packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	PACKETSTORM:212930	📄 Ilevia EVE X1/X5 Server 4.7.18.0.eden Root Privilege Escalation_PACKETSTORM:212930 A critical privilege escalation vulnerability exists in Ilevia EVE X1/X5 Server versions 4.7.18.0.eden and below. This is a proof of concept exploi...	N/A	N/A	Dec 17, 2025	PACKETSTORM
CRITICAL 10	PACKETSTORM:212934	📄 Invision Community 5.0.6 customCss Expression Injection_PACKETSTORM:212934 Invision Community version 5.0.6 customCss expression injection proof of concept exploit written in PHP...	N/A	N/A	Dec 17, 2025	PACKETSTORM
HIGH 8.8	PACKETSTORM:212937	📄 Ivanti Endpoint Manager Mobile 12.5.0.0 Expression Language Injection_PACKETSTORM:212937 Ivanti Endpoint Manager Mobile version 12.5.0.0 proof of concept exploit with a vulnerability chain that allows unauthenticated attackers to execut...	N/A	N/A	Dec 17, 2025	PACKETSTORM
CRITICAL 9.3	PACKETSTORM:212927	📄 ICTBroadcast 7.0 Remote Code Execution_PACKETSTORM:212927 A vulnerability in ICTBroadcast version 7.0 allows unauthenticated remote command execution due to improper handling of session cookie values. An a...	N/A	N/A	Dec 17, 2025	PACKETSTORM
MEDIUM 5.3	PACKETSTORM:212926	📄 IBM BigFix Platform 9.2 Information Disclosure_PACKETSTORM:212926 IBM BigFix Platform version 9.2 information gathering proof of concept exploit...	N/A	N/A	Dec 17, 2025	PACKETSTORM
HIGH 7.8	PACKETSTORM:212924	📄 FastAPI‑Based Delivery Server Proof of Concept_PACKETSTORM:212924 This proof of concept demonstrates how legacy ActiveX objects in Internet Explorer can be invoked automatically when a crafted HTML payload is deli...	N/A	N/A	Dec 17, 2025	PACKETSTORM
NONE	PACKETSTORM:212925	📄 HighPortal 12.x SQL Injection_PACKETSTORM:212925 HighPortal version 12.x remote SQL injection proof of concept exploit...	N/A	N/A	Dec 17, 2025	PACKETSTORM
NONE	PACKETSTORM:212933	📄 Institute Admission Software 2.5 Insecure Direct Object Reference_PACKETSTORM:212933 Institute Admission Software version 2.5 suffers from an insecure direct object reference vulnerability...	N/A	N/A	Dec 17, 2025	PACKETSTORM
NONE	PACKETSTORM:212936	📄 ionCube Loader Wizard 14.4.0 Scanner_PACKETSTORM:212936 ionCube Loader Wizard version 2.34 scanner that look for the installation file and displays PHP info to gather more information about the target...	N/A	N/A	Dec 17, 2025	PACKETSTORM
HIGH 8.8	PACKETSTORM:212935	📄 Invoice Ninja 5.8.22 PHP Code Injection_PACKETSTORM:212935 Invoice Ninja version 5.8.22 remote proof of concept exploit for a PHP code injection vulnerability...	N/A	N/A	Dec 17, 2025	PACKETSTORM