Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,673
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
1,026
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
54
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,825+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | Added | Artifacts |
|---|---|---|---|---|---|---|---|
| CVE-2026-8037 | LoadMaster, ECS Connections Manager, Object Scale Connection Manager, MOVEit WAF | Progress Software | Confirmed | Active | Yes | 18 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-52813 | gogs | gogs | Confirmed | Active | Yes | 19 days ago |
PoC
VPatch
|
| CVE-2026-46817 | Oracle Payments | Oracle Corporation | Confirmed | Active | Yes | 20 days ago |
PoC
VPatch
|
| CVE-2026-48558 | SimpleHelp | SimpleHelp | Confirmed | Active | — | 20 days ago |
PoC
|
| CVE-2026-8054 | dotCMS Core | dotCMS | Confirmed | Active | Yes | 22 days ago |
PoC
Nuclei
VPatch
|
| CVE-2023-6567 | LearnPress – WordPress LMS Plugin | thimpress | Confirmed | Active | Yes | 22 days ago |
PoC
Nuclei
|
| CVE-2026-12569 | Windchill PDMLink, FlexPLM | PTC | Confirmed | Active | — | 24 days ago |
—
|
| CVE-2026-20230 | Cisco Unified Communications Manager | Cisco | Confirmed | Active | Yes | 25 days ago |
PoC
VPatch
|
| CVE-2025-67038 | EDS5000 | Lantronix | Confirmed | Active | — | 26 days ago |
—
|
| CVE-2021-30128 | Apache OFBiz | Apache Software Foundation | Confirmed | Active | Yes | 27 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-4020 | Gravity SMTP | RocketGenius | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2025-27222 | TRUfusion Enterprise | Rocket Software | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2023-31059 | Repetier Server | Repetier | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2017-15363 | Restler | Luracast | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2017-9833 | Boa Web Server | Boa | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2024-32738 | CyberPower PowerPanel Enterprise | CyberPower | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2022-25485 | CuppaCMS | CuppaCMS | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2024-27497 | E2000 | Linksys | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2024-31750 | datacube3 | f-logic | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2020-24949 | PHP-Fusion | PHP-Fusion | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2022-25486 | CuppaCMS | CuppaCMS | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-48907 | Joomla Content Editor (JCE) extension for Joomla | joomlacontenteditor.net | Confirmed | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-39813 | FortiSandbox, FortiSandbox Cloud | Fortinet | Confirmed | Active | Yes | about 1 month ago |
PoC
VPatch
|
| CVE-2023-39796 | WBCE CMS | WBCE | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-20262 | Cisco Catalyst SD-WAN Manager | Cisco | Confirmed | Active | — | about 1 month ago |
PoC
|