HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2025-8912	WellChoose｜Organization Portal System – Arbitrary File Reading through Path Traversal_CVE-2025-8912 Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability, allowing unauthenticated remote attackers to exploi...	WellChoose	Organization Portal System	Aug 13, 2025	CVE
HIGH 7.1	CVE-2025-8914	WellChoose｜Organization Portal System – SQL Injection_CVE-2025-8914 Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary...	WellChoose	Organization Portal System	Aug 13, 2025	CVE
HIGH 8.8	CVE-2025-55345	Unsafe symlink following in restricted workspace-write sandbox leads to RCE_CVE-2025-55345 Using Codex CLI in workspace-write mode inside a malicious context (repo, directory, etc) could lead to arbitrary file overwrite and potentially re...	N/A	N/A	Aug 13, 2025	CVE
HIGH 10	79E3F600-6C9A-	Exploit for CVE-2025-8730_79E3F600-6C9A-5FC3-BA6A-B5ED7F5A6507 ## CVE-2025-8730 – Authentication Bypass in Belkin F9K1009/F9K1010 Author : Byte Reaper ## Description : This repository contains a exp...	N/A	N/A	Aug 8, 2025	GITHUBEXPLOIT
HIGH 8.4	F7C072AF-6292-	Exploit for CVE-2025-8088_F7C072AF-6292-5061-94F0-4CCD2C18A7D2 CVE-2025-8088 Python tool for safe archive handling, path traversal awareness, and secure extraction. Inspired by CVE-2025-8088. Safe Archive Handl...	N/A	N/A	Aug 10, 2025	GITHUBEXPLOIT
HIGH 8.4	B24C95ED-17CC-	Exploit for CVE-2025-8088_B24C95ED-17CC-5F07-AC8C-ABB08162B27A CVE-2025-8088: WinRAR Path Traversal Detection Overview This repository documents research and detection strategies for CVE-2025-8088, a path trave...	N/A	N/A	Aug 11, 2025	GITHUBEXPLOIT
HIGH 8.4	8554EEFB-671E-	Exploit for CVE-2025-8088_8554EEFB-671E-5F42-84A6-FDFF5ACCCC93 WinRAR-CVE-2025-8088-PoC-RAR WinRAR 0day CVE-2025-8088 PoC RAR Archive Place the My_Resume_final.rar in the Downloads Directory and extract using &...	N/A	N/A	Aug 12, 2025	GITHUBEXPLOIT
HIGH 7.5	3565DE25-F143-	Exploit for CVE-2025-50154_3565DE25-F143-5AAE-AAAF-1F5481FBD631 NTLM/SMB Hardening & Threat Hunt Toolkit Author: w01f Version: 1.0 Purpose: Audit, harden, and hunt for insecure NTLM/SMB usage to mitigate ris...	N/A	N/A	Aug 13, 2025	GITHUBEXPLOIT
HIGH 8.8	CVE-2025-6184	Tutor LMS Pro – eLearning and online course solution <= 3.7.0 - Authenticated (Tutor Instructor+) SQL Injection_CVE-2025-6184 The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter u...	themeum	Tutor LMS Pro *	Aug 13, 2025	CVE
HIGH 8.7	CVE-2025-8761	INSTAR 2K+/4K Backend IPC Server denial of service_CVE-2025-8761 A vulnerability has been found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This vulnerability affects unknown code of the component Backend IPC Server....	INSTAR	2K+ 3.11.1 Build 1124	Aug 13, 2025	CVE