Live Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-39813 | FortiSandbox, FortiSandbox Cloud | Fortinet | High | Active exploitation | Yes | 2 days ago | 2 days ago |
PoC
|
| CVE-2026-20253 | Splunk Enterprise | Splunk | High | Active exploitation | Yes | 3 days ago | 3 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-39808 | FortiSandbox, FortiSandbox PaaS | Fortinet | High | Active exploitation | Yes | 5 days ago | 5 days ago |
PoC
Nuclei
Scanner
|
| CVE-2021-31805 | Apache Struts | Apache Software Foundation | High | Active exploitation | Yes | 6 days ago | 6 days ago |
PoC
Nuclei
Scanner
|
| CVE-2020-6286 | SAP NetWeaver AS JAVA (LM Configuration Wizard) | SAP SE | High | Active exploitation | Yes | 6 days ago | 6 days ago |
PoC
|
| CVE-2026-35273 | PeopleSoft Enterprise PeopleTools | Oracle Corporation | Confirmed | Active exploitation | Yes | 6 days ago | 6 days ago |
PoC
|
| CVE-2026-10520 | Sentry | ivanti | Confirmed | Active exploitation | Yes | 7 days ago | 7 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-34910 | UniFi OS Server, UDM, UDM-Pro, UDM-SE, UDM-Pro-Max, UDM-Beast, EFG, UDW, UDR, UDR7, UDR-5G, Express 7, UNVR, UNVR-Pro, UNVR-Instant, UNVR-G2, UNVR-G2-Pro, ENVR, ENVR-Core, UNAS-2, UNAS-4, UNAS-Pro, UNAS-Pro-4, UNAS-Pro-8, UCKP, UCK, UCK-Enterprise, UCG-Ultra, UCG-Max, UCG-Fiber, UCG-Industrial | Ubiquiti Inc | High | Active exploitation | Yes | 9 days ago | 9 days ago |
PoC
Nuclei
Scanner
|
| CVE-2026-9082 | Drupal core | Drupal | Confirmed | Active exploitation | Yes | 16 days ago | 16 days ago |
PoC
Nuclei
Scanner
|
| CVE-2022-47945 | ThinkPHP Framework | ThinkPHP | High | Active exploitation | Yes | 12 months ago | 12 months ago |
PoC
Nuclei
Scanner
|
| CVE-2017-12637 | NetWeaver Application Server Java | SAP | Confirmed | Active exploitation | Yes | about 1 year ago | about 1 year ago |
PoC
Nuclei
Scanner
|
| CVE-2017-18368 | P660HN-T1A v1 TCLinux Fw | ZyXEL | Confirmed | Active exploitation | Yes | almost 3 years ago | almost 3 years ago |
PoC
Scanner
|
| CVE-2023-1389 | TP-Link Archer AX21 (AX1800) | TP-Link | Confirmed | Active exploitation | Yes | about 3 years ago | about 3 years ago |
PoC
Nuclei
Scanner
|
| CVE-2018-10562 | GPON home routers | Dasan | Confirmed | Active exploitation | Yes | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2020-14882 | WebLogic Server | Oracle Corporation | Confirmed | Active exploitation | Yes | over 4 years ago | over 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2020-14883 | WebLogic Server | Oracle Corporation | Confirmed | Active exploitation | Yes | over 4 years ago | over 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2020-6287 | SAP NetWeaver AS JAVA (LM Configuration Wizard) | SAP SE | Confirmed | Active exploitation | Yes | over 4 years ago | over 4 years ago |
PoC
Nuclei
Scanner
|
Displaying all 17 vulnerabilities