githubexploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	91255BC8-23AA-	Exploit for Path Traversal in Alibabagroup One-Java-Agent_91255BC8-23AA-5E69-8182-76128154DDB6 # one-java-agent ![JavaCI](https://github.com/alibaba/one-java-agent/workflows/JavaCI/badge.svg) [![maven](https://img.shields.io/maven-central/v/c...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
MEDIUM 6.5	F28FEE36-1B4E-	Exploit for Path Traversal in Apache Dolphinscheduler_F28FEE36-1B4E-5251-83A5-0981BDBEC485 Dolphin Scheduler Official Website [dolphinscheduler.apache.org](https://dolphinscheduler.apache.org) ============ [![License](https://img.shields...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
CRITICAL 9.8	570E0F80-DC1A-	Exploit for Path Traversal in Owasp Enterprise_Security_Api_570E0F80-DC1A-5BA6-B8B1-FCB7AD3225D8 Please note that: 1) The LICENSE file only refers to the licensing of the source and binary code of ESAPI. For example, the actual ESAPI JAR f...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
HIGH 7.1	D378FE93-FC98-	Exploit for Cross-site Scripting in Duraspace Dspace_D378FE93-FC98-5313-8A13-05606E93B1E0 # DSpace [![Build Status](https://github.com/DSpace/DSpace/workflows/Build/badge.svg)](https://github.com/DSpace/DSpace/actions?query=workflow%3A...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
CRITICAL 9	6276B3AF-472D-	Exploit for Cross-site Scripting in Xwiki Commons_6276B3AF-472D-5204-999D-C8E1355D5525 # XWiki Commons [XWiki Commons](http://commons.xwiki.org/xwiki/bin/view/Main/) are technical libraries common to several other top level XWiki pro...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
CRITICAL 9.6	1F444329-FF5F-	Exploit for Cross-site Scripting in Xwiki Xwiki-Rendering_1F444329-FF5F-578D-A932-7280A406CCA5 # XWiki Rendering [XWiki Rendering](http://rendering.xwiki.org/xwiki/bin/view/Main/) is a generic Rendering system that converts textual input in ...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
MEDIUM 5.3	8647EB50-4530-	Exploit for CVE-2024-28397_8647EB50-4530-5E8E-BA03-DB4AD8D66089 # CVE-2024-28397-command-execution-poc This vulnerability arises from incomplete sandboxing in js2py, where crafted JavaScript can traverse Python’...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
HIGH 7.5	089E8633-57EA-	Exploit for Path Traversal in Spaceapplications Yamcs_089E8633-57EA-5541-A3D6-6570CC36A4EB # Yamcs Mission Control ![Maven Central](https://img.shields.io/maven-central/v/org.yamcs/yamcs.svg?label=release) * Website: https://yamcs.org * ...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
MEDIUM 6.1	14C2B413-1560-	Exploit for Cross-site Scripting in Antisamy_Project Antisamy_14C2B413-1560-5460-AF74-D9E95868D55B # AntiSamy A library for performing fast, configurable cleansing of HTML coming from untrusted sources. Supports Java 7+. Another way of saying t...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
CRITICAL 9.3	EB484048-BFE6-	Exploit for CVE-2025-32778_EB484048-BFE6-585B-9A92-3600B22D8B68 # CVE-2025-32778 - Web-Check Command Injection Exploit [![Critical](https://img.shields.io/badge/CVSS-9.3-critical)](https://nvd.nist.gov/vuln/det...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT