news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.6	CVE-2026-50733	Markdown Preview Enhanced Arbitrary Code Execution via WaveDrom eval()_CVE-2026-50733 Markdown Preview Enhanced before 0.8.28 parses WaveDrom diagrams by evaluating untrusted markdown content with eval(), allowing arbitrary JavaScrip...	shd101wyy	Markdown Preview Enhanced	Jun 5, 2026	CVE
HIGH 8.6	CVE-2026-49493	Markdown Preview Enhanced Arbitrary Code Execution via Bitfield interpretJS()_CVE-2026-49493 Markdown Preview Enhanced before 0.8.28 parses Bitfield fenced code blocks with interpretJS(), which evaluates the block content as code via vm.run...	shd101wyy	Markdown Preview Enhanced	Jun 5, 2026	CVE
HIGH 8.6	CVE-2026-49492	Markdown Preview Enhanced OS Command Injection in External File and Link Opening_CVE-2026-49492 Markdown Preview Enhanced before 0.8.28 opens external files and links from the preview through a shell and does not validate untrusted inputs take...	shd101wyy	Markdown Preview Enhanced	Jun 5, 2026	CVE
CRITICAL 9	CVE-2026-45750	Termix Vulnerable to Arbitrary Command Execution in File Manager_CVE-2026-45750 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the GET /ssh/...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE
HIGH 8.1	CVE-2026-45749	Termix’s TOTP two-factor authentication can be disabled or bypassed using only the account password_CVE-2026-45749 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /users/totp/disable` and `P...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE
CRITICAL 9.8	CVE-2026-45748	Termix Vulnerable to Remote Code Execution via SSH Tunnel Forward Command Injection_CVE-2026-45748 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /ssh/tunnel/connect` endpoi...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE
CRITICAL 9	CVE-2026-45746	Termix Vulnerable to Arbitrary Command Execution via Session Hijacking_CVE-2026-45746 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the File Mana...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE
HIGH 8	CVE-2026-45745	Termix has improper certificate validation in Electron desktop client that enables MITM credential/token theft_CVE-2026-45745 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Starting in version 1.7.0, Termix Des...	Termix-SSH	Termix >= 1.7.0, <= 2.2.1	Jun 5, 2026	CVE
CRITICAL 9.9	CVE-2026-45744	Termix has an OS Command Injection in File Manager resolvePath endpoint_CVE-2026-45744 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the GET /ssh/...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE
HIGH 8.1	CVE-2026-45743	Termix has a File-Manager Session Hijack via Missing Ownership Check (IDOR)_CVE-2026-45743 Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. 16 file-manager endpoints in Termix p...	Termix-SSH	Termix < 2.3.2	Jun 5, 2026	CVE