exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.3	CVE-2026-0057	CVE-2026-0057_CVE-2026-0057 In Contacts Provider, there is a possible way to access an incoming call's phone number and associated metadata due to a missing permission check. ...	Google	Android 17	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69126	WordPress Fortius theme <= 2.3.0 - Local File Inclusion vulnerability_CVE-2025-69126 Unauthenticated Local File Inclusion in Fortius	ThemeREX	Fortius n/a	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69123	WordPress Snow Club theme <= 1.1 - Local File Inclusion vulnerability_CVE-2025-69123 Unauthenticated Local File Inclusion in Snow Club	ThemeREX	Snow Club n/a	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69120	WordPress Dazzle theme <= 1.0.0 - Local File Inclusion vulnerability_CVE-2025-69120 Unauthenticated Local File Inclusion in Dazzle	ThemeREX	Dazzle n/a	Jun 17, 2026	CVE
HIGH 7.5	A3592ABD-E61F-	Exploit for CVE-2024-38819_A3592ABD-E61F-5364-B002-A96843C8D65B CVE-2024-38819 Customer Vault Lab This is a Cloud Foundry-ready Spring Boot demo for CVE-2024-38819, a Spring Framework path traversal vulnerabilit...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
HIGH 8.1	CVE-2025-69115	WordPress LuxMed \| Medicine & Healthcare Doctor WordPress Theme theme <= 1.2.2 - Local File Inclusion vulnerability_CVE-2025-69115 Unauthenticated Local File Inclusion in LuxMed \| Medicine & Healthcare Doctor WordPress Theme	ThemeREX	LuxMed \| Medicine & Healthcare Doctor WordPress Theme n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2025-69111	WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability_CVE-2025-69111 Unauthenticated PHP Object Injection in Reisen	ThemeREX	Reisen 1.4.1	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69106	WordPress Imba theme <= 1.5.0 - Local File Inclusion vulnerability_CVE-2025-69106 Unauthenticated Local File Inclusion in Imba	ThemeREX	Imba n/a	Jun 17, 2026	CVE
HIGH 7.1	CVE-2025-68524	WordPress Avante theme < 3.0.5 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2025-68524 Unauthenticated Cross Site Scripting (XSS) in Avante < 3.0.5 versions.	ThemeGoods	Avante n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2025-60236	WordPress Creatify theme <= 1.5 - PHP Object Injection vulnerability_CVE-2025-60236 Deserialization of Untrusted Data vulnerability in EMV Creatify allows Object Injection. This issue affects Creatify: from n/a through 1.5.	EMV	Creatify n/a	Jun 17, 2026	CVE