tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	SECURELIST:59AB...	Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk_SECURELIST:59ABC8E589877ACBAFDBEA8F2AECB67A ![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/06/15123933/Steam_wallpaper-990x400.jpg) Since late 2025, malware has b...	N/A	N/A	Jun 16, 2026	SECURELIST
NONE	MALWAREBYTES:05...	Deepfake posting sites depicting famous women taken down by feds_MALWAREBYTES:052FA1FB7905ED1BFDBAA4881F45F290 Thanks to Uncle Sam, anyone trying to find nonconsensual intimate deepfakes on CFake.com and SOCFake.com will be disappointed. The US Departments o...	N/A	N/A	Jun 16, 2026	MALWAREBYTES
NONE	HACKREAD:5FAB2E...	Best of Android Fax Apps: Top 5 Secure Picks for 2026_HACKREAD:5FAB2E0CFD68C1C8384CA8346B5861FD Discover the best of Android fax apps to send and receive secure documents on the go. Compare Municorn Fax App, Fax.Plus, and other top Android tools.	N/A	N/A	Jun 16, 2026	HACKREAD
NONE	SCHNEIER:325D80...	Flock Cameras Are Being Used for Stalking_SCHNEIER:325D80C26916934E28A1A48C7DC29672 There are over a dozen cases around the country where police officers are using the Flock surveillance camera system to obsessively and illegally s...	N/A	N/A	Jun 16, 2026	SCHNEIER
HIGH 8.1	CVE-2026-8442	WP Review Slider Pro <= 12.6.8 - Authenticated (Subscriber+) Arbitrary File Deletion via 'myaction' Parameter_CVE-2026-8442 The WP Review Slider Pro plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to and including 12.6.8. This is due to missi...	https://wpreviewslider.com/	WP Review Slider Pro	Jun 16, 2026	CVE
HIGH 7.5	CVE-2026-8176	LatePoint <= 5.5.1 - Authenticated (Agent+) Privilege Escalation to Administrator via IDOR in OsOrdersController::create_or_update + Unauthenticated Customer-Cabinet Password Reset_CVE-2026-8176 The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation to Administrator in ...	latepoint	LatePoint – Calendar Booking Plugin for Appointments and Events	Jun 16, 2026	CVE
HIGH 8.8	CVE-2026-5416	Command Injection via name parameter_CVE-2026-5416 Due to the improper neutralization of special elements used in a name parameter a low privileged remote attacker can exploit a command injection vu...	TURCK	TBEN-LL-SE-M2 0.0.0	Jun 16, 2026	CVE
HIGH 7.1	CVE-2026-54198	WordPress Media LIbrary Assistant plugin <= 3.35 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2026-54198 Unauthenticated Cross Site Scripting (XSS) in Media LIbrary Assistant	David Lingren	Media LIbrary Assistant n/a	Jun 16, 2026	CVE
MEDIUM 6.5	CVE-2026-54197	WordPress GetGenie plugin <= 4.4.1 - Sensitive Data Exposure vulnerability_CVE-2026-54197 Unauthenticated Sensitive Data Exposure in GetGenie	Wpmet	GetGenie n/a	Jun 16, 2026	CVE
HIGH 7.1	CVE-2026-54191	WordPress Pods plugin <= 3.3.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-54191 Unauthenticated Cross Site Scripting (XSS) in Pods	Pods Framework	Pods n/a	Jun 16, 2026	CVE