Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2026-54819	WordPress Listdom plugin <= 5.4.0 - SQL Injection vulnerability_CVE-2026-54819 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Webilia Inc. Listdom allows Blind SQL Injecti...	Webilia Inc.	Listdom n/a	Jun 17, 2026	CVE
HIGH 8.5	CVE-2026-54818	WordPress Slimstat Analytics plugin <= 5.4.11 - SQL Injection vulnerability_CVE-2026-54818 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VeronaLabs Slimstat Analytics allows Blind SQ...	VeronaLabs	Slimstat Analytics n/a	Jun 17, 2026	CVE
MEDIUM 6.5	CVE-2026-54817	WordPress MStore API plugin <= 4.18.4 - Broken Authentication vulnerability_CVE-2026-54817 Authentication Bypass Using an Alternate Path or Channel vulnerability in FluxBuilder MStore API allows Password Recovery Exploitation. This issue...	FluxBuilder	MStore API n/a	Jun 17, 2026	CVE
HIGH 7.5	CVE-2026-54816	WordPress Advanced Ads plugin <= 2.0.21 - Remote Code Execution (RCE) vulnerability_CVE-2026-54816 Improper Control of Generation of Code ('Code Injection') vulnerability in Monetizemore Advanced Ads allows Remote Code Inclusion. This issue affe...	Monetizemore	Advanced Ads n/a	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-54815	WordPress Cargo Shipping Location for WooCommerce plugin <= 5.6 - SQL Injection vulnerability_CVE-2026-54815 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cargo RD Cargo Shipping Location for WooComme...	Cargo RD	Cargo Shipping Location for WooCommerce n/a	Jun 17, 2026	CVE
HIGH 8.1	CVE-2026-54814	WordPress Motors plugin <= 1.4.109 - Local File Inclusion vulnerability_CVE-2026-54814 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in StylemixThemes Motors allo...	StylemixThemes	Motors n/a	Jun 17, 2026	CVE
HIGH 8.5	CVE-2026-54813	WordPress SureDash plugin <= 1.8.0 - SQL Injection vulnerability_CVE-2026-54813 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Brainstorm Force SureDash allows Blind SQL In...	Brainstorm Force	SureDash n/a	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-54809	WordPress GIFT4U plugin <= 1.0.10 - SQL Injection vulnerability_CVE-2026-54809 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VillaTheme GIFT4U allows Blind SQL Injection....	VillaTheme	GIFT4U n/a	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-54808	WordPress WP Travel Gutenberg Blocks plugin <= 3.9.4 - SQL Injection vulnerability_CVE-2026-54808 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel Gutenberg Blocks allows B...	WP Travel	WP Travel Gutenberg Blocks n/a	Jun 17, 2026	CVE
HIGH 7.5	CVE-2026-54417	Integer Overflow in rxi/microtar mtar_next() Causes Infinite Loop DoS_CVE-2026-54417 An integer overflow in the mtar_next() function in src/microtar.c in rxi microtar 0.1.0 allows a remote attacker to cause a denial of service (unco...	rxi	microtar 0.1.0	Jun 17, 2026	CVE