Live Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-45309 | onedev | theonedev | Medium | Active exploitation | — | 13 days ago | 13 days ago |
PoC
Nuclei
Scanner
|
| CVE-2022-24716 | icingaweb2 | Icinga | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2024-6671 | WhatsUp Gold | Progress Software Corporation | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2020-13379 | Grafana | Grafana | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2023-22620 | UTM | SecurePoint | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-67303 | ComfyUI-Manager | Comfy-Org | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2023-6875 | POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications | wpexpertsio | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-48827 | vBulletin | vBulletin | Medium | Active exploitation | — | 14 days ago | 14 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-8206 | Kirki – Freeform Page Builder, Website Builder & Customizer | themeum | Medium | Active exploitation | — | 15 days ago | 15 days ago |
PoC
|
| CVE-2022-4059 | Cryptocurrency Widgets Pack | Unknown | Medium | Active exploitation | — | 15 days ago | 15 days ago |
PoC
Nuclei
Scanner
|
| CVE-2023-6909 | mlflow/mlflow | mlflow | Medium | Active exploitation | — | 15 days ago | 15 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-9316 | N-central | N-able | Medium | Active exploitation | — | 15 days ago | 15 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-41176 | rclone | rclone | Medium | Active exploitation | — | 15 days ago | 15 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-41089 | Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2025, Windows Server 2025 (Server Core installation) | Microsoft | High | Active exploitation | — | 15 days ago | 15 days ago |
PoC
|
| CVE-2026-34234 | panel | Ctrlpanel-gg | Medium | Active exploitation | — | 16 days ago | 16 days ago |
PoC
|
| CVE-2026-44742 | Postorius | Postorius project | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2026-20118 | Cisco IOS XR Software | Cisco | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2026-20051 | Cisco NX-OS Software | Cisco | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2026-25815 | FortiOS | Fortinet | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2026-25137 | nixpkgs | NixOS | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2025-70974 | Fastjson | Alibaba | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2026-0625 | DSL-2640B, DSL-2740R, DSL-2780B, DSL-526B, DSL-2640T, DSL-500, DSL-500G, DSL-502G, DIR-905L, DIR-600, DIR-608, DIR-610, DIR-611, DIR-615, DNS-320, DNS-325, DNS-345 | D-Link | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2023-7305 | SmartBI | Guangzhou Smart Software Co., Ltd. | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2025-9491 | Windows | Microsoft | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|
| CVE-2024-13991 | Cloud Video Platform | Huijietong | Medium | Active exploitation | — | 16 days ago | 16 days ago |
—
|