Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	B59AFB79-5EFF-	Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Apache Tomcat_B59AFB79-5EFF-5CBE-9EBA-41DE2D90DCE9 No description provided...	N/A	N/A	Jun 20, 2026	GITHUBEXPLOIT
NONE	A1BEE599-14D1-	web-security-home-lab_A1BEE599-14D1-54E0-B7DF-3543EE06C675 Cybersecurity Home Lab Overview This project documents my beginner cybersecurity home lab using VMware, Kali Linux, Metasploitable 2, and DVWA. The...	N/A	N/A	Jun 20, 2026	GITHUBEXPLOIT
NONE	F9B25569-99EF-	ctf-hackathon-kit_F9B25569-99EF-5467-BAC4-D7CB41A642A6 🚩 CTF / Hackathon Starter Pack A complete, offline-ready toolkit for cyber CTFs and hackathons Hack The Box / picoCTF / TryHackMe style. Everythin...	N/A	N/A	Jun 20, 2026	GITHUBEXPLOIT
MEDIUM 5.1	CVE-2026-56332	Capgo – Open Redirect via confirmation_url Parameter_CVE-2026-56332 Capgo before 12.128.2 contains an open redirect vulnerability in the confirm-signup endpoint that allows attackers to redirect users to arbitrary e...	Capgo	Capgo	Jun 20, 2026	CVE
MEDIUM 4.8	CVE-2026-56330	Capgo – Open Redirect via Unvalidated Stripe Billing URLs_CVE-2026-56330 Capgo before 12.128.2 contains an open redirect vulnerability in stripe_portal and stripe_checkout endpoints that accept unvalidated callbackUrl, s...	Capgo	Capgo	Jun 20, 2026	CVE
MEDIUM 5.3	CVE-2026-56319	Capgo – App Existence Oracle via GET /statistics/app/:app_id_CVE-2026-56319 Capgo before 12.128.2 contains an information disclosure vulnerability in the GET /statistics/app/:app_id endpoint that allows app-limited API keys...	Capgo	Capgo	Jun 20, 2026	CVE
MEDIUM 5.3	CVE-2026-56307	Cap-go – Broken Cursor Pagination in /private/devices Endpoint_CVE-2026-56307 Cap-go before 12.128.12 contains a broken cursor pagination vulnerability in the /private/devices endpoint on the Cloudflare/workerd path that allo...	Cap-go	capgo	Jun 20, 2026	CVE
MEDIUM 6.9	CVE-2026-56304	picklescan – Arbitrary File Creation via logging.FileHandler Deserialization_CVE-2026-56304 picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create arbitrary zero-byte fi...	picklescan	picklescan	Jun 20, 2026	CVE
MEDIUM 5.3	CVE-2026-56295	Capgo – Policy Enforcement Bypass in Webhook Management Endpoints via Non-Expiring API Keys_CVE-2026-56295 Capgo before 12.128.2 contains an authorization bypass vulnerability in webhook management endpoints that allows non-expiring API keys to bypass th...	Capgo	Capgo	Jun 20, 2026	CVE
MEDIUM 4.3	CVE-2026-56294	capacitor-native-biometric – Authentication Bypass via Unvalidated CryptoObject in onAuthenticationSucceeded_CVE-2026-56294 capacitor-native-biometric before 12.128.2 contains an authentication bypass vulnerability where the onAuthenticationSucceeded() method fails to va...	capacitor-native-biometric	capacitor-native-biometric	Jun 20, 2026	CVE