CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2025-71321	picklescan – Arbitrary File Writing via distutils Module Bypass_CVE-2025-71321 picklescan before 0.0.33 contains an arbitrary file writing vulnerability that allows attackers to bypass the dangerous blocklist by using distutil...	picklescan	picklescan	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2025-71320	picklescan – Remote Code Execution via Incomplete Disallowed Inputs_CVE-2025-71320 picklescan before 0.0.33 contains an incomplete deny-list that fails to block pydoc.locate and operator.methodcaller functions, allowing attackers ...	picklescan	picklescan	Jun 17, 2026	CVE
MEDIUM 4.3	CVE-2025-32748	CVE-2025-32748_CVE-2025-32748 Dell PowerFlex rack, version(s) RCM 3.7/3.7, contain(s) a Host Header Injection vulnerability. An unauthenticated attacker with remote access could...	Dell	PowerFlex rack	Jun 17, 2026	CVE
NONE	AKAMAIBLOG:7F37...	Keep Your Tech FLAME Alive: Trailblazer Katrina Cole_AKAMAIBLOG:7F37F79E3ADFF4F4324213ADDDFF2017 Meet Katrina Cole, an Information Security Consultant who entered tech at age 40. Read her advice for women in tech and her proactive approach to s...	N/A	N/A	Jun 17, 2026	AKAMAIBLOG
NONE	THN:599D838669E...	Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline_THN:599D838669E846120BE835EDC125F058 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhN4ptzzF7u-dzNyOc4F1HsCUbEszvkkeD1ZVl7MHQNXXcUtgqb40Wgodu3aj61QDzaNsX0eJjRDGK1eNJLCb...	N/A	N/A	Jun 17, 2026	THN
NONE	PACKETSTORM:223627	📄 CMSsiam 2 SQL Injection_PACKETSTORM:223627 CMSsiam version 2 suffers from a remote SQL injection vulnerability that allows for login bypass...	N/A	N/A	Jun 17, 2026	PACKETSTORM
HIGH 8.6	PACKETSTORM:223698	📄 Discuz! X5.0 Local File Inclusion_PACKETSTORM:223698 This is a Metasploit auxiliary module targeting a local file inclusion vulnerability in Discuz! X5.0...	N/A	N/A	Jun 17, 2026	PACKETSTORM
NONE	PACKETSTORM:223619	📄 CMS SINDEHOTÉIS 1.2.4 Cross Site Request Forgery_PACKETSTORM:223619 CMS SINDEHOT�IS version 1.2.4 suffers from a cross site request forgery vulnerability...	N/A	N/A	Jun 17, 2026	PACKETSTORM
CRITICAL 9.4	PACKETSTORM:223657	📄 dedoc/scramble 0.13.2 Remote Code Execution_PACKETSTORM:223657 This is a Metasploit exploit module for CVE-2026-44262, an unauthenticated remote code execution vulnerability in the Laravel-based tool dedoc/scra...	N/A	N/A	Jun 17, 2026	PACKETSTORM
HIGH 8.6	PACKETSTORM:223682	📄 Discuz! X5.0 Chained Remote Code Execution_PACKETSTORM:223682 This Metasploit module uses race condition and local file inclusion vulnerabilities in Discuz! X5.0 in order to achieve remote code execution...	N/A	N/A	Jun 17, 2026	PACKETSTORM