Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	193F2529-54C3-	Portswigger-lab_193F2529-54C3-5081-92C5-8D6E4981632A PortSwigger Web Security Academy Lab Notes This repository contains my personal lab notes and reports for the PortSwigger Web Security Academy. The...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
NONE	5351D8F8-B557-	ExploitDev_5351D8F8-B557-5074-B9D7-5C6DCCE6D4BE Assembly Code Compilation & Shell Generation Follow the steps below to compile your assembly code and generate the shell: 1. Compiling the Assembly...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
CRITICAL 9.8	515FB960-2EB4-	Exploit for OS Command Injection in Buffalo Open_Xdmod_515FB960-2EB4-5167-8796-0AA62D6B62A4 CVE-2026-45777 CVE-2026-45777 PoC...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
NONE	MSSECURE:1549AE...	AI is accelerating cyberattacks—here’s how to stay ahead_MSSECURE:1549AE8FADF9891A27784E552D458E76 In March, we wrote that identity security has become the new pressure point for modern cyberattacks. Since then, AI has only increased that pressur...	N/A	N/A	Jun 17, 2026	MSSECURE
NONE	MSSECURE:51720D...	Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report_MSSECURE:51720D71A6AB104D61508E67146C5E26 We are excited to share that Microsoft has been named a Leader inThe Forrester Wave™: Extended Detection and Response Platforms, Q2 2026. M...	N/A	N/A	Jun 17, 2026	MSSECURE
CRITICAL 9.1	CVE-2026-36418	CVE-2026-36418_CVE-2026-36418 JimuReport versions 2.3.4 and below are vulnerable to remote code execution due to improper handling of Aviator expressions. The /jmreport/executeS...	n/a	n/a n/a	Jun 17, 2026	CVE
HIGH 8.4	CVE-2025-26240	CVE-2025-26240_CVE-2025-26240 In JazzCore python-pdfkit 1.0.0, the from_string method enables the execution of JavaScript code within the context of the server application and t...	n/a	n/a n/a	Jun 17, 2026	CVE
HIGH 7.4	CVE-2026-9697	undici vulnerable to TLS certificate validation bypass via dropped requestTls in SOCKS5 ProxyAgent_CVE-2026-9697 Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (socks5:// or socks://). The target HTTPS ...	undici	undici 7.23.0	Jun 17, 2026	CVE
MEDIUM 5.9	CVE-2026-9679	undici vulnerable to HTTP header injection via Set-Cookie percent-decoding_CVE-2026-9679 Impact: undici's cookie parser in parseSetCookie percent-decodes cookie values via qsUnescape, turning encoded sequences like %0D%0A, %00, %3B, and...	undici	undici	Jun 17, 2026	CVE
MEDIUM 5.9	CVE-2026-9678	undici vulnerable to cross-user information disclosure via shared cache whitespace bypass_CVE-2026-9678 Impact: Undici's cache interceptor incorrectly classifies some responses as cacheable when the upstream Cache-Control header uses whitespace-padded...	undici	undici 7.0.0	Jun 17, 2026	CVE