CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.1	CVE-2026-3840	Path Traversal in kedro-org/kedro_CVE-2026-3840 A vulnerability in Kedro version 1.2.0 allows an attacker to exploit path traversal by providing a crafted version string. The `_get_versioned_path...	kedro-org	kedro-org/kedro unspecified	Jun 12, 2026	CVE
MEDIUM 4.3	CVE-2026-3433	Mattermost fails to scope role_updated websocket events to authorized team and channel members_CVE-2026-3433 Mattermost versions 11.6.x	Mattermost	Mattermost 11.6.0	Jun 12, 2026	CVE
NONE	PACKETSTORM:223338	📄 Gogs 0.14.2 Argument Injection_PACKETSTORM:223338 Proof of concept exploit for an argument injection vulnerability in Gogs versions 0.14.2 and below and versions 0.15.0+dev and below...	N/A	N/A	Jun 12, 2026	PACKETSTORM
CRITICAL 9.1	PACKETSTORM:223334	📄 Palo Alto GlobalProtect Authentication Bypass_PACKETSTORM:223334 This Metasploit module exploits an authentication bypass vulnerability in Palo Alto Networks PAN-OS GlobalProtect portal and gateway components. Th...	N/A	N/A	Jun 12, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:223318	📄 FortiSandbox 4.4.7 Authentication Bypass / Command Injection_PACKETSTORM:223318 This Metasploit auxiliary scanner module is designed to collect system and environment information from vulnerable FortiSandbox instances by levera...	N/A	N/A	Jun 12, 2026	PACKETSTORM
CRITICAL 9.3	PACKETSTORM:223316	📄 Check Point VPN IKE Logic Flaw_PACKETSTORM:223316 This is a Python script attempting to exploit a vulnerability in Check Point VPN by sending a malformed IKESAINIT packet to UDP port 500, detecting...	N/A	N/A	Jun 12, 2026	PACKETSTORM
CRITICAL 9.6	PACKETSTORM:223339	📄 WordPress Gravity Forms 2.10.0.1 File Deletion / Path Traversal_PACKETSTORM:223339 This Metasploit module exploits a vulnerability in the Gravity Forms WordPress plugin versions 2.10.0.1 and below where file URLs stored in form en...	N/A	N/A	Jun 12, 2026	PACKETSTORM
NONE	C08353CA-BBF3-	Exploit_sin_monitos_v3_4_3_C08353CA-BBF3-5CE3-B4FA-72F011A3029A Exploitsinmonitosv343 Escaner listas m3u git clone https://github.com/pepe203040/Exploitsinmonitosv343 cd Exploitsinmonitosv343 ls python3 Exploits...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:1A...	Stolen iPhones could soon be worth a lot less to thieves_MALWAREBYTES:1A627E714F865554DAF2847EDE75CBAF The UK’s Metropolitan Police has reached an agreement with Apple designed to make stolen iPhones harder to resell and less attractive to thieves. T...	N/A	N/A	Jun 12, 2026	MALWAREBYTES
NONE	HACKREAD:E0EDCB...	ShinyHunters Target Universities in Oracle PeopleSoft Zero-Day Attack_HACKREAD:E0EDCB28BF833B8A54DC4EE0162AEC35 Google says ShinyHunters exploited Oracle PeopleSoft zero-day to steal data from 100+ organisations, with universities making up most victims.	N/A	N/A	Jun 12, 2026	HACKREAD