MEDIUM - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.3	CVE-2026-57284	CVE-2026-57284_CVE-2026-57284 Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through the Pipeline Snippet Ge...	Jenkins Project	Jenkins Pipeline: Groovy Plugin	Jun 24, 2026	CVE
MEDIUM 4.3	CVE-2026-57283	CVE-2026-57283_CVE-2026-57283 A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate...	Jenkins Project	Jenkins Pipeline: Groovy Plugin	Jun 24, 2026	CVE
MEDIUM 5	CVE-2026-57282	CVE-2026-57282_CVE-2026-57282 Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a generated SSH wrapper...	Jenkins Project	Jenkins Git client Plugin	Jun 24, 2026	CVE
MEDIUM 4.6	CVE-2026-50699	Frappe Framework 17.0.0-dev – Stored XSS in Auto Repeat dashboard schedule rendering_CVE-2026-50699 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev. An authenticated attacker with write access to Aut...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE
MEDIUM 4.6	CVE-2026-50698	Frappe Framework 17.0.0-dev – Stored XSS in Audit Trail template rendering_CVE-2026-50698 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled i...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE
MEDIUM 6.3	CVE-2026-11877	Missing Authorization Vulnerability in OpenText Access Manager_CVE-2026-11877 An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. This issue affects Access Manager before ...	OpenText	Access Manager 5.1	Jun 24, 2026	CVE
MEDIUM 4.8	CVE-2026-50712	Frappe Framework 17.0.0-dev – Stored XSS in Tree View node label rendering_CVE-2026-50712 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled i...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE
MEDIUM 4.6	CVE-2026-50711	Frappe Framework 17.0.0-dev – Stored XSS in Number Card filter fields rendering_CVE-2026-50711 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled i...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE
MEDIUM 4.6	CVE-2026-50710	Frappe Framework 17.0.0-dev – Stored XSS via eval in Number Card filters_config_CVE-2026-50710 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to unsafe evaluation of user-controlled data in...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE
MEDIUM 4.8	CVE-2026-50709	Frappe Framework 17.0.0-dev – Stored XSS in Notifications Events color rendering_CVE-2026-50709 A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled i...	Frappe	Frappe Framework 17.0.0-dev	Jun 24, 2026	CVE