| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-45151 | NanoMQ: NULL Pointer Dereference | nanomq | nanomq | - | - | 2026-05-29 19:30:38 | Deep Dive |
| CVE-2026-44640 | NanoMQ: QUIC Dialer Close Type Confusion | nanomq | nanomq | Medium | 4.5 | 2026-05-29 19:28:47 | Deep Dive |
| CVE-2026-45372 | cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection | yhirose | cpp-httplib | Critical | 9.9 | 2026-05-29 19:21:12 | Deep Dive |
| CVE-2026-46527 | cpp-httplib: Malicious `X-Forwarded-For` Under Trusted-Proxy Configuration Triggers Empty `vector::front()`, Leading to Undefined Behavior and Server Crash | yhirose | cpp-httplib | - | - | 2026-05-29 19:18:27 | Deep Dive |
| CVE-2026-45352 | cpp-httplib DoS: Negative chunk-size in chunked Transfer-Encoding | yhirose | cpp-httplib | Medium | 5.3 | 2026-05-29 19:14:08 | Deep Dive |
| CVE-2026-45324 | Rizin: Double free in cmd_search.c | rizinorg | rizin | Low | 3.3 | 2026-05-29 19:08:39 | Deep Dive |
| CVE-2026-45613 | Rizin: Heap-buffer-overflow in OMF parser | rizinorg | rizin | Low | 3.3 | 2026-05-29 19:07:49 | Deep Dive |
| CVE-2026-47266 | Formie: Unauthenticated front-end submission editing can overwrite existing submissions | verbb | formie | - | - | 2026-05-29 19:03:43 | Deep Dive |
| CVE-2026-45697 | Formie: Pre-authenticated server-side template injection in Hidden fields | verbb | formie | Critical | 9.8 | 2026-05-29 19:01:49 | Deep Dive |
| CVE-2026-34127 | Stored Cross-Site Scripting (XSS) via Configuration File Import on TP-Link's TL-SG108PE | TP-Link Systems Inc. | TL-SG108PE v5 | - | - | 2026-05-29 18:59:14 | Deep Dive |
| CVE-2026-42500 | Panic when reading out of bound palette index in golang.org/x/image/bmp | golang.org/x/image | golang.org/x/image/bmp | - | - | 2026-05-29 18:36:28 | Deep Dive |
| CVE-2026-48555 | Spatie Laravel Media Library < 11.23.0 SSRF via addMediaFromUrl() | spatie | laravel-medialibrary | High | 7.4 | 2026-05-29 18:30:27 | Deep Dive |
| CVE-2026-4387 | Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file | StrongDM | StrongDM Desktop Application | - | - | 2026-05-29 18:28:01 | Deep Dive |
| CVE-2026-49386 | JetBrains YouTrack 安全漏洞 | JetBrains | YouTrack | Medium | 6.5 | 2026-05-29 18:15:55 | Deep Dive |
| CVE-2026-49384 | JetBrains PyCharm 跨站脚本漏洞 | JetBrains | PyCharm | Medium | 6.1 | 2026-05-29 18:15:54 | Deep Dive |
| CVE-2026-49385 | JetBrains YouTrack 安全漏洞 | JetBrains | YouTrack | Medium | 6.5 | 2026-05-29 18:15:54 | Deep Dive |
| CVE-2026-49383 | JetBrains IntelliJ IDEA 代码问题漏洞 | JetBrains | IntelliJ IDEA | Low | 3.3 | 2026-05-29 18:15:53 | Deep Dive |
| CVE-2026-49382 | JetBrains IntelliJ IDEA 安全漏洞 | JetBrains | IntelliJ IDEA | Medium | 4.5 | 2026-05-29 18:15:52 | Deep Dive |
| CVE-2026-49381 | JetBrains TeamCity 跨站脚本漏洞 | JetBrains | TeamCity | Low | 3.4 | 2026-05-29 18:15:52 | Deep Dive |
| CVE-2026-49378 | JetBrains TeamCity 安全漏洞 | JetBrains | TeamCity | Medium | 4.3 | 2026-05-29 18:15:51 | Deep Dive |