Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-50877	CVE-2026-50877_CVE-2026-50877 An issue in Zhoros SuperBin v1.0.0 allows attackers to execute a directory traversal via supplying files with names containing traversal characters.	n/a	n/a n/a	Jun 15, 2026	CVE
CRITICAL 9.8	CVE-2026-50873	CVE-2026-50873_CVE-2026-50873 An arbitrary file upload vulnerability in the attachment handling component of flatnotes v5.5.4 allows attackers to execute arbitrary code via uplo...	flatnotes	flatnotes v5.5.4	Jun 15, 2026	CVE
MEDIUM 5.5	CVE-2026-12162	CVE-2026-12162_CVE-2026-12162 Improper host validation in the social login autofill feature in Devolutions Remote Desktop Manager 2026.2.8 allows an attacker to disclose store...	Devolutions	Remote Desktop Manager 2026.2.0	Jun 15, 2026	CVE
MEDIUM 5.1	CVE-2026-9507	Session fixation vulnerability in Enhancesoft’s osTicket_CVE-2026-9507 A session fixation vulnerability has been identified in osTicket v1.18.2. This security flaw allows an attacker to hijack a victim’s account by kee...	Enhancesoft	osTicket 1.18.2	Jun 16, 2026	CVE
HIGH 8.1	18C8CA41-20FF-	Exploit for CVE-2026-32488_18C8CA41-20FF-5A47-9496-2296CF723F12 CVE-2026-32488 UpdraftPlus Auto-Exploit & Mass Scanner Authorized Use Only — This tool is provided for authorized penetration testing, security res...	N/A	N/A	Jun 16, 2026	GITHUBEXPLOIT
NONE	THN:BFD07474759...	New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds_THN:BFD07474759AAA2F24B28F20F410932F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjF_U2JZgjmQGUfV3q90DEMUgqHK2kqloGQR5lBYn_8UUC2DUIFpJPpCnETlOUh1IldJXcWdr9YZ5hA3yUtZE...	N/A	N/A	Jun 16, 2026	THN
MEDIUM 6.7	THN:E4161CF0FE7...	China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth_THN:E4161CF0FE7CBFEDF9BA789D0C8137DE ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxym2hiE83TbiNOrIeH3s4QCF0wQ_BYcSYPKlC3m9LGSuJnH7UNicbkgIk4kQTbpPiLRul9dSxQ180XW656_...	N/A	N/A	Jun 16, 2026	THN
CRITICAL 9.8	THN:6B787AC9D1F...	Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week_THN:6B787AC9D1F1066F097548000F8A1B03 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisozpc0YfCvHjGAyEZf7c1G10iEOgszA-mkIIrhG3A4VYcq8_Hih8U0hO66iBoDPPJZhfq7Dc3fGTsMLDiFi...	N/A	N/A	Jun 16, 2026	THN
NONE	THN:271AFFB4760...	Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive_THN:271AFFB47608710F51B5D2519F5F6CFC ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjIjJejsRU4njToU8avtW_XwlouRy_HhUCWBUzgTtjb0e-LWzIO6zQprJ_tRqq6KO0Dvn64NNH35d6lYYadq7...	N/A	N/A	Jun 16, 2026	THN
CRITICAL 9.9	0EC1604B-E72F-	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Portainer_0EC1604B-E72F-5EC0-A160-6417C6A48750 CVE-2026-44881 — Portainer Git Symlink → Arbitrary Host File Read Single-script exploit for CVE-2026-44881, a Git symlink injection in Portainer's ...	N/A	N/A	Jun 16, 2026	GITHUBEXPLOIT