LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.5	CVE-2025-55745	UnoPim Quick Export feature is vulnerable to CSV injection_CVE-2025-55745 UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV...	unopim	unopim < 0.3.1	Aug 22, 2025	CVE
LOW 2.1	CVE-2025-43753	CVE-2025-43753_CVE-2025-43753 A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7,...	Liferay	Portal 7.4.3.32	Aug 21, 2025	CVE
LOW 3.5	CVE-2025-55523	CVE-2025-55523_CVE-2025-55523 An issue in the component /api/download_work_dir_file.py of Agent-Zero v0.8.* allows attackers to execute a directory traversal.	n/a	n/a n/a	Aug 21, 2025	CVE
LOW 2	CVE-2025-9309	Tenda AC10 MD5 Hash shadow hard-coded credentials_CVE-2025-9309 A vulnerability was found in Tenda AC10 16.03.10.13. Affected is an unknown function of the file /etc_ro/shadow of the component MD5 Hash Handler. ...	Tenda	AC10 16.03.10.13	Aug 21, 2025	CVE
LOW 3.5	CVE-2025-47700	AI plugin APIs can be triggered using post actions_CVE-2025-47700 Mattermost Server versions 10.5.x	Mattermost	Mattermost 10.10.0	Aug 21, 2025	CVE
LOW 3.8	CVE-2025-53971	Channel and Team Membership APIs inadvertently allow loss of Member privileges._CVE-2025-53971 Mattermost versions 10.5.x	Mattermost	Mattermost 10.5.0	Aug 21, 2025	CVE
LOW 3.5	CVE-2025-49810	Thread summarization allows persistent access to channel_CVE-2025-49810 Mattermost versions 10.5.x	Mattermost	Mattermost 10.5.0	Aug 21, 2025	CVE
LOW 3.6	22BBAA8D-F2E8-	Exploit for Link Following in 7-Zip_22BBAA8D-F2E8-5CE3-865A-9B091906FF57 🔒 CVE-2025-55188-7z-exploit - Easy Steps to Download and Run 🚀 Getting Started Welcome to CVE-2025-55188-7z-exploit!...	N/A	N/A	Aug 20, 2025	GITHUBEXPLOIT
LOW 2.3	CVE-2025-8448	CVE-2025-8448_CVE-2025-8448 CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause unauthorized access to sensitive credenti...	Schneider Eelctric	EcoStruxureTM Building Operation Enterprise Server Versions prior to 7.0.1	Aug 20, 2025	CVE
LOW 2.7	CVE-2025-2988	IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure_CVE-2025-2988 IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7, 6.2.0.0 through 6.2.0.4, and 6.2.1.0 could disclose sensitive se...	IBM	Sterling B2B Integrator 6.0.0.0	Aug 19, 2025	CVE