| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-8501 | CVE-2026-8501 | Symantec | PC Tools Internet Security | - | - | 2026-06-01 16:25:12 | Deep Dive |
| CVE-2026-46243 | smb: client: reject userspace cifs.spnego descriptions | Linux | Linux | - | - | 2026-06-01 16:22:29 | Deep Dive |
| CVE-2026-10273🧪 | php-censor Webhook Endpoint GitBuild.php os command injection | - | php-censor | High | 7.3 | 2026-06-01 16:15:10 | Deep Dive |
| CVE-2026-45131🧪 | CloudPirates Open Source Helm Charts: GitHub Actions pull_request_target workflow allows secret exfiltration via fork pull requests | CloudPirates-io | helm-charts | Critical | 10.0 | 2026-06-01 16:13:48 | Deep Dive |
| CVE-2026-45132🧪 | CloudPirates Open Source Helm Charts: GitHub Actions workflow leaks PAT and SSH signing key via unsafe credential handling | CloudPirates-io | helm-charts | Critical | 10.0 | 2026-06-01 16:13:37 | Deep Dive |
| CVE-2026-45701 | Sulu: Weak Cryptographical usage for API Key generation and Reset Tokens | sulu | sulu | - | - | 2026-06-01 16:09:21 | Deep Dive |
| CVE-2026-44740 | go-billy: Lack of depth and cycle detection in symlink resolution may lead to infinite loops and resource exhaustion | go-git | go-billy | Medium | 6.5 | 2026-06-01 16:04:50 | Deep Dive |
| CVE-2026-44211🧪 | Cline Kanban Server has a Cross-Origin WebSocket Hijacking Vulnerability | cline | cline | Critical | 9.6 | 2026-06-01 16:01:56 | Deep Dive |
| CVE-2026-10272 | a4m4 Student-Management-System deleteform.php improper authorization | a4m4 | Student-Management-System | Medium | 6.5 | 2026-06-01 16:00:09 | Deep Dive |
| CVE-2022-4991 | Tychon is vulnerable to privilege escalation due to OPENSSLDIR location | Tychon | Tychon | - | - | 2026-06-01 15:49:12 | Deep Dive |
| CVE-2026-10271 | a4m4 Student-Management-System Admin Endpoint admin redirect | a4m4 | Student-Management-System | Medium | 6.3 | 2026-06-01 15:45:07 | Deep Dive |
| CVE-2026-10118 | Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication | Red Hat | Red Hat Enterprise Linux 10 | High | 7.8 | 2026-06-01 15:33:40 | Deep Dive |
| CVE-2026-10270🧪 | D-Link DI-7001 MINI API httpd_debug.asp sprintf stack-based overflow | D-Link | DI-7001 MINI | High | 8.8 | 2026-06-01 15:30:11 | Deep Dive |
| CVE-2026-42671 | WordPress GeoDirectory plugin <= 2.8.157 - Broken Access Control vulnerability | Paolo | GeoDirectory | Medium | 6.5 | 2026-06-01 15:28:46 | Deep Dive |
| CVE-2026-42672🧪 | WordPress WP Directory Kit plugin <= 1.5.1 - SQL Injection vulnerability | Wp Directory Kit | WP Directory Kit | Critical | 9.3 | 2026-06-01 15:27:47 | Deep Dive |
| CVE-2026-42673 | WordPress Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity plugin <= 3.3.6 - Sensitive Data Exposure vulnerability | Logtivity Activity Logs | Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity | High | 7.5 | 2026-06-01 15:24:05 | Deep Dive |
| CVE-2026-42674 | WordPress Advanced Access Manager plugin <= 7.1.0 - Bypass Vulnerability vulnerability | AAM Plugin | Advanced Access Manager | High | 7.5 | 2026-06-01 15:22:10 | Deep Dive |
| CVE-2026-42675 | WordPress Hydra Booking plugin <= 1.1.41 - Broken Access Control vulnerability | Themefic | Hydra Booking | High | 7.3 | 2026-06-01 15:18:42 | Deep Dive |
| CVE-2026-42676 | WordPress myCred plugin <= 3.0.4 - Cross Site Scripting (XSS) vulnerability | myCred | myCred | Medium | 6.5 | 2026-06-01 15:17:54 | Deep Dive |
| CVE-2026-42677 | WordPress WP Document Revisions plugin <= 3.8.1 - Broken Access Control vulnerability | Ben Balter | WP Document Revisions | High | 7.5 | 2026-06-01 15:16:18 | Deep Dive |