Total CVEs
16310
last 90 days
Avg Priority
36.5
of max 220
KEV
40
actively exploited
POC
3211
public exploits
Unpatched
4325
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
Priority Distribution
| Priority | CVE |
|---|---|
| 36 |
CVE-2026-34292
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware
|
| 36 |
CVE-2026-27043
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Phot
|
| 36 |
CVE-2026-35660
OpenClaw before 2026.3.23 contains an insufficient access control vulnerability
|
| 36 |
CVE-2026-35653
OpenClaw before 2026.3.24 contains an incorrect authorization vulnerability in t
|
| 36 |
CVE-2026-29782
## Description
The `oauth2.php` file in OpenSTAManager is an **unauthenticated*
|
| 36 |
CVE-2026-26930
SmarterTools SmarterMail before 9526 allows XSS via MAPI requests.
|
| 36 |
CVE-2026-35536
In Tornado before 6.5.5, cookie attribute injection could occur because the doma
|
| 36 |
CVE-2025-58383
A vulnerability in Brocade Fabric OS versions before 9.2.1c2 could allow an admi
|
| 36 |
CVE-2026-31834
Umbraco is an ASP.NET CMS. From 15.3.1 to before 16.5.1 and 17.2.2, A privilege
|
| 36 |
CVE-2026-28674
xiaoheiFS is a self-hosted financial and operational system for cloud service bu
|
| 36 |
CVE-2026-41170
Squidex is an open source headless content management system and content managem
|
| 36 |
CVE-2026-4113
An observable response discrepancy vulnerability in the SonicWall SMA1000 series
|
| 36 |
CVE-2025-40897
An access control vulnerability was discovered in the Threat Intelligence functi
|
| 36 |
CVE-2025-69299
Server-Side Request Forgery (SSRF) vulnerability in Laborator Oxygen oxygen allo
|
| 36 |
CVE-2025-36184
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.
|
| 36 |
CVE-2026-35037
## Summary
The `GET /api/website/title` endpoint accepts an arbitrary URL via t
|
| 36 |
CVE-2025-59473
SQL Injection vulnerability in the Structure for Admin authenticated user
|
| 36 |
CVE-2026-34512
OpenClaw before 2026.3.25 contains an improper access control vulnerability in t
|
| 36 |
CVE-2026-4116
Improper handling of Unicode encoding in SonicWall SMA1000 series appliances all
|
| 36 |
CVE-2026-25951
FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior
|
| 36 |
CVE-2026-1320
The Secure Copy Content Protection and Content Locking plugin for WordPress is v
|
| 36 |
CVE-2026-1844
The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Sc
|
| 36 |
CVE-2026-26325
OpenClaw is a personal AI assistant. Prior to version 2026.2.14, a mismatch betw
|
| 36 |
CVE-2025-61848
An improper neutralization of special elements used in an sql command ('sql inje
|
| 36 |
CVE-2026-0807
The Frontis Blocks plugin for WordPress is vulnerable to Server-Side Request For
|
| 36 |
CVE-2026-2279
The myLinksDump plugin for WordPress is vulnerable to SQL Injection via the 'sor
|
| 36 |
CVE-2026-39971
### Summary
Serendipity inserts `$_SERVER['HTTP_HOST']` directly into the `Messa
|
| 36 |
CVE-2026-32414
Improper Control of Generation of Code ('Code Injection') vulnerability in ILLID
|
| 36 |
CVE-2026-39343
ChurchCRM is an open-source church management system. Prior to 7.1.0, a SQL inje
|
| 36 |
CVE-2026-22623
Due to insufficient input parameter validation on the interface, authenticated u
|
| 36 |
CVE-2026-29047
GLPI is a free asset and IT management software package. From 10.0.0 to before 1
|
| 36 |
CVE-2026-33906
## Summary
The NetworkManager role was granted backup and restore permission. T
|
| 36 |
CVE-2026-33504
## Description
Following Admin APIs in Ory Hydra are vulnerable to SQL injectio
|
| 36 |
CVE-2026-39325
ChurchCRM is an open-source church management system. Prior to 7.1.0, an SQL inj
|
| 36 |
CVE-2026-33914
OpenEMR is a free and open source electronic health records and medical practice
|
| 36 |
CVE-2026-40114
PraisonAI is a multi-agent teams system. Prior to 4.5.128, the /api/v1/runs endp
|
| 36 |
CVE-2026-35476
InvenTree is an Open Source Inventory Management System. Prior to 1.2.7 and 1.3.
|
| 36 |
CVE-2026-34155
RAUC controls the update process on embedded Linux systems. Prior to version 1.1
|
| 36 |
CVE-2026-27885
Piwigo is an open source photo gallery application for the web. Prior to version
|
| 36 |
CVE-2026-33910
OpenEMR is a free and open source electronic health records and medical practice
|
| 36 |
CVE-2026-27834
Piwigo is an open source photo gallery application for the web. Prior to version
|
| 36 |
CVE-2026-0234
An improper verification of cryptographic signature vulnerability exists in Cort
|
| 36 |
CVE-2026-22480
Deserialization of Untrusted Data vulnerability in WebToffee Product Feed for Wo
|
| 36 |
CVE-2026-1065
The Form Maker by 10Web plugin for WordPress is vulnerable to Stored Cross-Site
|
| 36 |
CVE-2026-40315
PraisonAI is a multi-agent teams system. Prior to 4.5.133, there is an SQL ident
|
| 36 |
CVE-2025-55988
An issue in the component /Controllers/RestController.php of DreamFactory Core v
|
| 36 |
CVE-2026-30229
Parse Server is an open source backend that can be deployed to any infrastructur
|
| 36 |
CVE-2026-20416
In pcie, there is a possible out of bounds write due to a missing bounds check.
|
| 36 |
CVE-2026-23776
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Featu
|
| 36 |
CVE-2026-33503
## Description
The **ListCourierMessages** Admin API in Ory Kratos is vulnerabl
|
| 36 |
CVE-2026-1294
The All In One Image Viewer Block plugin for WordPress is vulnerable to Server-S
|
| 36 |
CVE-2026-21743
A missing authorization vulnerability in Fortinet FortiAuthenticator 6.6.0 throu
|
| 36 |
CVE-2026-3876
The Prismatic plugin for WordPress is vulnerable to Stored Cross-Site Scripting
|
| 36 |
CVE-2026-0845
The WCFM - Frontend Manager for WooCommerce along with Bookings Subscription Lis
|
| 36 |
CVE-2026-0709
Some Hikvision Wireless Access Points are vulnerable to authenticated command ex
|
| 36 |
CVE-2025-47383
Weak configuration may lead to cryptographic issue when a VoWiFi call is trigger
|
| 36 |
CVE-2026-3548
Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsi
|
| 36 |
CVE-2026-25754
AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.
|
| 36 |
CVE-2026-6361
Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.1
|
| 36 |
CVE-2026-33505
## Description
The **GetRelationships API** in Ory Keto is vulnerable to SQL in
|
| 36 |
CVE-2026-37344
SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL
|
| 36 |
CVE-2026-1777
The Amazon SageMaker Python SDK before v3.2.0 and v2.256.0 includes the ModelBui
|
| 36 |
CVE-2026-37342
SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL
|
| 36 |
CVE-2026-37341
SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL
|
| 36 |
CVE-2026-37343
SourceCodester Vehicle Parking Area Management System v1.0 is vulnerable to SQL
|
| 36 |
CVE-2026-5845
An improper authorization vulnerability in scoped user-to-server (ghu_) token au
|
| 36 |
CVE-2023-31313
An unintended proxy or intermediary in the AMD power management firmware (PMFW)
|
| 36 |
CVE-2025-14610
The TableMaster for Elementor plugin for WordPress is vulnerable to Server-Side
|
| 36 |
CVE-2026-32263
The fix for GHSA-7jx7-3846-m7w7 (commit 395c64f0b80b507be1c862a2ec942eaacb353748
|
| 36 |
CVE-2026-32264
The fix for https://github.com/advisories/GHSA-7jx7-3846-m7w7 (commit https://gi
|
| 36 |
CVE-2026-3873
Use of Hard-coded Credentials vulnerability in Avnatra Avantra allows Accessing
|
| 36 |
CVE-2026-20062
A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance
|
| 36 |
CVE-2026-33392
In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE
|
| 36 |
CVE-2026-41641
## Summary
The `checkSQL()` validation function that blocks dangerous SQL keywo
|
| 36 |
CVE-2026-26943
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release ver
|
| 36 |
CVE-2026-24506
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release ver
|
| 36 |
CVE-2026-24504
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release ver
|
| 36 |
CVE-2026-24505
Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain an improper inpu
|
| 36 |
CVE-2026-34790
Endian Firewall version 3.3.25 and prior allow authenticated users to delete arb
|
| 36 |
CVE-2026-4622
OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a
|
| 36 |
CVE-2026-4620
OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a
|
| 36 |
CVE-2026-20999
Authentication bypass by replay in Smart Switch prior to version 3.7.69.15 allow
|
| 36 |
CVE-2026-20998
Improper authentication in Smart Switch prior to version 3.7.69.15 allows remote
|
| 36 |
CVE-2026-33704
Chamilo LMS is a learning management system. Prior to 1.11.38, any authenticated
|
| 36 |
CVE-2026-20996
Use of a broken or risky cryptographic algorithm in Smart Switch prior to versio
|
| 36 |
CVE-2025-36247
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 through
|
| 36 |
CVE-2026-31971
HTSlib is a library for reading and writing bioinformatics file formats. CRAM is
|
| 36 |
CVE-2026-32063
OpenClaw version 2026.2.19-2 prior to 2026.2.21 contains a command injection vul
|
| 36 |
CVE-2026-27953
### Summary
A Pydantic validation bypass in `ormar`'s model constructor allows
|
| 36 |
CVE-2026-20204
In Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splu
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 741d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2309d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2122d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1736d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2239d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4986d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1207d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1009d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3764d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 911d |