tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	MALWAREBYTES:8D...	Elite network says it was hacked after members’ personal data was left exposed_MALWAREBYTES:8DD20C3A275E37B4123FD763E33A138B Some organizations exist to be exclusive. They're invite-only, and discreet, the kind of place where the membership directory is the product. Dia...	N/A	N/A	Jun 25, 2026	MALWAREBYTES
LOW 2	CVE-2026-56130	Apache Shiro: Remember-me cookie isn’t checked for expiry on the server_CVE-2026-56130 "Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, ...	Apache Software Foundation	Apache Shiro 1.2.4	Jun 25, 2026	CVE
HIGH 8.2	CVE-2026-56091	Apache Shiro: Authentication bypass in Guice-Web integration_CVE-2026-56091 When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. ...	Apache Software Foundation	Apache Shiro	Jun 25, 2026	CVE
MEDIUM 6.4	CVE-2026-54226	Apache Kvrocks: RESTORE IntSet Integer Overflow Leads to Remote DoS_CVE-2026-54226 A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.6.0 through 2.15.0. Users are recommended to upgrade to version 2.16...	Apache Software Foundation	Apache Kvrocks 2.6.0	Jun 25, 2026	CVE
CRITICAL 10	CVE-2026-46752	Apache Kvrocks: Stack buffer overflow in Lua bit.tohex()_CVE-2026-46752 Redis Lua HEAP overflow in cjson library vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.0.4 through 2.15.0. Users are...	Apache Software Foundation	Apache Kvrocks 2.0.4	Jun 25, 2026	CVE
MEDIUM 5.5	CVE-2026-46751	Apache Kvrocks: Does not remove the unsafe loadstring function from its Lua sandbox, allowing a user who can run EVAL scripts to load crafted, unvalidated bytecode that crashes the server process, resulting in a remote denial of service._CVE-2026-46751 A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.2.0 through 2.15.0. Users are recommended to upgrade to version 2.16...	Apache Software Foundation	Apache Kvrocks 2.2.0	Jun 25, 2026	CVE
LOW 2.4	CVE-2026-45188	Apache Kvrocks: Replication Fullsync Path Traversal via Unvalidated Filename Handling_CVE-2026-45188 Relative Path Traversal vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.15.0. Users are recommended to u...	Apache Software Foundation	Apache Kvrocks 1.0.0	Jun 25, 2026	CVE
CRITICAL 9.4	CVE-2026-41566	Apache Kvrocks: Improper permission for the APPLYBATCH command_CVE-2026-41566 Improper Handling of Insufficient Permissions or Privileges vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: 2.8.0. Users are ...	Apache Software Foundation	Apache Kvrocks 2.8.0	Jun 25, 2026	CVE
CRITICAL 10	6FF93997-10DF-	Log4Shell-Minecraft-Server_6FF93997-10DF-5D5F-9AC2-DE93E4033318 Java Unmarshaller Security - Turning your data into code execution If you came here for Log4Shell/CVE-2021-44228, you may want to read about the ex...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	CE9791CB-E538-	termux-tx_CE9791CB-E538-5D96-BCA4-69E71F34733F TX — Termux eXecutive 🚀 Advanced Cybersecurity CLI Tool for Termux & Linux Automation · OSINT · Scanning · Exploitation · Anonymity · System Power...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT