packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	PACKETSTORM:212722	📄 Casdoor 2.95.0 Directory Traversal_PACKETSTORM:212722 Casdoor version 2.95.0 directory traversal proof of concept exploit...	N/A	N/A	Dec 11, 2025	PACKETSTORM
HIGH 10	PACKETSTORM:212721	📄 Broadcom Wi-Fi Firmware Out-Of-Bounds Write_PACKETSTORM:212721 Broadcom Wi-Fi firmware remote code execution exploit via an out-of-bounds write in the RRM Neighbor Report Handler...	N/A	N/A	Dec 11, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212728	📄 WordPress King Addons for Elementor Privilege Escalation / Remote Code Execution_PACKETSTORM:212728 This Metasploit module exploits an unauthenticated privilege escalation vulnerability in the WordPress King Addons for Elementor plugin versions 24...	N/A	N/A	Dec 11, 2025	PACKETSTORM
CRITICAL 10	PACKETSTORM:212724	📄 Cisco ISE API 3.1 Command Injection_PACKETSTORM:212724 Proof of concept exploit for a command injection vulnerability in Cisco ISE API version 3.1...	N/A	N/A	Dec 11, 2025	PACKETSTORM
CRITICAL 10	PACKETSTORM:212727	📄 Flowise 3.0.6 JS Parsing Injection_PACKETSTORM:212727 A JavaScript parsing injection vulnerability exists in Flowise versions prior to 3.0.6 and greater than 2.2.7-patch.1...	N/A	N/A	Dec 11, 2025	PACKETSTORM
NONE	PACKETSTORM:212725	📄 Convio CMS 24.5 SQL Injection_PACKETSTORM:212725 Convio CMS version 24.5 proof of concept remote SQL injection exploit...	N/A	N/A	Dec 11, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212726	📄 WordPress WP for CPI 1.0.2 Shell Upload_PACKETSTORM:212726 WordPress WP for CPI plugin versions 1.0.2 and below suffer from an unauthenticated shell upload vulnerability...	N/A	N/A	Dec 11, 2025	PACKETSTORM
HIGH 10	PACKETSTORM:212668	📄 Exim Vulnerability Scanner_PACKETSTORM:212668 This is a multi-phase vulnerability scanning tool designed to detect and analyze security weaknesses in Exim mail servers. The tool performs compre...	N/A	N/A	Dec 10, 2025	PACKETSTORM
CRITICAL 9.3	PACKETSTORM:212664	📄 Clinic’s Patient Management System 2.0 Remote Code Execution_PACKETSTORM:212664 Clinic's Patient Management System version 2.0 proof of concept that combines SQL injection authentication bypass with an unrestricted file upload ...	N/A	N/A	Dec 10, 2025	PACKETSTORM
HIGH 7.8	PACKETSTORM:212665	iOS 12 / macOS 10.14 voucher_swap Use-After-Free_PACKETSTORM:212665 Proof of concept for an older vulnerability from 2019. A use-after-free vulnerability in Apple's Mach voucher subsystem affects macOS version 10.14...	N/A	N/A	Dec 10, 2025	PACKETSTORM