| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-10619🧪 | sayan365 student-management-system improper authentication | sayan365 | student-management-system | High | 7.3 | 2026-06-02 20:00:14 | Deep Dive |
| CVE-2026-28299 | SolarWinds Web Help Desk Denial-of-Service Vulnerability | SolarWinds | Web Help Desk | High | 8.2 | 2026-06-02 19:31:57 | Deep Dive |
| CVE-2021-4479 | Dräger Atlan A350 1.00-1.01 DoS via Medibus Interface | Dräger | Atlan A350 | Medium | 4.0 | 2026-06-02 19:27:00 | Deep Dive |
| CVE-2021-4478 | Dräger CC-Vision Basic and CC-Vision E-Cal Out-of-Bounds Write via Malicious GDT File | Dräger | CC-Vision Basic | High | 8.2 | 2026-06-02 19:17:28 | Deep Dive |
| CVE-2019-25724 | Dräger Infinity M300 VG2.x Network-Based Denial of Service | Dräger | Infinity M300 | Medium | 6.5 | 2026-06-02 19:11:52 | Deep Dive |
| CVE-2026-48596 | CRLF injection in Tesla.Multipart.add_content_type_param/2 allows HTTP header injection | elixir-tesla | tesla | - | - | 2026-06-02 19:09:32 | Deep Dive |
| CVE-2026-48594 | Decompression bomb in Tesla.Middleware.DecompressResponse and Tesla.Middleware.Compression | elixir-tesla | tesla | - | - | 2026-06-02 19:08:50 | Deep Dive |
| CVE-2026-48595 | Authorization header leaks to third-party origin on cross-origin redirect in Tesla.Middleware.FollowRedirects | elixir-tesla | tesla | - | - | 2026-06-02 19:08:48 | Deep Dive |
| CVE-2026-48597 | Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint | elixir-tesla | tesla | - | - | 2026-06-02 19:08:40 | Deep Dive |
| CVE-2026-48598 | CRLF injection in Tesla.Multipart disposition parameters allows multipart part header injection | elixir-tesla | tesla | - | - | 2026-06-02 19:08:20 | Deep Dive |
| CVE-2026-10584 | HTTPS Fallback to HTTP in Graph Explorer | AWS | Graph Explorer | Medium | 5.9 | 2026-06-02 19:08:01 | Deep Dive |
| CVE-2026-35202 | Pterodactyl has a database resource limit bypass via race condition in Client API | pterodactyl | panel | - | - | 2026-06-02 19:03:47 | Deep Dive |
| CVE-2019-25723 | Dräger Perseus A500 2.00-2.02 DoS via Medibus Interface | Dräger | Perseus A500 | Medium | 4.0 | 2026-06-02 19:00:19 | Deep Dive |
| CVE-2026-10617🧪 | nextlevelbuilder GoClaw Webhook Verification auth.go resolveAuth missing authentication | nextlevelbuilder | GoClaw | High | 7.3 | 2026-06-02 19:00:12 | Deep Dive |
| CVE-2019-25722 | Dräger SC Monitoring Devices Hard-coded Credentials and DoS | Dräger | SC 6002XL | High | 7.6 | 2026-06-02 18:44:12 | Deep Dive |
| CVE-2026-35049 | wire-ios has Persistent Remote DoS via Integer Underflow | wireapp | wire-ios | Medium | 6.5 | 2026-06-02 18:35:49 | Deep Dive |
| CVE-2026-47265 | AIOHTTP vulnerable to cross-origin redirect with per-request cookies | aio-libs | aiohttp | - | - | 2026-06-02 18:32:51 | Deep Dive |
| CVE-2026-5385 | GLPI 11.0.0 - Stored XSS in knowledge base | glpi-project | glpi | - | - | 2026-06-02 18:32:01 | Deep Dive |
| CVE-2026-5073 | ARMember Premium <= 7.3.1 - Unauthenticated SQL Injection via 'order' Parameter | armember | ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | High | 7.5 | 2026-06-02 18:30:47 | Deep Dive |
| CVE-2026-5074🧪 | ARMember Premium <= 7.3.1 - Authenticated (Subscriber+) SQL Injection via 'sSortDir_0' Parameter | armember | ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup | Medium | 6.5 | 2026-06-02 18:30:47 | Deep Dive |