CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.1	CVE-2025-69123	WordPress Snow Club theme <= 1.1 - Local File Inclusion vulnerability_CVE-2025-69123 Unauthenticated Local File Inclusion in Snow Club	ThemeREX	Snow Club n/a	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69120	WordPress Dazzle theme <= 1.0.0 - Local File Inclusion vulnerability_CVE-2025-69120 Unauthenticated Local File Inclusion in Dazzle	ThemeREX	Dazzle n/a	Jun 17, 2026	CVE
HIGH 7.5	A3592ABD-E61F-	Exploit for CVE-2024-38819_A3592ABD-E61F-5364-B002-A96843C8D65B CVE-2024-38819 Customer Vault Lab This is a Cloud Foundry-ready Spring Boot demo for CVE-2024-38819, a Spring Framework path traversal vulnerabilit...	N/A	N/A	Jun 17, 2026	GITHUBEXPLOIT
HIGH 8.1	CVE-2025-69115	WordPress LuxMed \| Medicine & Healthcare Doctor WordPress Theme theme <= 1.2.2 - Local File Inclusion vulnerability_CVE-2025-69115 Unauthenticated Local File Inclusion in LuxMed \| Medicine & Healthcare Doctor WordPress Theme	ThemeREX	LuxMed \| Medicine & Healthcare Doctor WordPress Theme n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2025-69111	WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability_CVE-2025-69111 Unauthenticated PHP Object Injection in Reisen	ThemeREX	Reisen 1.4.1	Jun 17, 2026	CVE
HIGH 8.1	CVE-2025-69106	WordPress Imba theme <= 1.5.0 - Local File Inclusion vulnerability_CVE-2025-69106 Unauthenticated Local File Inclusion in Imba	ThemeREX	Imba n/a	Jun 17, 2026	CVE
HIGH 7.1	CVE-2025-68524	WordPress Avante theme < 3.0.5 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2025-68524 Unauthenticated Cross Site Scripting (XSS) in Avante < 3.0.5 versions.	ThemeGoods	Avante n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2025-60236	WordPress Creatify theme <= 1.5 - PHP Object Injection vulnerability_CVE-2025-60236 Deserialization of Untrusted Data vulnerability in EMV Creatify allows Object Injection. This issue affects Creatify: from n/a through 1.5.	EMV	Creatify n/a	Jun 17, 2026	CVE
NONE	HACKREAD:A8E935...	Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It_HACKREAD:A8E935692FBF5A67FFF8EC2F1D7C5FCD London, United Kingdom, 17th June 2026, CyberNewswire	N/A	N/A	Jun 17, 2026	HACKREAD
NONE	HACKREAD:600F85...	152 Chrome Live Wallpaper Extensions Hid Ad Tracking and Fake Search Clicks_HACKREAD:600F85CFBFEFEDE3A0C9B930E7B5C6C1 Socket says the extensions worked as wallpaper tools, but also logged user data, disguised install traffic as Google clicks, and fed ad sites.	N/A	N/A	Jun 17, 2026	HACKREAD