category_exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	F71C05F6-A22C-	Exploit for Deserialization of Untrusted Data in Facebook React_F71C05F6-A22C-5A29-B8EB-39C074BA981F CVE-2025-55182 Lab — React Server Components RCE Educational lab demonstrating CVE-2025-55182 — a critical CVSS 10.0 Remote Code Execution vulnerab...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
CRITICAL 9.2	AE90551B-CA7C-	Exploit for CVE-2026-42945_AE90551B-CA7C-52E0-8D54-D563649CBD22 No description provided...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
CRITICAL 10	5E018311-5338-	Exploit for Improper Authentication in Cisco Catalyst_Sd-Wan_Manager_5E018311-5338-53E4-A443-92BBE3A551B9 CVE-2026-20182 Cisco Catalyst SD-WAN Peering Authentication Bypass CVE-2026-20182 — Cisco Catalyst SD-WAN Peering Authentication Bypass Assessment ...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
NONE	D86B06D9-B289-	Security-Engineering_D86B06D9-B289-5E27-8476-FE6B2F98ACB3 No description provided...	N/A	N/A	May 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	PACKETSTORM:221985	📄 WordPress Supsystic Contact Form 1.7.36 Server-Side Template Injection_PACKETSTORM:221985 This Metasploit module is for WordPress Supsystic Contact Form plugin versions 1.7.36 and below. The plugin suffers from a server-side template inj...	N/A	N/A	May 26, 2026	PACKETSTORM
MEDIUM 6.5	PACKETSTORM:221998	📄 ZTE ZXHN H168N 3.5 Credential Disclosure_PACKETSTORM:221998 The ZTE ZXHN H168N V3.5 firmware exposes quick-setup wizard endpoints that return PPPoE credentials ADUsername, VDUsername and the WLAN KeyPassphra...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.1	PACKETSTORM:221996	📄 ZTE ZXHN H188A V6 Authentication Bypass_PACKETSTORM:221996 Unauthenticated requests to the root path of ZTE ZXHN H188A V6 firmware can reach pre-login wizard handlers and disclose WLAN PSKs, SSIDs, and PPPo...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:221997	📄 ZTE ZXHN H298A / H108N Credential Disclosure_PACKETSTORM:221997 A single unauthenticated HTTP GET to /getpage.lua?pid=1000&ETHCheat=1 on ZTE H298A or H108N routers returns the live administrator password OBJUSER...	N/A	N/A	May 26, 2026	PACKETSTORM
CRITICAL 9.3	PACKETSTORM:221993	📄 Sparx Pro Cloud Server 6.1 / Sparx Enterprise Architect 17.1 SQL Injection_PACKETSTORM:221993 Multiple vulnerabilities in Sparx Pro Cloud Server PCS versions 6.1 and below and Sparx Enterprise Architect versions 17.1 and below allow a remote...	N/A	N/A	May 26, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:221995	📄 ZTE ZXHN Router Denial of Service_PACKETSTORM:221995 The CGILua post.lua parser used in ZTE ZXHN routers does not enforce an upper bound on the body size of application/x-www-form-urlencoded POST requ...	N/A	N/A	May 26, 2026	PACKETSTORM