TensorFeed AI CVEs Exploited In Wild
AI-stack CVEs actively exploited in the wild. Returns only the AI inference, agent-framework, training, vector DB, and model-gateway vulnerabilities flagged as exploited (stated_yes), ranked by severity, with affected products, fixed versions, and the source advisory. The "which AI dependency is being weaponized right now and do I have a patch" call. 99.8% GitHub Security Advisories (CC BY 4.0). AFTA fair-trade: Ed25519-signed receipt on every paid call, automatic no-charge on 5xx, schema failure, or stale data.
Start with a quote-only recipe. Payment signing stays in your project.
const response = await fetch("https://tensorfeed.ai/api/premium/ai-cves/exploited-in-wild", {
method: "GET",
});
console.log(response.status);
console.log(Object.fromEntries(response.headers));
console.log((await response.text()).slice(0, 1000));
// A valid 402 is a quote, not a completed paid call.This sends no payment. Inspect the 402 response before adding a wallet-enabled client.
- Live 402 quote confirmed
GET returned a protocol-valid 402 quote (402). No payment was made.
- Origin reachable
HEAD https://tensorfeed.ai/ returned 200.
- Observed in 402-index
Discovered through bazaar.
- Registry record checked
Registry health: healthy.
EVIDENCE
Each record has an exact-route quote outcome. Unresolved templates and potentially mutating methods are labeled instead of being invoked without provider-specific test input. A quote is still separate from a settled paid call.