tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2026-21837	HCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management API_CVE-2026-21837 HCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management API. An attacker may execute arbitrary...	HCLSoftware	Digital Experience 9.5	Jun 5, 2026	CVE
MEDIUM 6.1	CVE-2026-21826	HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection_CVE-2026-21826 HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host heade...	HCLSoftware	Digital Experience & DX Compose 9.5	Jun 5, 2026	CVE
MEDIUM 6.1	CVE-2026-21825	HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center_CVE-2026-21825 HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center. An attacker could execute...	HCLSoftware	DX Compose 9.5	Jun 5, 2026	CVE
MEDIUM 6.4	CVE-2026-10732	CVE-2026-10732_CVE-2026-10732 All versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP archive conta...	n/a	decompress	Jun 5, 2026	CVE
HIGH 7.8	9FE892C1-2347-	Exploit for Double Free in Microsoft_9FE892C1-2347-5D92-9FE3-8227B56D4622 CVE-2026-26179 PoC for CVE-2026-26179 / ZDI-26-276, my very own Secure Kernel bug. I'm well aware that I have a dedicated repository for my vulnera...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
NONE	THN:51F8DAC1E19...	PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network_THN:51F8DAC1E193E414EB3FF79AC2684016 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibu0mX9Tusu3siXFJzPskfA1ZYZ2OdRJTegsJFkffBc9cBBPGWguTUAI3PPAaFy-WIjziA9PIrMrZNVuFVNm...	N/A	N/A	Jun 5, 2026	THN
NONE	3F7376C1-CE9F-	Kernel-Dojo-Labs_3F7376C1-CE9F-5F14-9701-5E3C1C613D73 Kernel-Dojo Lab An interactive practice environment for the Kernel-Exploit-Dojo challenge archive. Pick any of the 112+ Linux kernel CTF challenges...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
HIGH 10	A7A90EE8-8AB4-	Exploit for OS Command Injection in Vsftpd_Project Vsftpd_A7A90EE8-8AB4-5A6C-B232-E81EB21F6397 vsftpd 2.3.4 Backdoor Exploit A small, dependency-free Python 3 exploit for the vsftpd 2.3.4 backdoor CVE-2011-2523. It triggers the backdoor over ...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
CRITICAL 9.8	C38CCF85-8514-	Exploit for Missing Authentication for Critical Function in Mcpjam Inspector_C38CCF85-8514-59A1-A7BA-090EC4E421AC CVE-2026-23744-MCPJAM-RCE-exploit This Python proof-of-concept targets a vulnerable MCP Model Context Protocol service exposed by the target applic...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
HIGH 7.3	CVE-2026-50593	CVE-2026-50593_CVE-2026-50593 Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offs...	Graphite project	Graphite	Jun 5, 2026	CVE