Top Exploited CVEs This Week
This report ranks the ten most actively discussed and exploited vulnerabilities from the past week, using signals from security intelligence feeds, community channels, and exploitation monitoring.
- CVE-2025-43520MediumCVSS: 5.58 postsEPSS 47.5%
A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8....
View full CVE details →
- CVE-2026-1306CriticalCVSS: 9.86 posts1 repoEPSS 13.9%
The midi-Synth plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type and file extension validation in the 'export' AJAX action in all versions up to, and including, 1.1...
View full CVE details →
- CVE-2026-1670CriticalCVSS: 9.86 posts
The affected products are vulnerable to an unauthenticated API endpoint exposure, which may allow an attacker to remotely change the "forgot password" recovery email address.
View full CVE details →
- CVE-2026-2439CriticalCVSS: 9.86 postsEPSS 1.8%
Concierge::Sessions versions from 0.8.1 before 0.8.5 for Perl generate insecure session ids. The generate_session_id function in Concierge::Sessions::Base defaults to using the uuidgen command to gene...
View full CVE details →
- CVE-2026-22719HighCVSS: 8.16 postsEPSS 735.3%
VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMw...
View full CVE details →
- CVE-2026-3055CriticalCVSS: 9.86 postsNuclei5 reposEPSS 4430.1%
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread
View full CVE details →
- CVE-2025-59528CriticalCVSS: 10.06 postsNuclei1 repoEPSS 8239.0%
Flowise is a drag & drop user interface to build a customized large language model flow. In version 3.0.5, Flowise is vulnerable to remote code execution. The CustomMCP node allows users to input conf...
View full CVE details →
- CVE-2026-4149CriticalCVSS: 10.06 postsEPSS 127.2%
Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos Era 300. Au...
View full CVE details →
- CVE-2026-34621CriticalCVSS: 9.66 postsEPSS 23.5%
Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability that could res...
View full CVE details →
- CVE-2026-33707CriticalCVSS: 9.46 postsEPSS 6.5%
Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, the default password reset mechanism generates tokens using sha1($email) with no random component, no expiration, and no r...
View full CVE details →
Methodology
Vulnerabilities are ranked by social post volume — the number of security community discussions and mentions associated with each CVE across our intelligence feeds.
The data is generated from the LeakyCreds vulnerability intelligence dataset and is updated regularly to reflect the latest trending and high-signal CVEs.
Check Your Domain for Exposed Credentials
Use our free scanner to check if credentials associated with your domain have been exposed in recent leaks or breaches.
Scan Your DomainLast updated: April 14, 2026 at 06:14 AM