const { useState, useEffect, useMemo } = React; const LAVENDER = "#C9B7E6"; const LAVENDER_DIM = "#9B8CC4"; const BG = "#080810"; const SURFACE = "#0D0D1A"; const SURFACE2 = "#12121F"; const BORDER = "#1E1E35"; const TEXT = "#E4E4F0"; const MUTED = "#5A5A7A"; const CRITICAL = "#FF4560"; const HIGH = "#FF8C42"; const MEDIUM = "#FFD166"; const LOW = "#06D6A0"; const FONT_SANS = "'DM Sans', system-ui, sans-serif"; const FONT_DISPLAY = "'Inter', system-ui, sans-serif"; const FONT_MONO = "'IBM Plex Mono', monospace"; const THIS_YEAR = new Date().getFullYear(); const LAST_YEAR = THIS_YEAR - 1; function cveYear(id) { const m = /^CVE-(\d{4})-/.exec(id || ""); return m ? parseInt(m[1], 10) : null; } // Priority score: ransomware-flagged first, then most-recently-added. function priorityScore(v) { const r = v.knownRansomwareCampaignUse === "Known" ? 1 : 0; const added = Date.parse(v.dateAdded || "") || 0; return r * 1e13 + added; } function severityFromAge(daysSinceAdded) { if (daysSinceAdded <= 30) return CRITICAL; if (daysSinceAdded <= 90) return HIGH; if (daysSinceAdded <= 365) return MEDIUM; return LOW; } function daysBetween(a, b) { return Math.round((a - b) / 86400000); } function Header({ count, lastUpdated }) { return (
VulnQL / full feed
{count.toLocaleString()} entries · {LAST_YEAR}–{THIS_YEAR} {lastUpdated && updated {lastUpdated}}
); } function Filters({ q, setQ, yearFilter, setYearFilter, ransomOnly, setRansomOnly, total, shown }) { const pill = (active) => ({ fontFamily: FONT_MONO, fontSize: 11, padding: "6px 12px", border: `1px solid ${active ? LAVENDER : BORDER}`, color: active ? LAVENDER : MUTED, background: active ? `${LAVENDER}10` : "transparent", borderRadius: 4, cursor: "pointer", letterSpacing: "0.06em", textTransform: "uppercase", }); return (
setQ(e.target.value)} placeholder="search CVE id, vendor, product, description…" style={{ flex: "1 1 280px", minWidth: 240, background: BG, border: `1px solid ${BORDER}`, color: TEXT, padding: "10px 14px", borderRadius: 6, fontFamily: FONT_MONO, fontSize: 13, outline: "none", }} />
{["all", String(THIS_YEAR), String(LAST_YEAR)].map(y => ( ))}
showing {shown.toLocaleString()} / {total.toLocaleString()}
); } function Row({ v, rank }) { const added = Date.parse(v.dateAdded || "") || 0; const now = Date.now(); const ageDays = added ? daysBetween(now, added) : 9999; const sev = severityFromAge(ageDays); const ransom = v.knownRansomwareCampaignUse === "Known"; const [open, setOpen] = useState(false); return ( <>
setOpen(o => !o)} style={{ display: "grid", gridTemplateColumns: "44px 150px 130px 1fr 110px 90px", gap: 14, padding: "12px 16px", borderBottom: `1px solid ${BORDER}`, cursor: "pointer", background: open ? SURFACE2 : "transparent", alignItems: "center", }} onMouseEnter={e => { if (!open) e.currentTarget.style.background = "#10101C"; }} onMouseLeave={e => { if (!open) e.currentTarget.style.background = "transparent"; }} > #{rank} {v.cveID} {v.vendorProject} {v.vulnerabilityName} {ransom && ( RANSOM )} {ageDays}d {v.dateAdded}
{open && (
DESCRIPTION
{v.shortDescription}
REQUIRED ACTION
{v.requiredAction}
{v.notes && ( <>
NOTES
{v.notes}
)}
METADATA
{[ ["Product", v.product], ["Date added", v.dateAdded], ["Ransomware", v.knownRansomwareCampaignUse], ["CWEs", Array.isArray(v.cwes) ? v.cwes.join(", ") : "—"], ].map(([k, val]) => (
{k} {val || "—"}
))} NVD detail →
)} ); } function App() { const [data, setData] = useState(null); const [error, setError] = useState(null); const [q, setQ] = useState(""); const [yearFilter, setYearFilter] = useState("all"); const [ransomOnly, setRansomOnly] = useState(false); useEffect(() => { let cancelled = false; fetch("/api/kev") .then(r => r.ok ? r.json() : Promise.reject(new Error("HTTP " + r.status))) .then(j => { if (!cancelled) setData(j); }) .catch(e => { if (!cancelled) setError(String(e)); }); return () => { cancelled = true; }; }, []); const baseList = useMemo(() => { if (!data || !Array.isArray(data.vulnerabilities)) return []; return data.vulnerabilities .filter(v => { const y = cveYear(v.cveID); return y === THIS_YEAR || y === LAST_YEAR; }) .sort((a, b) => priorityScore(b) - priorityScore(a)); }, [data]); const filtered = useMemo(() => { const needle = q.trim().toLowerCase(); return baseList.filter(v => { if (ransomOnly && v.knownRansomwareCampaignUse !== "Known") return false; if (yearFilter !== "all" && String(cveYear(v.cveID)) !== yearFilter) return false; if (needle) { const hay = [v.cveID, v.vendorProject, v.product, v.vulnerabilityName, v.shortDescription] .filter(Boolean).join(" ").toLowerCase(); if (!hay.includes(needle)) return false; } return true; }); }, [baseList, q, yearFilter, ransomOnly]); return (
{LAST_YEAR}–{THIS_YEAR} · SORTED BY PRIORITY

Active Exploitation Feed

Vulnerabilities under active exploitation, filtered to {LAST_YEAR}–{THIS_YEAR} CVE IDs. Priority places ransomware-linked entries first, then most-recently-added. Click any row for the required action and analyst notes.

{error && (
failed to load feed: {error}
)} {!data && !error && (
loading feed…
)} {data && filtered.length === 0 && (
No matches.
)} {data && filtered.length > 0 && ( <>
{["#", "CVE ID", "Vendor", "Vulnerability", "Tags", "Added"].map(h => ( {h} ))}
{filtered.map((v, i) => )} )}
); } ReactDOM.createRoot(document.getElementById("root")).render();