category_exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	D86B06D9-B289-	Security-Engineering_D86B06D9-B289-5E27-8476-FE6B2F98ACB3 No description provided...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	PACKETSTORM:221985	📄 WordPress Supsystic Contact Form 1.7.36 Server-Side Template Injection_PACKETSTORM:221985 This Metasploit module is for WordPress Supsystic Contact Form plugin versions 1.7.36 and below. The plugin suffers from a server-side template inj...	N/A	N/A	May 26, 2026	PACKETSTORM
MEDIUM 6.5	PACKETSTORM:221998	📄 ZTE ZXHN H168N 3.5 Credential Disclosure_PACKETSTORM:221998 The ZTE ZXHN H168N V3.5 firmware exposes quick-setup wizard endpoints that return PPPoE credentials ADUsername, VDUsername and the WLAN KeyPassphra...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.1	PACKETSTORM:221996	📄 ZTE ZXHN H188A V6 Authentication Bypass_PACKETSTORM:221996 Unauthenticated requests to the root path of ZTE ZXHN H188A V6 firmware can reach pre-login wizard handlers and disclose WLAN PSKs, SSIDs, and PPPo...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:221997	📄 ZTE ZXHN H298A / H108N Credential Disclosure_PACKETSTORM:221997 A single unauthenticated HTTP GET to /getpage.lua?pid=1000&ETHCheat=1 on ZTE H298A or H108N routers returns the live administrator password OBJUSER...	N/A	N/A	May 26, 2026	PACKETSTORM
CRITICAL 9.3	PACKETSTORM:221993	📄 Sparx Pro Cloud Server 6.1 / Sparx Enterprise Architect 17.1 SQL Injection_PACKETSTORM:221993 Multiple vulnerabilities in Sparx Pro Cloud Server PCS versions 6.1 and below and Sparx Enterprise Architect versions 17.1 and below allow a remote...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:221995	📄 ZTE ZXHN Router Denial of Service_PACKETSTORM:221995 The CGILua post.lua parser used in ZTE ZXHN routers does not enforce an upper bound on the body size of application/x-www-form-urlencoded POST requ...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 10	8AD0C10E-3D18-	Exploit for Improper Handling of Exceptional Conditions in Apache Struts_8AD0C10E-3D18-5596-B029-DD228C1F9B3A LAB 1 — Apache Struts2 OGNL Injection CVE-2017-5638 / S2-045 I. SYSTEM ANALYSIS Attack Surface Analysis After starting the container, Struts2 logs ...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	3AC8A3A3-D354-	patch-to-exploit_3AC8A3A3-D354-5C33-AC06-C1420289BA8D patch-to-exploit Lab + PoC scripts for "30 minutes from patch to exploit". Five CVEs. Five exploits derived from public patch diffs. Slowest took 3...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
NONE	EDB-ID:52576	D-Link DSL2600U – 'rom-0' Admin Password Disclosure_EDB-ID:52576 Exploit Title: D-Link DSL2600U - 'rom-0' Admin Password Disclosure Date: 2026-05-02 Exploit Author: Amir Hossein Jamshidi Vendor Homepage: https://...	N/A	N/A	May 26, 2026	EXPLOITDB