CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.1	CVE-2026-8406	openSIS Classic 9.3 – Insecure Direct Object Reference in Sent Mail_CVE-2026-8406 openSIS Classic 9.3 contains an insecure direct object reference vulnerability in the messaging module. Any authenticated user with access to the m...	OS4ED	openSIS-Classic 9.3	Jun 11, 2026	CVE
MEDIUM 4.9	CVE-2026-6338	HTTP request smuggling in Kong Enteprise Gateway_CVE-2026-6338 A HTTP request smuggling and desynchronization vulnerability affects Kong Gateway Enterprise 3.4, 3.10, 3.11, 3.12, 3.13, and 3.14 series. The vuln...	Kong	Kong Enterprise Gateway 3.4.0.0	Jun 11, 2026	CVE
MEDIUM 5.8	CVE-2026-53723	guzzlehttp/guzzle-services’ XML Request Serialization Vulnerable to XML Injection via CDATA Terminator_CVE-2026-53723 Guzzle Services provides an implementation of the Guzzle Command library that uses Guzzle service descriptions to describe web services, serialize ...	guzzle	guzzle-services < 1.5.4	Jun 11, 2026	CVE
HIGH 8.8	CVE-2026-53661	boruta-server sent sensitive session cookies without the Secure attribute_CVE-2026-53661 Boruta is a standalone authorization server that aims to implement OAuth 2.0 and Openid Connect up to decentralized identity specifications. Prior ...	malach-it	boruta-server < 0.9.1	Jun 11, 2026	CVE
HIGH 8.1	CVE-2026-11816	Path Traversal in keras-team/keras_CVE-2026-11816 Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities located in `keras/src/utils/file_utils....	keras-team	keras-team/keras unspecified	Jun 11, 2026	CVE
HIGH 7.8	CVE-2026-10847	Local Privilege Escalation vulnerability in Check Point Identity Agent Full for Windows OS_CVE-2026-10847 A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to exe...	checkpoint	Identity Agent Versions prior to 81.087.0000	Jun 11, 2026	CVE
NONE	HACKREAD:9C8DEF...	The Hidden Security Risks of Poor Software Testing_HACKREAD:9C8DEFCCD2BA49023129124F38E174AD Poor Software Testing can expose hidden flaws, vulnerable dependencies and weak controls, increasing breach risks, downtime and costly fixes after ...	N/A	N/A	Jun 11, 2026	HACKREAD
NONE	HACKREAD:F0D98F...	Hackers Use Fake Claude Code Guide and AI PDFs to Spread AsyncRAT Malware_HACKREAD:F0D98F2C1368EF54657C5926504C0ED0 Hackers are using fake Claude Code guide and AI PDFs to spread AsyncRAT malware via Windows attack using PowerShell and Defender exclusions.	N/A	N/A	Jun 11, 2026	HACKREAD
NONE	HACKREAD:3991A1...	Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface Management_HACKREAD:3991A1697A0284C7F267A7C9E1978626 Torrance, United States / California, 11th June 2026, CyberNewswire	N/A	N/A	Jun 11, 2026	HACKREAD
CRITICAL 10	290D6A34-87D4-	Exploit for CVE-2026-48907_290D6A34-87D4-5C44-9D9F-381353970DEF CVE-2026-48907 Educational PoC ⚠️ This repository is for educational and defensive security purposes only. Test only on systems you own or are expl...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT