tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.5	CVE-2025-55645	CVE-2025-55645_CVE-2025-55645 A heap buffer overflow in the gf_cenc_set_pssh function (isomedia/drm_sample.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (...	n/a	n/a n/a	Jun 15, 2026	CVE
MEDIUM 5.5	CVE-2025-55644	CVE-2025-55644_CVE-2025-55644 A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Serv...	n/a	n/a n/a	Jun 15, 2026	CVE
MEDIUM 5.5	CVE-2025-55643	CVE-2025-55643_CVE-2025-55643 A NULL pointer dereference in the TrackWriter handling component (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Ser...	n/a	n/a n/a	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2025-55642	CVE-2025-55642_CVE-2025-55642 GPAC MP4Box v2.4 was discovered to contain a floating point exception in the avidmx_process function (isomedia/isom_write.c).	n/a	n/a n/a	Jun 15, 2026	CVE
MEDIUM 5.5	CVE-2025-55641	CVE-2025-55641_CVE-2025-55641 A NULL pointer dereference in the gf_isom_copy_sample_info function (isomedia/isom_write.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial ...	n/a	n/a n/a	Jun 15, 2026	CVE
CRITICAL 9.8	CVE-2026-9691	WordPress Integration for ActiveCampaign and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.1.1 - PHP Object Injection vulnerability_CVE-2026-9691 Unauthenticated PHP Object Injection in Integration for ActiveCampaign and Contact Form 7, WPForms, Elementor, Ninja Forms	CRM Perks	Integration for ActiveCampaign and Contact Form 7, WPForms, Elementor, Ninja Forms 1.1.1	Jun 15, 2026	CVE
CRITICAL 9.6	CVE-2026-52703	WordPress FastDup plugin <= 2.7.2 - Path Traversal vulnerability_CVE-2026-52703 Unauthenticated Path Traversal in FastDup	Ninja Team	FastDup n/a	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-52702	WordPress SEO Redirection plugin <= 9.17 - Cross Site Scripting (XSS) vulnerability_CVE-2026-52702 Unauthenticated Cross Site Scripting (XSS) in SEO Redirection	wp-buy	SEO Redirection n/a	Jun 15, 2026	CVE
HIGH 8.5	CVE-2026-52700	WordPress WCMultiShipping plugin <= 3.0.2 - SQL Injection vulnerability_CVE-2026-52700 Subscriber SQL Injection in WCMultiShipping	WcMultishipping – Mondial Relay & Chronopost for Wooommerce	WCMultiShipping n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52699	WordPress VikRentCar plugin <= 1.4.5 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-52699 Unauthenticated Insecure Direct Object References (IDOR) in VikRentCar	e4jvikwp	VikRentCar n/a	Jun 15, 2026	CVE