Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-3844 | Breeze Cache | cloudways | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2021-4374 | WordPress Automatic Plugin | ValvePress | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2026-33626 | lmdeploy | InternLM | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2019-8451 | Jira | Atlassian | Medium | Exploited | — | about 2 months ago | about 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2026-25187 | Windows 10 Version 1607, Windows 10 Version 1809, Windows 10 Version 21H2, Windows 10 Version 22H2, Windows 11 version 22H3, Windows 11 Version 23H2, Windows 11 Version 24H2, Windows 11 Version 25H2, Windows 11 version 26H1, Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2025, Windows Server 2025 (Server Core installation) | Microsoft | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
—
|
| CVE-2026-3564 | ScreenConnect | ConnectWise | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
—
|
| CVE-2026-26127 | .NET 10.0, .NET 9.0, Microsoft.Bcl.Memory | Microsoft | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
—
|
| CVE-2026-21262 | Microsoft SQL Server 2016 Service Pack 3 (GDR), Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack, Microsoft SQL Server 2017 (CU 31), Microsoft SQL Server 2017 (GDR), Microsoft SQL Server 2019 (CU 32), Microsoft SQL Server 2019 (GDR), Microsoft SQL Server 2022 (GDR), Microsoft SQL Server 2022 for x64-based Systems (CU 23), Microsoft SQL Server 2025 (CU 2), Microsoft SQL Server 2025 for x64-based Systems (GDR) | Microsoft | Medium | Active exploitation | — | about 2 months ago | about 2 months ago |
—
|
| CVE-2018-6605 | Zh BaiduMap | Joomla | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2025-66954 | Link Station | Buffalo | Medium | Active exploitation | — | 2 months ago | 2 months ago |
—
|
| CVE-2024-32114 | Apache ActiveMQ | Apache Software Foundation | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2025-0520 | ShowDoc | ShowDoc | Medium | Active exploitation | — | 2 months ago | 2 months ago |
—
|
| CVE-2026-33032 | nginx-ui | 0xJacky | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2018-7490 | uWSGI | uWSGI | Medium | Exploited | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2023-22809 | Sudo | Sudo | Medium | Exploited | — | 2 months ago | 2 months ago |
PoC
Scanner
|
| CVE-2024-4367 | Firefox, Firefox ESR, Thunderbird | Mozilla | Medium | Exploited | — | 2 months ago | 2 months ago |
PoC
|
| CVE-2018-15473 | OpenSSH | OpenSSH | Medium | Exploited | — | 2 months ago | 2 months ago |
PoC
|
| CVE-2022-0778 | OpenSSL | OpenSSL | Medium | Exploited | — | 2 months ago | 2 months ago |
PoC
|
| CVE-2025-61624 | FortiOS, FortiProxy, FortiSwitchManager, FortiPAM | Fortinet | Medium | Active exploitation | — | 2 months ago | 2 months ago |
—
|
| CVE-2021-3223 | Node-RED-Dashboard | Node-RED | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2020-20300 | WeiPHP 5.0 | WeiPHP | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2025-59528 | Flowise | FlowiseAI | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2026-21891 | ZimaOS | IceWhaleTech | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|
| CVE-2026-3965 | qinglong | whyour | Medium | Active exploitation | — | 2 months ago | 2 months ago |
—
|
| CVE-2026-0740 | Ninja Forms - File Uploads | SaturdayDrive | Medium | Active exploitation | — | 2 months ago | 2 months ago |
PoC
Nuclei
Scanner
|