
CVE-2026-4581
A weakness has been identified in code-projects Simple Laundry System 1.0. Affec
|
| 48 |
CVE-2026-4908
A security flaw has been discovered in code-projects Simple Laundry System 1.0.
|
| 48 |
CVE-2026-6161
A vulnerability was determined in code-projects Simple ChatBox up to 1.0. This a
|
| 48 |
CVE-2026-7063
A vulnerability was detected in code-projects Employee Management System 1.0. Th
|
| 48 |
CVE-2026-7075
A vulnerability was found in itsourcecode Construction Management System 1.0. Th
|
| 48 |
CVE-2026-7225
A weakness has been identified in SourceCodester Pizzafy Ecommerce System 1.0. T
|
| 48 |
CVE-2026-4844
A vulnerability was detected in code-projects Online Food Ordering System 1.0. T
|
| 48 |
CVE-2026-4612
A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0
|
| 48 |
CVE-2026-6492
A vulnerability was detected in arnobt78 Hotel Booking Management System up to f
|
| 48 |
CVE-2026-6187
A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory Syst
|
| 48 |
CVE-2026-5034
A flaw has been found in code-projects Accounting System 1.0. Affected by this i
|
| 48 |
CVE-2026-6004
A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Im
|
| 48 |
CVE-2026-4613
A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerabil
|
| 48 |
CVE-2026-4319
A vulnerability was identified in code-projects Simple Food Order System 1.0. Af
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 776d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2344d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2157d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1771d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2274d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 5021d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1242d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1044d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3799d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 946d |