news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.4	C40A1F53-C56D-	nuclei-template-creator_C40A1F53-C56D-57E9-848D-B707E7916E4C Nuclei Template Creator English \| 中文 A comprehensive skill for creating high-quality Nuclei security scanning templates across all supported prot...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
HIGH 8.8	D301242C-B53B-	Exploit for Code Injection in Anthropic Claude_Code_D301242C-B53B-53BF-A743-4107276D8DCA dotclaude-security Scan a repo's local .claude/ config — settings.json hooks, MCP server defs, env blocks, permissions.allow — for the RCE and API-...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
MEDIUM 5.3	AE467228-AC78-	Exploit for Improper Access Control in Joomla Joomla\!_AE467228-AC78-5F1A-93CF-D381D698C936 No description provided...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
NONE	WIRED:4A26C0483...	A Critical Deadline Is Approaching for Windows and Linux Security_WIRED:4A26C04836FD044D358B83143098AD8C The cryptographic keys that secure your computer's boot sequence will start to expire on June 24. Here's what that means for you.	N/A	N/A	Jun 21, 2026	WIRED
MEDIUM 6.9	CVE-2026-12795	BerriAI litellm SSO Debug Flow ui_sso.py json.dumps missing authentication_CVE-2026-12795 A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/proxy/management_endpoints...	BerriAI	litellm 1.82.0	Jun 21, 2026	CVE
MEDIUM 5.1	CVE-2026-12789	ILIAS Learning Management System Learning Progress Tracking class.ilTrQuery.php executeQueries sql injection_CVE-2026-12789 A vulnerability was identified in ILIAS Learning Management System 11.0. This issue affects the function ilTrQuery::executeQueries of the file comp...	ILIAS	Learning Management System 11.0	Jun 21, 2026	CVE
MEDIUM 5.3	CVE-2026-12788	zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 XML Parser import xml external entity reference_CVE-2026-12788 A vulnerability was determined in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This vulnerability affe...	zhilink 智互联(深圳)科技有限公司	ADP Application Developer Platform 应用开发者平台 1.0.0	Jun 21, 2026	CVE
MEDIUM 5.3	CVE-2026-12787	zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 testConnection Endpoint deserialization_CVE-2026-12787 A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This affects an unknown part...	zhilink 智互联(深圳)科技有限公司	ADP Application Developer Platform 应用开发者平台 1.0.0	Jun 21, 2026	CVE
HIGH 8.5	CVE-2026-12786	Ezbsystems UltraISO Premium Edition Kernel Driver bootpt64.sys access control_CVE-2026-12786 A vulnerability has been found in Ezbsystems UltraISO Premium Edition up to 9.76. Affected by this issue is some unknown functionality in the libra...	Ezbsystems	UltraISO Premium Edition 9.0	Jun 21, 2026	CVE
MEDIUM 5.3	CVE-2026-12799	BerriAI litellm Incomplete Fix CVE-2025-0628 internal_user_endpoints.py ui_view_users improper authorization_CVE-2026-12799 A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this issue is the function ui_view_users of the file litell...	BerriAI	litellm 1.82.0	Jun 21, 2026	CVE