Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.4	CVE-2026-10863	MISP User-controlled order parameter in correlations over-correlation endpoint_CVE-2026-10863 A security issue was fixed in the correlations over-correlation endpoint where the order query parameter was accepted from user-controlled named re...	misp	misp	Jun 4, 2026	CVE
HIGH 7.9	CVE-2026-10860	MISP CRUDComponent delete validation bypass via operator precedence error_CVE-2026-10860 A logic error in the MISP CRUD component delete handler allowed validation failures to be bypassed when requests used the HTTP DELETE method. Due t...	misp	misp	Jun 4, 2026	CVE
LOW 2	CVE-2026-10812	zilliztech GPTCache Cache Key pre.py BufferedReader.peek weak hash_CVE-2026-10812 A vulnerability was detected in zilliztech GPTCache up to 0.1.44. Affected by this issue is the function BufferedReader.peek of the file gptcache/p...	zilliztech	GPTCache 0.1.0	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-10811	itsourcecode Fees Management System receipt.php sql injection_CVE-2026-10811 A security vulnerability has been detected in itsourcecode Fees Management System 1.0. Affected by this vulnerability is an unknown functionality o...	itsourcecode	Fees Management System 1.0	Jun 4, 2026	CVE
NONE	TALOSBLOG:0CBDD...	Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting_TALOSBLOG:0CBDDA6FE6AA56CFD91490686CFCB8FF ![Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f19...	N/A	N/A	Jun 4, 2026	TALOSBLOG
NONE	HACKREAD:8A6DF3...	Lazarus Group Uses npm Brandjacking Campaign to Target Developers_HACKREAD:8A6DF38DFF0EFF16B4CCF1D5AB4EB07B North Korean Lazarus Group targets npm developers with brandjacking packages that mimic trusted tools, drop malware and put credentials at risk.	N/A	N/A	Jun 4, 2026	HACKREAD
NONE	TALOSBLOG:4FD6A...	Winning the cyber marathon with Tony Giandomenico_TALOSBLOG:4FD6AF08F810A780635892806951A9E9 ![Winning the cyber marathon with Tony Giandomenico](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/06/h...	N/A	N/A	Jun 4, 2026	TALOSBLOG
NONE	WALLARMLAB:B815...	Introducing the Wallarm AI Control Platform: One closed loop for AI security and API security._WALLARMLAB:B815072D844BCB0971F28C8A71DB0E45 TL;DR - AI deployment has outpaced AI governance. Most enterprises running AI on AWS cannot answer four basic security questions about w...	N/A	N/A	Jun 4, 2026	WALLARMLAB
HIGH 8.6	THN:A837AA526C5...	ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories_THN:A837AA526C50A8C5953FC687D92743AC ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOsPH2SzhBWTxhXi2KCJw0YY29azn2hLkDQwQhyrjmwaRIXQfCAPNIjej3_TBd6VJm1JqWSs2EoI2jiWyVHE...	N/A	N/A	Jun 4, 2026	THN
NONE	BE09124A-AA08-	llmbias-tse_BE09124A-AA08-51FE-B695-2FA3ACE6110D llmbias-tse Prova de conceito POC do projeto InternetLab × LabDados: coleta automatizada de respostas de ferramentas de IA generativa sobre temas e...	N/A	N/A	Jun 4, 2026	GITHUBEXPLOIT