HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	E87C990D-9E3C-	Exploit for Improper Restriction of Names for Files and Other Resources in Microsoft_E87C990D-9E3C-5866-9E3D-36C66A9C5EEF cve-id ⚡ Simple Usage Use this project only in safe and authorized environments such as: - Local virtual machines - Docker containers - Isolated l...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
HIGH 7.2	CVE-2026-53876	CVE-2026-53876_CVE-2026-53876 RadiX AX6600 WiFi 6 Tri-Band Gaming Router contains an OS command injection vulnerability, which may lead to arbitrary command execution with the r...	Micro-Star International Co., Ltd.	RadiX AX6600 WiFi 6 Tri-Band Gaming Router firmware versions prior to v781521	Jun 17, 2026	CVE
HIGH 7.5	CVE-2026-12360	JetEngine <= 3.8.10.1 - Unauthenticated SQL Injection via Listing Grid Load More AJAX Endpoint_CVE-2026-12360 The JetEngine plugin for WordPress is vulnerable to SQL injection in all versions up to and including 3.8.10.1. The listing_load_more AJAX handler ...	Crocoblock	JetEngine	Jun 17, 2026	CVE
HIGH 8.7	541019B7-F4D6-	Exploit for OS Command Injection in Cisco Nx-Os_541019B7-F4D6-59F7-8E15-0CD67C424E98 CVE-2024-20399 ⚡ Simple Usage Use this project only in safe and authorized environments such as: - Local virtual machines - Docker containers - Is...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
HIGH 8.5	CVE-2026-49113	WordPress Cornerstone plugin < 7.8.8 - Arbitrary Code Execution vulnerability_CVE-2026-49113 Subscriber Arbitrary Code Execution in Cornerstone < 7.8.8 versions.	THEMECO	Cornerstone n/a	Jun 16, 2026	CVE
HIGH 8.5	CVE-2026-49073	WordPress Directorist Booking plugin <= 3.0.3 - SQL Injection vulnerability_CVE-2026-49073 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wpWax Directorist Booking allows Blind SQL In...	wpWax	Directorist Booking n/a	Jun 16, 2026	CVE
HIGH 7.5	CVE-2026-49057	WordPress JobSearch plugin <= 3.2.7 - Broken Access Control vulnerability_CVE-2026-49057 Unauthenticated Broken Access Control in JobSearch	EyeCix Technologies	JobSearch n/a	Jun 16, 2026	CVE
HIGH 7.1	CVE-2026-48869	WordPress Enfold theme <= 7.1.4 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2026-48869 Unauthenticated Cross Site Scripting (XSS) in Enfold	Kriesi	Enfold n/a	Jun 16, 2026	CVE
HIGH 7.5	CVE-2026-48779	ws: Memory exhaustion DoS from tiny fragments and data chunks_CVE-2026-48779 ws is an open source WebSocket client and server for Node.js. All versions from 1.1.0 up to (but not including) 5.2.5, from 6.0.0 up to 6.2.4, from...	websockets	ws >= 1.1.0, < 5.2.5	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40761	WordPress Valeska theme <= 1.2.2 - PHP Object Injection vulnerability_CVE-2026-40761 Unauthenticated PHP Object Injection in Valeska	Edge-Themes	Valeska n/a	Jun 16, 2026	CVE