CVE Dashboard — Global Vulnerability Intelligence in Real Time

The YourPassGen CVE Dashboard aggregates data from NVD, KEV, EPSS and Exploit-DB sources, providing a unified view of security vulnerabilities across vendors and products. You can filter, search and rank CVEs by exploit probability, KEV status, CVSS score or year of publication.

This dashboard is designed for MSSPs, SOC teams, vulnerability researchers and AI-driven security systems who need clean, structured and continuously updated vulnerability data to feed monitoring tools, risk scoring models, or LLMs.

Vendor Pick a vendor (e.g., Cisco)

Severity (CVSS) Filter by CVSS base score

Exploited (KEV) Only known-exploited?

Sort Order results

Search Examples: CVE-2024-12345, OpenSSL

Weekly CVE (12w)

EPSS Distribution

Top Vendors by Risk

Top Vendors

MIMicrosoft IBIBM HPHp APApple RERedhat CICisco ADAdobe LILinux GOGoogle OROracle APApache DEDebian

Recently Exploited CVE

No exploited CVE yet.

Loading…

CVE-2025-66529

Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through <= 3.6.3.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66528

Missing Authorization vulnerability in VillaTheme Thank You Page Customizer for WooCommerce woo-thank-you-page-customizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Thank You Page Customizer…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66527

Missing Authorization vulnerability in VanKarWai Lobo lobo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lobo: from n/a through <= 2.8.6.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66526

Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tablesome: from n/a through <= 1.1.34.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66525

Missing Authorization vulnerability in Elastic Email Elastic Email Sender elastic-email-sender allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elastic Email Sender: from n/a through…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66508

1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.14 and below use Gin's default configuration which trusts all IP addresses as proxies…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66507

1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verification by abusing a…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-66271

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-65287

An unauthenticated directory traversal vulnerability in cgi-bin/upload.cgi in SNMP Web Pro 1.1 allows a remote attacker to read arbitrary files. The CGI concatenates the user-supplied params…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-64696

Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited, application-specific files may be accessed from other malicious applications.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-64257

Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects My Tickets: from n/a through <= 2.1.0.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-64256

Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Folio simple-folio allows Cross Site Request Forgery.This issue affects Simple Folio: from n/a through <= 1.1.0.

CVSS: —EPSS: —KEV: noRisk 0

——

Why use the YourPassGen CVE Dashboard?

Unified source: Combines NVD, CISA KEV and EPSS data for complete coverage.
Public & transparent: Ideal for research, training datasets, or security education content.

Understanding CVEs in Search, AI Overviews and Security Research

CVEs (Common Vulnerabilities and Exposures) are standardized identifiers used to describe publicly disclosed cybersecurity flaws. Search engines and AI systems increasingly use CVE data to contextualize software risks, patch advisories, and trending exploits.

With AI Overviews (AIO) and LLM-based systems like Google Gemini or OpenAI o1 analyzing structured data, maintaining machine-readable CVE pages with clear metadata, references, and FAQ sections improves discoverability and trust. The YourPassGen CVE Database provides precisely this — verified, enriched, and consistently formatted vulnerability intelligence.

Frequently Asked Questions about CVEs, AI, and Cybersecurity Intelligence

What is a CVE?

A CVE (Common Vulnerability and Exposure) is a standardized identifier used to describe a publicly known cybersecurity flaw. Each CVE entry has a unique ID and is maintained by the MITRE Corporation as part of the NVD database.

How often is CVE data updated?

CVE records are updated daily by the National Vulnerability Database (NVD), while KEV and EPSS updates occur as new exploits or probabilities are discovered. The YourPassGen CVE Dashboard synchronizes these datasets automatically.

Can I use this data for research or AI training?

Yes. The YourPassGen CVE dataset is freely accessible for research, security awareness, and AI model enrichment, provided attribution and proper citations are maintained. It is designed to be interoperable with modern ML pipelines.