CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-48998	guzzlehttp/psr7 has Host Confusion via Authority Reinterpretation_CVE-2026-48998 guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Versions prior to 2.10.2 contain improper Host header validation when parsin...	guzzle	psr7 < 2.10.2	Jun 11, 2026	CVE
MEDIUM 6.3	CVE-2026-11956	TwiN gatus OIDC Session Cookie oidc.go setSessionCookie missing secure attribute_CVE-2026-11956 A vulnerability was determined in TwiN gatus 5.36.0. Impacted is the function setSessionCookie of the file security/oidc.go of the component OIDC S...	TwiN	gatus 5.36.0	Jun 11, 2026	CVE
MEDIUM 5.3	CVE-2026-11561	SSTI in Soagen Informatics’ Apinizer_CVE-2026-11561 Improper neutralization of special elements used in an expression language statement ('expression language injection') vulnerability in Soagen Info...	Soagen Informatics Technologies Software and Consulting Inc.	Apinizer 2026.04.0	Jun 11, 2026	CVE
NONE	4F73101B-FD60-	threat_detection_4F73101B-FD60-50D9-B7E5-F3FE99064BAC No description provided...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
NONE	C67086EA-827A-	-cybersec-bad-folio_C67086EA-827A-5F22-9505-3AC372E612E9 cybersec-bad-folio...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:5E...	Children’s phones must block nude images by September, UK says_MALWAREBYTES:5E74310BDC612D0D36A7F4A8CBA2E289 Build something that doesn't exist. Don't collect any data while you do it. Get it wrong and the CEO could face criminal charges. That's close to t...	N/A	N/A	Jun 11, 2026	MALWAREBYTES
NONE	SCHNEIER:EA9B0B...	Enhanced License Plate Tracking_SCHNEIER:EA9B0B62CB88E54FE9C6E445DA8D368B The surveillance company Leonardo wants more data: > A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that w...	N/A	N/A	Jun 11, 2026	SCHNEIER
NONE	MALWAREBYTES:59...	Data of 2.4 million VRChat users stolen_MALWAREBYTES:593F2FA5B97948E79E4E4E68A59A227B VRChat, Inc. has filed a data breach notice revealing that the information of more than 2.4 million users was involved in a data breach. According...	N/A	N/A	Jun 11, 2026	MALWAREBYTES
NONE	WIRED:655FB59E8...	Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps_WIRED:655FB59E81AB9A3FE02412C13C60AA85 The new open-source project could serve as the basis for a future of apps with features as complex as Slack, Discord, or Google Docs—but with added...	N/A	N/A	Jun 11, 2026	WIRED
MEDIUM 5.3	6FB6950A-0A62-	Exploit for CVE-2026-7665_6FB6950A-0A62-57F3-AD18-661A86DCE996 CVE-2026-7665 — Unauthenticated Information Disclosure in Essential Addons for Elementor \| Field \| Detail \| \|-------\|--------\| \| CVE ID \| CVE-2026-...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT