CVE Dashboard — Global Vulnerability Intelligence in Real Time

The YourPassGen CVE Dashboard aggregates data from NVD, KEV, EPSS and Exploit-DB sources, providing a unified view of security vulnerabilities across vendors and products. You can filter, search and rank CVEs by exploit probability, KEV status, CVSS score or year of publication.

This dashboard is designed for MSSPs, SOC teams, vulnerability researchers and AI-driven security systems who need clean, structured and continuously updated vulnerability data to feed monitoring tools, risk scoring models, or LLMs.

Vendor Pick a vendor (e.g., Cisco)

Severity (CVSS) Filter by CVSS base score

Exploited (KEV) Only known-exploited?

Sort Order results

Search Examples: CVE-2024-12345, OpenSSL

Weekly CVE (12w)

EPSS Distribution

Top Vendors by Risk

Top Vendors

MIMicrosoft IBIBM HPHp APApple RERedhat CICisco ADAdobe LILinux GOGoogle OROracle APApache DEDebian

Recently Exploited CVE

No exploited CVE yet.

Loading…

CVE-2025-68017

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68016

Missing Authorization vulnerability in Onepay Sri Lanka onepay Payment Gateway For WooCommerce onepay-payment-gateway-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects onepay Payment Gateway…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68015

Improper Control of Generation of Code ('Code Injection') vulnerability in Vollstart Event Tickets with Ticket Scanner event-tickets-with-ticket-scanner allows Code Injection.This issue affects Event Tickets with Ticket…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68013

Missing Authorization vulnerability in cardpaysolutions Payment Gateway Authorize.Net CIM for WooCommerce authnet-cim-for-woo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Payment Gateway Authorize.Net CIM…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68012

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dmytro Shteflyuk CodeColorer codecolorer allows Stored XSS.This issue affects CodeColorer: from n/a through <=…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68011

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GLS GLS Shipping for WooCommerce gls-shipping-for-woocommerce allows Reflected XSS.This issue affects GLS Shipping for…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68010

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in netgsm Netgsm netgsm allows Reflected XSS.This issue affects Netgsm: from n/a through <= 2.9.63.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68009

Missing Authorization vulnerability in Codeless Slider Templates slider-templates allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Slider Templates: from n/a through <= 1.0.3.

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68008

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mndpsingh287 WP Mail wp-mail allows Reflected XSS.This issue affects WP Mail: from n/a through…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68007

Missing Authorization vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Event Espresso 4 Decaf: from…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68006

Insertion of Sensitive Information Into Sent Data vulnerability in Deetronix Booking Ultra Pro booking-ultra-pro allows Retrieve Embedded Sensitive Data.This issue affects Booking Ultra Pro: from n/a…

CVSS: —EPSS: —KEV: noRisk 0

——

CVE-2025-68004

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kapil Chugh My Post Order my-posts-order allows Reflected XSS.This issue affects My Post Order:…

CVSS: —EPSS: —KEV: noRisk 0

——

Why use the YourPassGen CVE Dashboard?

Unified source: Combines NVD, CISA KEV and EPSS data for complete coverage.
Public & transparent: Ideal for research, training datasets, or security education content.

Understanding CVEs in Search, AI Overviews and Security Research

CVEs (Common Vulnerabilities and Exposures) are standardized identifiers used to describe publicly disclosed cybersecurity flaws. Search engines and AI systems increasingly use CVE data to contextualize software risks, patch advisories, and trending exploits.

With AI Overviews (AIO) and LLM-based systems like Google Gemini or OpenAI o1 analyzing structured data, maintaining machine-readable CVE pages with clear metadata, references, and FAQ sections improves discoverability and trust. The YourPassGen CVE Database provides precisely this — verified, enriched, and consistently formatted vulnerability intelligence.

Frequently Asked Questions about CVEs, AI, and Cybersecurity Intelligence

What is a CVE?

A CVE (Common Vulnerability and Exposure) is a standardized identifier used to describe a publicly known cybersecurity flaw. Each CVE entry has a unique ID and is maintained by the MITRE Corporation as part of the NVD database.

How often is CVE data updated?

CVE records are updated daily by the National Vulnerability Database (NVD), while KEV and EPSS updates occur as new exploits or probabilities are discovered. The YourPassGen CVE Dashboard synchronizes these datasets automatically.

Can I use this data for research or AI training?

Yes. The YourPassGen CVE dataset is freely accessible for research, security awareness, and AI model enrichment, provided attribution and proper citations are maintained. It is designed to be interoperable with modern ML pipelines.