news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:80BBBFC9095...	WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool_THN:80BBBFC909526E3068FBECD0249D285F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgDqA3duB8U44C_MQ5PM061Wch2-j7uRvX_D52lK_2Dsm2lxcquuICTnFZ-dhQiQfxxKTnIJz4tf7ffCupdko...	N/A	N/A	Jun 23, 2026	THN
CRITICAL 9.8	CVE-2026-12866	CVE-2026-12866_CVE-2026-12866 All versions of the package expr-eval are vulnerable to Code Execution via the toJSFunction() API. An attacker can execute arbitrary JavaScript by ...	silentmatt	expr-eval	Jun 23, 2026	CVE
HIGH 7.4	4FC5FF6D-FE23-	Exploit for Improper Certificate Validation in Openssl_4FC5FF6D-FE23-5F05-A381-3D356456D252 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	797EBD67-1F1D-	exploitarium_797EBD67-1F1D-52AD-9793-49716F32B20D Exploitarium A consolidated archive of my public proof-of-concept and vulnerability research writeups. Each folder contains one of my former standa...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
HIGH 8.8	40AD62F4-D694-	Exploit for CVE-2021-37840_40AD62F4-D694-54A9-B440-BB6C6844A2AE aaPanel: Vendors Don't Always Fix Things Properly An incomplete fix for CVE-2021-37840 still exposes 3.6M servers to root RCE, 5 years later Discov...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	2C0B8572-E143-	Doperationtool_2C0B8572-E143-5F19-89F5-502C0CDC6873 Doperationtool Doperationtool is a local security operations desktop tool built using Go and Wails. It is designed for daily tasks such as organizi...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	70C8189B-4F36-	dirtyfrag-cve-2026_70C8189B-4F36-5A97-ACB0-D640A24C24C0 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
CRITICAL 9.8	E92487F1-C41D-	Exploit for CVE-2020-11651_E92487F1-C41D-50E2-969D-FE49942DB8B4 This is an updated verison original git clone https://github.com/jasperla/CVE-2020-11651-poc.git cd CVE-2020-11651-poc when i was using original i ...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
CRITICAL 9.8	DF994407-02A8-	Exploit for Path Traversal in Apache Http_Server_DF994407-02A8-5D7C-9D23-8887B2A2951D CVE-2021-41773 — PoC: Path Traversal + RCE via modcgi Solo para uso en entornos controlados y propios. No usar contra sistemas sin autorización. --...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
HIGH 8.3	MS:CVE-2026-12464	Chromium: CVE-2026-12464 Use after free in Browser_MS:CVE-2026-12464 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE