Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	F0B8487B-7038-	ziti-security-report_F0B8487B-7038-5842-89A4-BAAAD38F8053 Ziti Admin Console — Security Report Stored XSS via Role Attributes in Data Tables - Target: ZAC 4.3.0 / Controller 2.0.0 - Type: Stored Cross-Site...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	C347D04E-3B60-	Stored-XSS-via-Role-Attributes_C347D04E-3B60-507D-B15A-514D6C26D589 Ziti Admin Console — Security Report Stored XSS via Role Attributes in Data Tables - Target: ZAC 4.3.0 / Controller 2.0.0 - Type: Stored Cross-Site...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	C2262463-3C54-	AntiXSS_C2262463-3C54-520E-9C2B-2D6AF1BB4E37 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	C622C331-EC9E-	lab-keamanan-siber_C622C331-EC9E-5098-8B21-3E03392AC9F9 Lab Keamanan Siber Web Security Testing Lab 🚀 Cara Menjalankan bash 1. Clone repo git clone https://github.com/adpermana/lab-keamanan-siber.git cd...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
HIGH 8.6	CVE-2026-10521	Authenticated unintended access to critical program parameters_CVE-2026-10521 An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program ...	MB connect line	mbCONNECT24 0.0.0, 2.20.1	Jun 23, 2026	CVE
HIGH 7.5	MS:CVE-2026-12455	Chromium: CVE-2026-12455 Use after free in Tab Strip_MS:CVE-2026-12455 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
NONE	THN:80BBBFC9095...	WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool_THN:80BBBFC909526E3068FBECD0249D285F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgDqA3duB8U44C_MQ5PM061Wch2-j7uRvX_D52lK_2Dsm2lxcquuICTnFZ-dhQiQfxxKTnIJz4tf7ffCupdko...	N/A	N/A	Jun 23, 2026	THN
CRITICAL 9.8	CVE-2026-12866	CVE-2026-12866_CVE-2026-12866 All versions of the package expr-eval are vulnerable to Code Execution via the toJSFunction() API. An attacker can execute arbitrary JavaScript by ...	silentmatt	expr-eval	Jun 23, 2026	CVE
HIGH 7.4	4FC5FF6D-FE23-	Exploit for Improper Certificate Validation in Openssl_4FC5FF6D-FE23-5F05-A381-3D356456D252 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	797EBD67-1F1D-	exploitarium_797EBD67-1F1D-52AD-9793-49716F32B20D Exploitarium A consolidated archive of my public proof-of-concept and vulnerability research writeups. Each folder contains one of my former standa...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT