CVSS - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.8	CVE-2026-56236	Capgo CLI – Arbitrary File Overwrite via Symlink-Following in Local Credential Operations_CVE-2026-56236 Capgo CLI before 12.128.2 contains arbitrary file overwrite vulnerabilities in login and build credentials operations that follow symlinks without ...	capgo	cli	Jun 21, 2026	CVE
HIGH 7.1	CVE-2026-56229	Capgo – Cross-App Build Job Access via app_id/job_id Mismatch in /build/status and /build/logs_CVE-2026-56229 Capgo before 12.128.2 contains an authorization bypass vulnerability in the /build/status and /build/logs endpoints that allows attackers to access...	Capgo	Capgo	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71378	picklescan – Remote Code Execution via Undetected cProfile.runctx in Pickle Files_CVE-2025-71378 picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowing attackers to execute arbitrary code...	picklescan	picklescan	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71357	picklescan – Arbitrary Code Execution via Undetected idlelib.pyshell.ModifiedInterpreter.runcommand_CVE-2025-71357 picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runcommand in reduce methods. Attackers c...	picklescan	picklescan	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71351	picklescan – Remote Code Execution via timeit.timeit() Detection Bypass_CVE-2025-71351 picklescan before 0.0.25 fails to detect malicious pickle files that use timeit.timeit() in the __reduce__ method, allowing remote code execution. ...	picklescan	picklescan	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71348	picklescan – Arbitrary Code Execution via torch.utils._config_module.load_config Bypass_CVE-2025-71348 picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_config function within reduce methods. ...	picklescan	picklescan	Jun 21, 2026	CVE
NONE	144B1B90-40FE-	sheaf_uaf_144B1B90-40FE-5F65-BB92-30F490B95389 No description provided...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
MEDIUM 6.4	C40A1F53-C56D-	nuclei-template-creator_C40A1F53-C56D-57E9-848D-B707E7916E4C Nuclei Template Creator English \| 中文 A comprehensive skill for creating high-quality Nuclei security scanning templates across all supported prot...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
HIGH 8.8	D301242C-B53B-	Exploit for Code Injection in Anthropic Claude_Code_D301242C-B53B-53BF-A743-4107276D8DCA dotclaude-security Scan a repo's local .claude/ config — settings.json hooks, MCP server defs, env blocks, permissions.allow — for the RCE and API-...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
MEDIUM 5.3	AE467228-AC78-	Exploit for Improper Access Control in Joomla Joomla\!_AE467228-AC78-5F1A-93CF-D381D698C936 No description provided...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT