<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/feed</id>
  <title>KEVIntel - Known Exploited Vulnerabilities Catalog</title>
  <updated>2026-07-02T06:12:47.583282+00:00</updated>
  <author>
    <name>KEVIntel</name>
    <email>info@gcve.eu</email>
  </author>
  <link href="https://db.gcve.eu/known-exploited-vulnerabilities-catalog" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>KEV catalog conforming to GCVE BCP-07. Contains the most recent 20 entries.</subtitle>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/697222f6-a544-4ed0-ba97-40ca6d2895fc</id>
    <title>CVE-2026-45659 - Confirmed Exploitation</title>
    <updated>2026-07-01T20:00:20.076719+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-45659&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-07-01 19:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-07-01&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-07-01&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Microsoft SharePoint Remote Code Execution Vulnerability | Affected: Microsoft / Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | CVSS: 8.8 (HIGH) | EPSS: 0.02781 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-45659"/>
    <published>2026-07-01T19:00:06+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/8c6a3467-34fd-4b6e-894e-d38f28eba85a</id>
    <title>CVE-2026-8037 - Confirmed Exploitation</title>
    <updated>2026-07-01T15:00:40.046067+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-8037&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-07-01 14:51 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-07-01&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-07-01&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: OS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager &amp;amp; MOVEit WAF | Affected: Progress Software / LoadMaster, ECS Connections Manager, Object Scale Connection Manager, MOVEit WAF | CVSS: 9.6 (CRITICAL) | EPSS: 0.0819 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-8037"/>
    <published>2026-07-01T14:51:57+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/d56dc37d-6592-441a-961f-e40aee59b7ee</id>
    <title>CVE-2026-52813 - Confirmed Exploitation</title>
    <updated>2026-06-30T17:00:16.849468+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-52813&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-30 16:02 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-30&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-30&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Gogs: Path Traversal in organization name results in RCE through Git hooks | Affected: gogs / gogs | CVSS: 10.0 (CRITICAL) | EPSS: 0.01107 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-52813"/>
    <published>2026-06-30T16:02:32+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/fa2bfd2f-33ee-42a0-ba8e-46e04c2c7ca6</id>
    <title>CVE-2026-46817 - Confirmed Exploitation</title>
    <updated>2026-06-29T16:00:26.604680+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-46817&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-29 15:45 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-29&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-29&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission).  Supported versions that are affected are... | Affected: Oracle Corporation / Oracle Payments | CVSS: 9.8 (CRITICAL) | EPSS: 0.00418 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-46817"/>
    <published>2026-06-29T15:45:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/885e6fd4-e620-46f3-85eb-794dd7c822e6</id>
    <title>CVE-2026-48558 - Confirmed Exploitation</title>
    <updated>2026-06-29T15:00:33.392585+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-48558&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-29 14:20 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-29&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-29&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: SimpleHelp Authentication Bypass via Missing OIDC JWT Signature Verification | Affected: SimpleHelp / SimpleHelp | CVSS: 9.5 (CRITICAL) | EPSS: 0.00721 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-48558"/>
    <published>2026-06-29T14:20:22+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/76cd7564-c28a-45e1-9c61-de0ad80fd2f5</id>
    <title>CVE-2026-8054 - Confirmed Exploitation</title>
    <updated>2026-06-27T15:00:21.767696+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-8054&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-27 14:36 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-27&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-27&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Unauthenticated SQL Injection in dotCMS Publish Audit API | Affected: dotCMS / dotCMS Core | CVSS: 10.0 (CRITICAL) | EPSS: 0.01584 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-8054"/>
    <published>2026-06-27T14:36:50+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/1004b842-5eb5-4b13-95b4-1e46330b29bb</id>
    <title>CVE-2023-6567 - Confirmed Exploitation</title>
    <updated>2026-06-27T15:00:21.863394+00:00</updated>
    <content>&lt;h3&gt;CVE-2023-6567&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-27 14:36 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-27&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-27&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: The LearnPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order_by’ parameter in all versions up to, and including,... | Affected: thimpress / LearnPress – WordPress LMS Plugin | CVSS: 9.8 (CRITICAL) | EPSS: 0.51394 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2023-6567"/>
    <published>2026-06-27T14:36:38+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/1897383c-d052-42c0-8d39-9cd023b8b6a3</id>
    <title>CVE-2026-12569 - Confirmed Exploitation</title>
    <updated>2026-06-25T20:00:16.811203+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-12569&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-25 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-25&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-25&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Remote Code Execution (RCE) vulnerability in Windchill PDMlink | Affected: PTC / Windchill PDMLink, FlexPLM | CVSS: 9.3 (CRITICAL) | EPSS: 0.00499 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-12569"/>
    <published>2026-06-25T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/52ee6f16-bdc2-4950-ad34-a2d8c19aafbd</id>
    <title>CVE-2026-20230 - Confirmed Exploitation</title>
    <updated>2026-06-23T23:00:21.171298+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-20230&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-23 22:20 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-23&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-23&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified... | Affected: Cisco / Cisco Unified Communications Manager | CVSS: 8.6 (HIGH) | EPSS: 0.20442 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-20230"/>
    <published>2026-06-23T22:20:36+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/652ed326-7713-416f-bf90-c92d1145572f</id>
    <title>CVE-2025-67038 - Confirmed Exploitation</title>
    <updated>2026-06-23T19:00:19.290787+00:00</updated>
    <content>&lt;h3&gt;CVE-2025-67038&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-23 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-23&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-23&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write logs when user&amp;#39;s authantication... | Affected: Lantronix / EDS5000 | EPSS: 0.00469 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2025-67038"/>
    <published>2026-06-23T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/cbae0eae-766c-43d7-bd5f-5d723d5ef7d5</id>
    <title>CVE-2026-4020 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.260518+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-4020&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-17 10:28 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-17&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-17&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Gravity SMTP &amp;lt;= 2.1.4 - Unauthenticated Sensitive Information Exposure via REST API | Affected: RocketGenius / Gravity SMTP | CVSS: 7.5 (HIGH) | EPSS: 0.0298 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-4020"/>
    <published>2026-06-17T10:28:34+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/3b350b79-811d-4e07-a651-6771def715f5</id>
    <title>CVE-2026-48907 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.334512+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-48907&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-16 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-16&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-16&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla &amp;lt; 2.9.99.5 | Affected: joomlacontenteditor.net / Joomla Content Editor (JCE) extension for Joomla | CVSS: 10.0 (CRITICAL) | EPSS: 0.06854 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-48907"/>
    <published>2026-06-16T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/6b1d1a8e-5f37-45a9-85d1-b876feb512c4</id>
    <title>CVE-2026-39813 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.409364+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-39813&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 12:48 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: A path traversal: &amp;#39;../filedir&amp;#39; vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to... | Affected: Fortinet / FortiSandbox, FortiSandbox Cloud | CVSS: 9.1 (CRITICAL) | EPSS: 0.18703 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-39813"/>
    <published>2026-06-15T12:48:52+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/ded4285b-0f26-4008-abc1-7a77523a9c25</id>
    <title>CVE-2026-53435 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.476721+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-53435&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 09:02 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserialize arbitrary types defined in Jenkins... | Affected: Jenkins Project / Jenkins | CVSS: 8.8 (HIGH) | EPSS: 0.00368 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-53435"/>
    <published>2026-06-15T09:02:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/3f9ef71a-5889-4be3-8b58-82875f9c614f</id>
    <title>CVE-2026-20253 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.542648+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-20253&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 05:15 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise | Affected: Splunk / Splunk Enterprise | CVSS: 9.8 (CRITICAL) | EPSS: 0.01731 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-20253"/>
    <published>2026-06-15T05:15:25+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/31cd8fcc-8b44-4807-857f-014211b10d4a</id>
    <title>CVE-2026-20262 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:01.132510+00:00</updated>
    <content>&lt;h3&gt;CVE-2026-20262&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Cisco Catalyst SD-WAN Manager Arbitrary File Write Vulnerability | Affected: Cisco / Cisco Catalyst SD-WAN Manager | CVSS: 6.5 (MEDIUM) | EPSS: 0.01145 | Used in malware: unknown | Not yet in CISA KEV: False&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2026-20262"/>
    <published>2026-06-15T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/c67b158f-1ebf-43c9-b3e8-5a1047ea95c3</id>
    <title>CVE-2020-24949 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:01.074946+00:00</updated>
    <content>&lt;h3&gt;CVE-2020-24949&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Privilege escalation in PHP-Fusion 9.03.50 downloads/downloads.php allows an authenticated user (not admin) to send a crafted request to the server... | Affected: PHP-Fusion / PHP-Fusion | CVSS: 8.8 (HIGH) | EPSS: 0.67516 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2020-24949"/>
    <published>2026-06-15T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/4eea7983-a515-41f9-9c0d-14b2f7ce1a99</id>
    <title>CVE-2017-15363 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.604563+00:00</updated>
    <content>&lt;h3&gt;CVE-2017-15363&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Directory traversal vulnerability in public/examples/resources/getsource.php in Luracast Restler through 3.0.0, as used in the restler extension... | Affected: Luracast / Restler | CVSS: 7.5 (HIGH) | EPSS: 0.13649 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2017-15363"/>
    <published>2026-06-15T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/2d62ba33-6a45-42b2-b9d8-d2964150e3fd</id>
    <title>CVE-2017-9833 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:00.878982+00:00</updated>
    <content>&lt;h3&gt;CVE-2017-9833&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: /cgi-bin/wapopen in Boa 0.94.14rc21 allows the injection of &amp;#34;../..&amp;#34; using the FILECAMERA variable (sent by GET) to read files with root privileges.... | Affected: Boa / Boa Web Server | CVSS: 7.5 (HIGH) | EPSS: 0.67725 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2017-9833"/>
    <published>2026-06-15T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/known-exploited-vulnerabilities-catalog/70dcba80-894a-46fa-aef6-74a3c03ee6e6</id>
    <title>CVE-2023-31059 - Confirmed Exploitation</title>
    <updated>2026-06-19T12:42:01.014128+00:00</updated>
    <content>&lt;h3&gt;CVE-2023-31059&lt;/h3&gt;
&lt;p&gt;&lt;strong&gt;Status:&lt;/strong&gt; Confirmed&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Exploited:&lt;/strong&gt; Yes&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Status Updated:&lt;/strong&gt; 2026-06-15 00:00 UTC&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Evidence Sources:&lt;/strong&gt; 1&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;First Seen:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Asserted:&lt;/strong&gt; 2026-06-15&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Scope Notes:&lt;/strong&gt; KEVIntel entry: Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLost.php. | Affected: Repetier / Repetier Server | CVSS: 7.5 (HIGH) | EPSS: 0.05574 | Used in malware: unknown | Not yet in CISA KEV: True&lt;/p&gt;</content>
    <link href="https://db.gcve.eu/vuln/CVE-2023-31059"/>
    <published>2026-06-15T00:00:00+00:00</published>
  </entry>
</feed>
