packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	PACKETSTORM:214431	📄 MCPJam 1.4.2 Command Injection_PACKETSTORM:214431 This Metasploit exploit module targets the MCP Model Context Protocol server, specifically exploiting a command injection vulnerability in the /api...	N/A	N/A	Jan 27, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:214433	📄 PLY 3.11 Arbitrary Code Execution_PACKETSTORM:214433 An undocumented and unsafe feature in the PyPI‑distributed version of PLY version 3.11 allows arbitrary code execution when the yacc function is in...	N/A	N/A	Jan 27, 2026	PACKETSTORM
MEDIUM 5.3	PACKETSTORM:214349	📄 Juniper JunOS 23.4 Module Scanner / Exploitation Framework_PACKETSTORM:214349 This PHP script is a modular scanner and exploitation framework targeting Juniper JunOS CVE‑2023‑36846, an arbitrary file upload vulnerability due ...	N/A	N/A	Jan 26, 2026	PACKETSTORM
NONE	PACKETSTORM:214351	📄 ManageEngine DeviceExpert 5.6 Traversal / Code Execution_PACKETSTORM:214351 Proof of concept exploit for ManageEngine DeviceExpert version 5.6 that injects PHP code into a user agent and uses a path traversal vulnerability ...	N/A	N/A	Jan 26, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:214347	📄 GNU Inetutils 2.7 telnet Privilege Escalation_PACKETSTORM:214347 Although Packet Storm has multiple exploits relating to this issue, this advisory keeps the details on the GNU Inetutils 2.7 telnetd privilege esca...	N/A	N/A	Jan 26, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:214212	📄 Apache bRPC 1.14.0 Command Injection_PACKETSTORM:214212 Apache bRPC versions 1.14.0 and below proof of concept command injection exploit that leverages exposed pprof endpoints...	N/A	N/A	Jan 23, 2026	PACKETSTORM
MEDIUM 4.3	PACKETSTORM:214281	📄 RPi-Jukebox-RFID 2.8.0 Command Injection_PACKETSTORM:214281 RPi-Jukebox-RFID version 2.8.0 proof of concept command injection exploit that leverages /phoniebox/api/playlist/shuffle.php...	N/A	N/A	Jan 23, 2026	PACKETSTORM
CRITICAL 10	PACKETSTORM:214117	📄 Cisco ISE 3.4 Code Execution / Privilege Escalation / Shell Upload_PACKETSTORM:214117 An unauthenticated file upload vulnerability was identified in the administrative file upload endpoint of Cisco ISE version 3.4 patch 1. The applic...	N/A	N/A	Jan 21, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:214133	📄 Splunk Enterprise 8.2.9 / 9.0.2 Remote Code Execution_PACKETSTORM:214133 This Metasploit module exploits a remote code execution vulnerability in Splunk Enterprise. An attacker can inject arbitrary Python code into style...	N/A	N/A	Jan 21, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:214134	📄 Splunk Enterprise 9.1.5 / 9.2.2 Remote Code Execution_PACKETSTORM:214134 This Metasploit module exploits a remote code execution vulnerability in Splunk Enterprise splunkarchiver application. The flaw is rooted in the un...	N/A	N/A	Jan 21, 2026	PACKETSTORM