CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.4	CVE-2026-4764	Privilege Escalation in Dialogflow CX via Playbook Import_CVE-2026-4764 A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user w...	Google Cloud	Dialogflow CX	Jun 11, 2026	CVE
CRITICAL 9.8	CVE-2026-7852	Unrestricted File Upload in Limatek’s LimRAD NAC_CVE-2026-7852 Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc. LimRAD NAC allows Remote Code Inclusion. This issue affects L...	Limatek System Inc.	LimRAD NAC before 5.5.7.3.9	Jun 11, 2026	CVE
CRITICAL 9.8	19E0D94A-E2E8-	Exploit for CVE-2026-7458_19E0D94A-E2E8-5EDF-91D0-9D413694423C 🧨 CVE-2026-7458 – PickPlugins User Verification OTP Bypass Unauthenticated Authentication Bypass via Loose Comparison in OTP Verification REST API...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	79541384-47A5-	Exploit for CVE-2025-6440_79541384-47A5-592D-A5A6-0CDB62D82608 🧨 CVE-2025-6440 – WooCommerce Designer Pro Unrestricted File Upload Unauthenticated Arbitrary File Upload via wcdpsavecanvasdesignajax WooCommerce...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	9DB3988A-A1AC-	Exploit for CVE-2026-23550_9DB3988A-A1AC-5A76-BAFF-A614766C18D9 🧨 CVE-2026-23550 – Modular Connector Admin Bypass Unauthenticated WordPress Admin Login via origin=mo Parameter Modular Connector Plugin ≤ 2.5.1 -...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	3A214513-27F6-	Exploit for Code Injection in Phpunit_Project Phpunit_3A214513-27F6-566A-A861-1A2241A825C8 CVE-2017-9841 — PHPUnit Remote Code Execution RCE PoC ⚠️ DISCLAIMER: This tool is intended solely for educational purposes and authorized security ...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	1DB33557-ED5A-	Exploit for Code Injection in Phpunit_Project Phpunit_1DB33557-ED5A-5DFC-8001-A087CD793210 CVE-2017-9841 — PHPUnit Remote Code Execution RCE PoC ⚠️ DISCLAIMER: This tool is intended solely for educational purposes and authorized security ...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CVE-2026-35273	CVE-2026-35273_CVE-2026-35273 Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Management). Supported versions...	Oracle Corporation	PeopleSoft Enterprise PeopleTools 8.61, 8.62	Jun 11, 2026	CVE
CRITICAL 9.1	BD6FBA2A-C9D0-	0day_BD6FBA2A-C9D0-5CA6-95F7-FEE1045D9EEC 0day Due to well-known reasons, the original repository was deleted, but a copy remains. Forking and stargazing counts as zero. However, rest assur...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.6	CVE-2026-46703	BoxLite: Path Traversal Vulnerability in boxlite Leads to Arbitrary File Write on the Host_CVE-2026-46703 Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untruste...	boxlite-ai	boxlite < 0.9.0	Jun 10, 2026	CVE