category_exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	3BCADBAC-E6C7-	Exploit for Prototype Pollution in Cure53 Dompurify_3BCADBAC-E6C7-5B3A-84E1-6938398220F9 DOMPurify re-clone bypass. Instead of relying on easily stripped source comments or version variables, this tool performs logic fingerprinting on m...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	MSF:EXPLOIT-MULTI-	Gogs Git Rebase Argument Injection RCE_MSF:EXPLOIT-MULTI-HTTP-GOGS_REBASE_RCE- This module exploits an argument injection vulnerability in the pull request merge flow of Gogs is parsed by Git as the --exec flag rather than a p...	N/A	N/A	Jun 3, 2026	METASPLOIT
CRITICAL 9.2	8AD1A192-E34A-	Exploit for CVE-2026-42945_8AD1A192-E34A-5E8C-A3B9-4AAECCED2A20 No description provided...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
MEDIUM 6.5	243CDB42-BE28-	Exploit for CVE-2026-2256_243CDB42-BE28-5810-BB45-078630950EB9 CVE-2026-2256-Threat-Model----ms-agent-Command-Injection...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	420BEB65-BD63-	Exploit for CVE-2026-26897_420BEB65-BD63-521E-90B1-5065E05B96C0 EcoOnline EHS Android — Deep Link Validation Bypass → WebView Open Redirect CVE-2026-26897 Public disclosure / advisory for CVE-2026-26897, a deep ...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	PACKETSTORM:222614	📄 MCPJam Inspector 1.4.2 Command Injection_PACKETSTORM:222614 This is an advanced Python proof of concept for CVE-2026-23744 demonstrating command injection through a vulnerable MCP API endpoint, leading to re...	N/A	N/A	Jun 3, 2026	PACKETSTORM
CRITICAL 9.8	7FE5A510-990A-	Exploit for Prototype Pollution in Cure53 Dompurify_7FE5A510-990A-5CCB-9427-6AA5D7B10937 No description provided...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	393A755A-8E32-	Exploit for Stack-based Buffer Overflow in Microsoft_393A755A-8E32-59DA-B6AC-2DE1A68B3BB0 LongLogon · CVE-2026-41089 LongLogon is an unauthenticated, non-destructive precondition checker for CVE-2026-41089, a pre-auth stack buffer overfl...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	472EEC26-F9C7-	coruna_472EEC26-F9C7-50CA-A4D6-2E1879CAC2F3 iOS Orchestrator — Coruna Web server, C2 listener, and interactive shell for the Coruna exploit chain CVE-2024-23222. Targets Safari on iOS 13–17.2...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	PACKETSTORM:222620	📄 Gogs Git Rebase Argument Injection / Remote Code Execution_PACKETSTORM:222620 This Metasploit module exploits an argument injection vulnerability in the pull request merge flow of Gogs versions less than or equal to 0.14.2 an...	N/A	N/A	Jun 3, 2026	PACKETSTORM