Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.4	CVE-2026-46326	iio: pressure: mprls0025pa: fix spi_transfer struct initialisation_CVE-2026-46326 In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spi_transfer struct initialisation Make sure ...	Linux	Linux a0858f0cd28e822b91376ae288d5548bc1847531	Jun 9, 2026	CVE
CRITICAL 9.8	CVE-2026-46325	RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE_CVE-2026-46325 In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE The curren...	Linux	Linux 592627ccbdff0ec6fff00fc761142a76db750dd4	Jun 9, 2026	CVE
MEDIUM 6.8	CVE-2026-54421	CVE-2026-54421_CVE-2026-54421 In OpenStack Ironic through 35.0.1, when applying a PATCH to update fields in volume properties the user is authorized for, Ironic can return unred...	OpenStack	Ironic	Jun 14, 2026	CVE
HIGH 8.5	CVE-2026-54420	CVE-2026-54420_CVE-2026-54420 LiteSpeed cPanel plugin before 2.4.8 (as distributed in LiteSpeed WHM PlugIn before 5.3.2.0) mishandles symlinks provided by a user with FTP or web...	LiteSpeed Technologies	cPanel Plugin 2.3	Jun 14, 2026	CVE
MEDIUM 5.3	1875515F-1163-	Exploit for Unchecked Input for Loop Condition in Isc Bind_1875515F-1163-510B-A697-82A204A481CB CVE-2026-5950 - BIND 9 Resolver DoS Research notes and defensive guidance for CVE-2026-5950, an unbounded resend loop vulnerability in the BIND 9 r...	N/A	N/A	Jun 14, 2026	GITHUBEXPLOIT
MEDIUM 5.1	CVE-2026-12175	CodeAstro Student Attendance Management System createStudents.php sql injection_CVE-2026-12175 A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Adm...	CodeAstro	Student Attendance Management System 1.0	Jun 13, 2026	CVE
MEDIUM 5.3	CVE-2026-12176	SourceCodester CET Automated Grading System with AI Predictive Analytics index.php cross site scripting_CVE-2026-12176 A vulnerability has been found in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. The impacted element is an unknown ...	SourceCodester	CET Automated Grading System with AI Predictive Analytics 1.0	Jun 13, 2026	CVE
NONE	82747345-EE8B-	OffSploit_82747345-EE8B-5EC0-928C-84E541E0C8DB OffSploit: Autonomous Exploit Adaptation & C2 Framework OffSploit is an advanced, autonomous Red Team and penetration testing framework designed to...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
NONE	6D7408A2-2122-	POC_cve_2026_35273_6D7408A2-2122-5A74-A614-E322984ACCEE POCcve202635273 Universal Unauthenticated RCE via PeopleSoft SSRF Usage Examples : bash Basic command execution python3 exploit.py -u https://any-u...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
NONE	H1:3795615	curl: Duplicate chunked Transfer-Encoding lets a malicious origin smuggle a response across reused HTTP proxy connections_H1:3795615 ## TL;DR A malicious HTTP origin can send `Transfer-Encoding: chunked, chunked, gzip` through a reusable HTTP proxy connection to bypass curl's "c...	N/A	N/A	Jun 11, 2026	HACKERONE