Total CVEs
16296
last 90 days
Avg Priority
36.8
of max 220
KEV
42
actively exploited
POC
3307
public exploits
Unpatched
4707
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
194
CVE-2026-24061
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for t
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
184
CVE-2026-23760
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
Priority Distribution
| Priority | CVE |
|---|---|
| 39 |
CVE-2026-23720
A vulnerability has been identified in Simcenter Femap (All versions < V2512), S
|
| 39 |
CVE-2025-48613
In VBMeta, there is a possible way to modify and resign VBMeta using a test key,
|
| 39 |
CVE-2026-23716
A vulnerability has been identified in Simcenter Femap (All versions < V2512), S
|
| 39 |
CVE-2026-26334
Calero VeraSMART versions prior to 2026 R1 contain hardcoded static AES encrypti
|
| 39 |
CVE-2026-1260
Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vul
|
| 39 |
CVE-2026-20409
In imgsys, there is a possible out of bounds write due to a missing bounds check
|
| 39 |
CVE-2026-20411
In cameraisp, there is a possible escalation of privilege due to use after free.
|
| 39 |
CVE-2026-20412
In cameraisp, there is a possible out of bounds write due to a missing bounds ch
|
| 39 |
CVE-2026-40516
OpenHarness before commit bd4df81 contains a server-side request forgery vulnera
|
| 39 |
CVE-2026-32907
OpenClaw before 2026.2.19 contains a local command injection vulnerability in Wi
|
| 39 |
CVE-2026-30266
Insecure Permissions vulnerability in DeepCool DeepCreative v.1.2.7 and before a
|
| 39 |
CVE-2026-34172
## Summary
`ChatWorkflow.chat(message)` passes its string argument directly as
|
| 39 |
CVE-2026-23864
Multiple denial of service vulnerabilities exist in React Server Components, aff
|
| 39 |
CVE-2026-32623
xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based
|
| 39 |
CVE-2026-26130
Allocation of resources without limits or throttling in ASP.NET Core allows an u
|
| 39 |
CVE-2026-20048
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Ci
|
| 39 |
CVE-2026-32271
Craft Commerce is an ecommerce platform for Craft CMS. In versions 4.0.0 through
|
| 39 |
CVE-2026-20100
A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of C
|
| 39 |
CVE-2026-20014
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and C
|
| 39 |
CVE-2026-20049
A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Interne
|
| 39 |
CVE-2026-33516
xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bou
|
| 39 |
CVE-2026-2533
A flaw has been found in Tosei Self-service Washing Machine 4.02. Impacted is an
|
| 39 |
CVE-2026-2544
A security flaw has been discovered in yued-fe LuLu UI up to 3.0.0. This issue a
|
| 39 |
CVE-2026-20125
A vulnerability in the HTTP Server feature of Cisco IOS Software and Cisco IOS X
|
| 39 |
CVE-2026-33935
MyTube is a self-hosted downloader and player for several video websites Prior t
|
| 39 |
CVE-2026-28393
OpenClaw versions 2.0.0-beta3 prior to 2026.2.14 contain a path traversal vulner
|
| 39 |
CVE-2026-20105
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firew
|
| 39 |
CVE-2026-2592
The Zarinpal Gateway for WooCommerce plugin for WordPress is vulnerable to Impro
|
| 39 |
CVE-2026-31881
Runtipi is a personal homeserver orchestrator. Prior to 4.8.0, an unauthenticate
|
| 39 |
CVE-2026-1802
A security flaw has been discovered in Ziroom ZHOME A0101 1.0.1.0. This issue af
|
| 39 |
CVE-2026-29141
SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to bypass
|
| 39 |
CVE-2026-34200
Nhost is an open source Firebase alternative with GraphQL. Prior to version 1.41
|
| 39 |
CVE-2026-23689
Due to an uncontrolled resource consumption (Denial of Service) vulnerability, a
|
| 39 |
CVE-2026-29186
Backstage is an open framework for building developer portals. Prior to version
|
| 39 |
CVE-2026-5709
Unsanitized input in the FileBrowser API in AWS Research and Engineering Studio
|
| 39 |
CVE-2026-2092
A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAM
|
| 39 |
CVE-2026-27689
Due to an uncontrolled resource consumption (Denial of Service) vulnerability, a
|
| 39 |
CVE-2026-27913
Improper input validation in Windows BitLocker allows an unauthorized attacker t
|
| 39 |
CVE-2024-1524
When the "Silent Just-In-Time Provisioning" feature is enabled for a federated i
|
| 39 |
CVE-2026-35650
OpenClaw before 2026.3.22 contains an environment variable override handling vul
|
| 39 |
CVE-2026-1668
The web interface on multiple Omada switches does not adequately validate certai
|
| 39 |
CVE-2026-34619
ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limi
|
| 39 |
CVE-2026-4208
The extension fails to properly reset the generated MFA code after successful au
|
| 39 |
CVE-2026-24031
Dovecot SQL based authentication can be bypassed when auth_username_chars is cle
|
| 39 |
CVE-2025-69377
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
|
| 39 |
CVE-2025-68862
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
|
| 39 |
CVE-2026-27938
WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.9.1, th
|
| 39 |
CVE-2026-26017
CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical
|
| 39 |
CVE-2026-33153
Tandoor Recipes is an application for managing recipes, planning meals, and buil
|
| 39 |
CVE-2025-15608
This vulnerability in AX53 v1 results from insufficient input sanitization in th
|
| 39 |
CVE-2026-23920
Host and event action script input is validated with a regex (set by the adminis
|
| 39 |
CVE-2026-4498
Execution with Unnecessary Privileges (CWE-250) in Kibana’s Fleet plugin debug r
|
| 39 |
CVE-2026-34041
## Summary
act unconditionally processes the deprecated `::set-env::` and `::ad
|
| 39 |
CVE-2026-40180
Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients
|
| 39 |
CVE-2026-35666
OpenClaw before 2026.3.22 contains an allowlist bypass vulnerability in system.r
|
| 39 |
CVE-2025-10685
Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH s
|
| 39 |
CVE-2026-33544
### Summary
All three OAuth service implementations (`GenericOAuthService`, `Gi
|
| 39 |
CVE-2026-27464
Metabase is an open-source data analytics platform. In versions prior to 0.57.13
|
| 39 |
CVE-2025-61879
In Infoblox NIOS through 9.0.7, a High-Privileged User Can Trigger an Arbitrary
|
| 39 |
CVE-2026-27706
Plane is an an open-source project management tool. Prior to version 1.2.2, a Fu
|
| 39 |
CVE-2026-24322
SAP Solution Tools Plug-In (ST-PI) contains a function module that does not perf
|
| 39 |
CVE-2026-32121
OpenEMR is a free and open source electronic health records and medical practice
|
| 39 |
CVE-2026-21670
A vulnerability allowing a low-privileged user to extract saved SSH credentials.
|
| 39 |
CVE-2025-9293
A vulnerability in the certificate validation logic may allow applications to ac
|
| 39 |
CVE-2026-29192
ZITADEL is an open source identity management platform. From version 4.0.0 to 4.
|
| 39 |
CVE-2026-32628
AnythingLLM is an application that turns pieces of content into context that any
|
| 39 |
CVE-2026-39843
Plane is an an open-source project management tool. From 0.28.0 to before 1.3.0,
|
| 39 |
CVE-2026-39361
OpenObserve is a cloud-native observability platform. In 0.70.3 and earlier, the
|
| 39 |
CVE-2026-33399
Wallos is an open-source, self-hostable personal subscription tracker. Prior to
|
| 39 |
CVE-2026-34163
FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's M
|
| 39 |
CVE-2026-35409
### Summary
A Server-Side Request Forgery (SSRF) protection bypass has been iden
|
| 39 |
CVE-2026-35187
## Vulnerability Details
**CWE-918**: Server-Side Request Forgery (SSRF)
The `
|
| 39 |
CVE-2026-21887
OpenCTI is an open source platform for managing cyber threat intelligence knowle
|
| 39 |
CVE-2026-33530
InvenTree is an Open Source Inventory Management System. Prior to version 1.2.6,
|
| 39 |
CVE-2026-34746
Payload is a free and open source headless content management system. Prior to v
|
| 39 |
CVE-2026-32123
OpenEMR is a free and open source electronic health records and medical practice
|
| 39 |
CVE-2026-31945
LibreChat is a ChatGPT clone with additional features. Versions 0.8.2-rc2 throug
|
| 39 |
CVE-2026-34936
### Summary
`passthrough()` and `apassthrough()` in `praisonai` accept a caller
|
| 39 |
CVE-2026-40150
PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, the web_crawl()
|
| 39 |
CVE-2026-30953
LinkAce is a self-hosted archive to collect website links. When a user creates a
|
| 39 |
CVE-2026-34056
OpenEMR is a free and open source electronic health records and medical practice
|
| 39 |
CVE-2026-29925
Invoice Ninja v5.12.46 and v5.12.48 is vulnerable to Server-Side Request Forgery
|
| 39 |
CVE-2026-31941
Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Ch
|
| 39 |
CVE-2026-33913
OpenEMR is a free and open source electronic health records and medical practice
|
| 39 |
CVE-2026-32131
ZITADEL is an open source identity management platform. Prior to 3.4.8 and 4.12.
|
| 39 |
CVE-2026-31801
zot is ancontainer image/artifact registry based on the Open Container Initiativ
|
| 39 |
CVE-2026-22558
An Authenticated NoSQL Injection vulnerability found in UniFi Network Applicatio
|
| 39 |
CVE-2026-31891
### Impact
This is a SQL Injection vulnerability in the MongoLite Aggregation O
|
| 39 |
CVE-2026-28468
OpenClaw versions 2026.1.29-beta.1 prior to 2026.2.14 contain a vulnerability in
|
| 39 |
CVE-2026-40188
goshs is a SimpleHTTPServer written in Go. From 1.0.7 to before 2.0.0-beta.4, th
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 738d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2306d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2119d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1733d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2236d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4984d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1204d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1006d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3761d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 908d |