Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2026-57527	ZAP ViewState Add-on Insecure Deserialization via JSFViewState.decode()_CVE-2026-57527 Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a pro...	zaproxy	zap-extensions	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57431	WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431 Author Cross Site Scripting (XSS) in Featured Image	Mervin Praison	Featured Image n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57430	WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430 Contributor Broken Access Control in SEOPress PRO	SEOPress Free	SEOPress PRO n/a	Jun 26, 2026	CVE
HIGH 7.1	CVE-2026-57325	WordPress NanoMag theme <= 1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57325 Unauthenticated Cross Site Scripting (XSS) in NanoMag	Jellywp	NanoMag n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57324	WordPress GIFT4U plugin <= 1.0.10 - Broken Access Control vulnerability_CVE-2026-57324 Unauthenticated Broken Access Control in GIFT4U	VillaTheme	GIFT4U n/a	Jun 26, 2026	CVE
MEDIUM 5.8	CVE-2026-57323	WordPress Flash & HTML5 Video plugin <= 2.11.0 - Broken Access Control vulnerability_CVE-2026-57323 Unauthenticated Broken Access Control in Flash & HTML5 Video	bPlugins	Flash & HTML5 Video n/a	Jun 26, 2026	CVE
HIGH 7.1	CVE-2026-57322	WordPress weMail plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2026-57322 Unauthenticated Cross Site Scripting (XSS) in weMail	weDevs	weMail n/a	Jun 26, 2026	CVE
HIGH 7.1	CVE-2026-57321	WordPress H5P plugin <= 1.17.7 - Arbitrary File Deletion vulnerability_CVE-2026-57321 Contributor Arbitrary File Deletion in H5P	icc0rz	H5P n/a	Jun 26, 2026	CVE
HIGH 7.1	CVE-2026-57319	WordPress FOX plugin <= 1.4.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57319 Unauthenticated Cross Site Scripting (XSS) in FOX	RealMag777	FOX n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57318	WordPress Site Reviews plugin <= 8.0.11 - Sensitive Data Exposure vulnerability_CVE-2026-57318 Subscriber Sensitive Data Exposure in Site Reviews	Gemini Labs	Site Reviews n/a	Jun 26, 2026	CVE