category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.3	CVE-2026-10705	dask HLL hyperloglog.py nunique_approx resource consumption_CVE-2026-10705 A flaw has been found in dask up to 3.0. Affected by this issue is the function nunique_approx of the file dask/dataframe/hyperloglog.py of the com...	n/a	dask 3.0	Jun 3, 2026	CVE
MEDIUM 6.9	CVE-2026-10704	SourceCodester Pizzafy E-Commerce System Administrative Control Panel admin_class_novo.php login sql injection_CVE-2026-10704 A vulnerability was detected in SourceCodester Pizzafy E-Commerce System 1.0. Affected by this vulnerability is the function Login of the file /adm...	SourceCodester	Pizzafy E-Commerce System 1.0	Jun 3, 2026	CVE
MEDIUM 5.3	CVE-2026-10703	EIPStackGroup OpENer SendRRData cipmessagerouter.c CreateMessageRouterRequestStructure use after free_CVE-2026-10703 A security vulnerability has been detected in EIPStackGroup OpENer up to 2.3.0. Affected is the function CreateMessageRouterRequestStructure of the...	EIPStackGroup	OpENer 2.0	Jun 3, 2026	CVE
HIGH 7.1	CVE-2026-31942	LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users’ API keys_CVE-2026-31942 LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Refere...	danny-avila	LibreChat < 0.8.3-rc1	Jun 2, 2026	CVE
HIGH 8.2	CVE-2026-25861	QloApps 1.7.0 Weak Password Hashing via MD5 in Tools.php_CVE-2026-25861 QloApps through 1.7.0, fixed in commit 64e9722, contains a weak cryptographic algorithm vulnerability that allows attackers to compromise user cred...	QloApps	QloApps	Jun 2, 2026	CVE
MEDIUM 4.6	CVE-2026-10718	Open Seachest/Seachest NVMe Trim (Deallocate) Vulnerability_CVE-2026-10718 Out of bounds write in openSeaChest’s Trim/Unmap operation in Seagate’s openSeaChest v26.03.0 on all supported platforms allows for writing extra m...	N/A	N/A	Jun 2, 2026	CVE
LOW 1.8	CVE-2026-10717	Open-Seachest/Seachest show SCSI Defect List Vulnerability_CVE-2026-10717 Out of bounds write and reads in openSeaChest’s --showSCSIDefects in Seagate’s openSeaChest v25.05.3 on all supported platforms allows for writing ...	N/A	N/A 26.03.0	Jun 2, 2026	CVE
MEDIUM 5.3	CVE-2026-10662	ahujasid blender-mcp ZIP File server.py requests.get server-side request forgery_CVE-2026-10662 A vulnerability was found in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. The affected element is the function requests.get...	ahujasid	blender-mcp 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b	Jun 2, 2026	CVE
MEDIUM 5.7	CVE-2026-44654	LibreChat: Shared-agent editor can globally delete owner’s file records — breaks owner’s other private agents_CVE-2026-44654 LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, a shared-agent editor can delete...	danny-avila	LibreChat < 0.8.5	Jun 2, 2026	CVE
MEDIUM 6.5	CVE-2026-44653	LibreChat Shared MCP Server View Leaks Decrypted Admin Secrets_CVE-2026-44653 LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, users with only `VIEW` access to...	danny-avila	LibreChat < 0.8.4	Jun 2, 2026	CVE