Live Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-39780 | RT-AX55 | ASUS | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2026-20182 | Cisco Catalyst SD-WAN Controller, Cisco Catalyst SD-WAN Manager | Cisco | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
|
| CVE-2025-5777 | ADC, Gateway | NetScaler | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-55182 | react-server-dom-webpack, react-server-dom-turbopack, react-server-dom-parcel | Meta | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-41940 | cPanel, WP Squared, WHM | WebPros | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-3055 | ADC, Gateway | NetScaler | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-34197 | Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ | Apache Software Foundation | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-68645 | Zimbra Collaboration (ZCS) | Zimbra | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-0257 | Cloud NGFW, PAN-OS, Prisma Access | Palo Alto Networks | Confirmed | Active exploitation | — | 19 days ago | 19 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-58360 | geoserver | geoserver | Confirmed | Active exploitation | — | 19 days ago | 19 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-61882 | Oracle Concurrent Processing | Oracle Corporation | Confirmed | Active exploitation | — | 20 days ago | 20 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-35616 | FortiClientEMS | Fortinet | Confirmed | Active exploitation | — | 20 days ago | 20 days ago |
PoC
Nuclei
Scanner
|
| CVE-2020-7796 | Zimbra Collaboration Suite | Zimbra | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-6205 | DELMIA Apriso | Dassault Systèmes | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-25257 | FortiWeb | Fortinet | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-21643 | FortiClientEMS | Fortinet | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-34037 | E4200, E3200, E3000, E2500 v1/v2, E2100L v1, E2000, E1550, E1500 v1, E1200 v1, E1000 v1, E900 v1 | Linksys | High | Active exploitation | — | 21 days ago | 21 days ago |
—
|
| CVE-2026-8398 | DAEMON Tools Lite | AVB Disc Soft | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
—
|
| CVE-2026-45321 | arktype-adapter, eslint-plugin-router, eslint-plugin-start, history, nitro-v2-vite-plugin, react-router, react-router-devtools, react-router-ssr-query, react-start, react-start-client, react-start-rsc, react-start-server, router-cli, router-core, router-devtools, router-devtools-core, router-generator, router-plugin, router-ssr-query-core, router-utils, outer-vite-plugin, solid-router, solid-router-devtools, solid-router-ssr-query, solid-start, solid-start-client, solid-start-server, start-client-core, start-fn-stubs, start-plugin-core, start-server-core, start-static-server-functions, start-storage-context, valibot-adapter, virtual-file-routes, vue-router, vue-router-devtools, vue-router-ssr-query, vue-start, vue-start-client, vue-start-server, zod-adapter | @tanstack | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
PoC
|
| CVE-2026-48027 | nx-console | nrwl | Confirmed | Active exploitation | — | 21 days ago | 21 days ago |
—
|
| CVE-2025-5394 | Alone – Charity Multipurpose Non-profit WordPress Theme | Bearsthemes | High | Active exploitation | — | 11 months ago | 11 months ago |
PoC
Nuclei
Scanner
|
| CVE-2022-47945 | ThinkPHP Framework | ThinkPHP | High | Active exploitation | Yes | 12 months ago | 12 months ago |
PoC
Nuclei
Scanner
|
| CVE-2025-48828 | vBulletin | vBulletin | High | Active exploitation | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
Scanner
|
| CVE-2025-4428 | Endpoint Manager Mobile | Ivanti | Confirmed | Active exploitation | — | about 1 year ago | about 1 year ago |
Scanner
|
| CVE-2025-4427 | Endpoint Manager Mobile | Ivanti | Confirmed | Active exploitation | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
Scanner
|