LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.1	CVE-2025-6592	Creating a permanent account from a temporary account associates temp username and IP address with real username in AbuseLog_CVE-2025-6592 Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue a...	Wikimedia Foundation	AbuseFilter fe0b1cb9e9691faf4d8d9bd80646589f6ec37615	Feb 2, 2026	CVE
LOW 2.1	CVE-2025-6589	With MultiBlocks enabled and a user who is suppressed via a MultiBlock, a user without ‘hideuser’ can see the hidden username in the BlockList_CVE-2025-6589 Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php. ...	Wikimedia Foundation	MediaWiki >= 1.42.0	Feb 2, 2026	CVE
LOW 2.8	CVE-2025-36194	This Power System update is being released to address_CVE-2025-36194 IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 may expose a limited amount of data ...	IBM	PowerVM Hypervisor FW1110.00	Feb 2, 2026	CVE
LOW 2.7	CVE-2025-61643	EventStreams publishes suppressed recent change entries that are suppressed from their creation_CVE-2025-61643 Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/recentchanges/RecentChangeRCFeedNotif...	Wikimedia Foundation	MediaWiki *	Feb 2, 2026	CVE
LOW 1.7	CVE-2025-61641	API list=allpages with maxsize is making really slow queries_CVE-2025-61641 Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/api/ApiQueryAllPages.Php. This issue...	Wikimedia Foundation	MediaWiki *	Feb 2, 2026	CVE
LOW 1.7	CVE-2025-61639	Suppressed blocked IP is visible in Special:BlockList, RC, and other places_CVE-2025-61639 Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with p...	Wikimedia Foundation	MediaWiki *	Feb 2, 2026	CVE
LOW 2	CVE-2026-1703	Limited path traversal when installing wheel archives_CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path trav...	Python Packaging Authority	pip	Feb 2, 2026	CVE
LOW 3.1	CVE-2026-1751	Missing Authorization in GitLab_CVE-2026-1751 A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8 before 18.5.0 that could have allowed unauthorized ed...	GitLab	GitLab 16.8	Feb 2, 2026	CVE
LOW 2.7	CVE-2025-13881	Org.keycloak.services.resources.admin: keycloak: limited administrator can retrieve sensitive user attributes via admin api_CVE-2025-13881 A flaw was found in Keycloak Admin API. This vulnerability allows an administrator with limited privileges to retrieve sensitive custom attributes ...	Red Hat	Red Hat Build of Keycloak	Feb 2, 2026	CVE
LOW 2.7	CVE-2026-1518	Keycloak: blind server-side request forgery (ssrf) via ciba backchannel notification endpoint in keycloak_CVE-2026-1518 A flaw was found in Keycloak’s CIBA feature where insufficient validation of client-configured backchannel notification endpoints could allow blind...	Red Hat	Red Hat Build of Keycloak	Feb 2, 2026	CVE