exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	3BCADBAC-E6C7-	Exploit for Prototype Pollution in Cure53 Dompurify_3BCADBAC-E6C7-5B3A-84E1-6938398220F9 DOMPurify re-clone bypass. Instead of relying on easily stripped source comments or version variables, this tool performs logic fingerprinting on m...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	MSF:EXPLOIT-MULTI-	Gogs Git Rebase Argument Injection RCE_MSF:EXPLOIT-MULTI-HTTP-GOGS_REBASE_RCE- This module exploits an argument injection vulnerability in the pull request merge flow of Gogs is parsed by Git as the --exec flag rather than a p...	N/A	N/A	Jun 3, 2026	METASPLOIT
CRITICAL 9.2	8AD1A192-E34A-	Exploit for CVE-2026-42945_8AD1A192-E34A-5E8C-A3B9-4AAECCED2A20 No description provided...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
MEDIUM 6.5	243CDB42-BE28-	Exploit for CVE-2026-2256_243CDB42-BE28-5810-BB45-078630950EB9 CVE-2026-2256-Threat-Model----ms-agent-Command-Injection...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:25...	We found this fake-invoice campaign while scammers were still building it_MALWAREBYTES:25837C9966B4BAC9D5751BE5031B9FC8 A new batch of fake payment invoices is being staged right now, and we caught the campaign while it was still being put together. The emails impers...	N/A	N/A	Jun 3, 2026	MALWAREBYTES
NONE	WIRED:1EAF5DF8A...	xAI Asks Court to Strip Alleged Grok Deepfake Nudes Victims of Anonymity_WIRED:1EAF5DF8A74C5E2543ACF401BFDFAF11 Four people suing Elon Musk's AI firm under pseudonyms due to the risks of being identified may face a difficult choice: Reveal your real names, or...	N/A	N/A	Jun 3, 2026	WIRED
MEDIUM 5.3	CVE-2026-42507	Arbitrary inputs are included in errors without any escaping in net/textproto_CVE-2026-42507 When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject ...	Go standard library	net/textproto	Jun 2, 2026	CVE
NONE	THN:39C53E79409...	WhatsApp, Slack Notifications Could Hijack Google Gemini on Android_THN:39C53E7940941BA527D7D41B5E56D8C8 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjCJpW9I-QTgQOkP7AV3rwUtEOEs96ek2ySR06Go-xq5AThZV84qY3mDN1Dkh0oQ-94jZHc7zB21ax9ljU0dW...	N/A	N/A	Jun 3, 2026	THN
NONE	420BEB65-BD63-	Exploit for CVE-2026-26897_420BEB65-BD63-521E-90B1-5065E05B96C0 EcoOnline EHS Android — Deep Link Validation Bypass → WebView Open Redirect CVE-2026-26897 Public disclosure / advisory for CVE-2026-26897, a deep ...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
MEDIUM 6.5	CVE-2026-35718	CVE-2026-35718_CVE-2026-35718 A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers t...	n/a	n/a n/a	Jun 2, 2026	CVE