exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	B1A34079-E8F9-	Exploit for CVE-2026-31694_B1A34079-E8F9-5174-9297-C9EF365CAE42 FUSE readdir cache out-of-bounds write PoC Local proof of concept for a missing bounds check in fs/fuse/readdir.c:fuseadddirenttocache. A FUSE serv...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
NONE	H1:3831432	curl: setopt(VERIFYPEER) from callback bypasses TLS verify on connection reuse_H1:3831432 ## Summary: `Curl_ssl_conn_config_update` overwrites `conn->ssl_config.verifypeer` when `curl_easy_setopt(CURLOPT_SSL_VERIFYPEER, ...)` is called,...	N/A	N/A	Jun 29, 2026	HACKERONE
NONE	IMPERVABLOG:02B...	AI Agents Are Visiting Your Website. Which Ones Should You Trust?_IMPERVABLOG:02B3638CB0833BED533ED6C0178D7199 The internet is changing fast. For years, the main goal of search was simple: to help users find links. A user searched, reviewed results, clicked...	N/A	N/A	Jun 30, 2026	IMPERVABLOG
NONE	SECURELIST:318E...	ToddyCat: your hidden email assistant. Part 2_SECURELIST:318E425764C1762E8EB0EB5B9B2F6150 ![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/06/19083452/toddycat-part-2-featured-image-990x400.jpg) ## Introduction...	N/A	N/A	Jun 30, 2026	SECURELIST
NONE	HACKREAD:F9C96F...	WhatsApp Usernames Will Let You Chat Without Sharing Your Phone Number_HACKREAD:F9C96F0F0C00545F020EAD13425F60F7 WhatsApp is letting users reserve usernames before its 2026 launch, giving people a way to chat without sharing phone numbers. Here is how it works...	N/A	N/A	Jun 30, 2026	HACKREAD
NONE	THN:B2122E08A29...	What the Numbers Say About FIFA 2026 Cyber Risk_THN:B2122E08A297EDF9158A122D018B4FAD ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhEZt1Yxw3eiMzyzPpblDGru8JlEmw-Rr1Lgn8hG9YCvxeCNDpKOCyn5_Evvmc_lB9tKDpcmBLfH3a6mHGkZB...	N/A	N/A	Jun 30, 2026	THN
NONE	H1:3831345	curl: CURLSHOPT_UNSHARE race can cause UAF in shared SSL session cache during HTTPS transfer_H1:3831345 ## Summary `CURLSHOPT_UNSHARE` can free a shared SSL session cache while another thread is starting a normal HTTPS transfer with the same share ha...	N/A	N/A	Jun 29, 2026	HACKERONE
CRITICAL 10	THN:92496BE41BB...	Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer_THN:92496BE41BBB472864D9FF3429DE96A7 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgEid1CxvsX2dPrKoA1VzJ6PUhwrXxvSC4ehRmgyaRRCJlP_MFSeOxvwrT2ODJSbQx3E-7bBwBG4YpP3CQGLz...	N/A	N/A	Jun 30, 2026	THN
CRITICAL 9.8	CVE-2026-9711	EventON – WordPress Virtual Event Calendar Plugin <= 5.0.11 - Unauthenticated Blind SQL Injection via Search Parameter_CVE-2026-9711 The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injection via the WordPress 'search' paramet...	EventON	EventON (Pro) - WordPress Virtual Event Calendar Plugin	Jun 30, 2026	CVE
HIGH 7.2	CVE-2026-8141	Ajax Load More – Filters <= 3.4.1 - Unauthenticated Stored Cross-Site Scripting via 'taxonomy_include_children' Field_CVE-2026-8141 The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxonomy_include_children' parameter in all...	Connekt Media	Ajax Load More - Filters	Jun 30, 2026	CVE