CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-12035	CVE-2026-12035_CVE-2026-12035 Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption via a ...	Google	Chrome 149.0.7827.115	Jun 11, 2026	CVE
HIGH 8.8	CVE-2026-47342	Apache OFBiz: Privilege Escalation via updateOrRemove Authorization Bypass_CVE-2026-47342 A privilege escalation vulnerability in Apache OFBiz allows a low-privileged authenticated user to obtain higher privileges This issue affects A...	Apache Software Foundation	Apache OFBiz	Jun 10, 2026	CVE
MEDIUM 5.3	CVE-2026-49347	Quest Bot: Ticket creation has no per-user open-ticket limit or cooldown_CVE-2026-49347 Quest Bot is an opensource Discord Bot. Prior to version 1.1.8, any user who can access the ticket panel can repeatedly create new ticket channels....	duck-organization	questbot < 1.1.8	Jun 12, 2026	CVE
LOW 2.1	CVE-2026-48485	Quest Bot: Stored warn reasons can still trigger bot-powered mass mentions through `/warns`._CVE-2026-48485 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the latest release suppresses mentions when creating, unbanning, unwarning, kicking...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
HIGH 7.2	CVE-2026-47197	Quest Bot: Discord moderation role hierarchy bypass in ban, kick, mute, unmute, warn, and nickname commands_CVE-2026-47197 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, a moderator with the relevant Discord permission bit can use the bot to moderate us...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
HIGH 8.4	CVE-2026-47196	Quest Bot: Empty automod rule causes every guild message to be deleted_CVE-2026-47196 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the automod add command trims user input but does not reject an empty result. Addin...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
HIGH 7.1	CVE-2026-47195	Quest Bot: Per-channel permission overwrite bypass in purge and slowmode commands._CVE-2026-47195 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the purge and slowmode commands check only guild-level permissions on the invoking ...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
NONE	SCHNEIER:1E91AA...	Bernie Sanders’ AI Sovereign Wealth Fund Plan_SCHNEIER:1E91AA67C005C1F2752A8FE99D47F9F6 Let no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator asked: "Will the future of huma...	N/A	N/A	Jun 12, 2026	SCHNEIER
NONE	THN:AE4CB1B293B...	Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code_THN:AE4CB1B293B0A7E015BD13448EEC6E84 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhs-B-d2AZdbTGExalcZiBwa9fNa999-EQ1GrAeytHP6tpnC3WmKL4IcKV5voUs-MRq5WGVwwf2NFPyJxdJUP...	N/A	N/A	Jun 12, 2026	THN
NONE	73145169-506F-	Exploit for CVE-2026-53646_73145169-506F-578D-AE1C-380D0AB428CB ███████╗ ██████╗ ███████╗██╗ ██╗██╗██╗ ██╗ ███████╗██████╗ ██╔════╝██╔═══██╗██╔════╝██║ ██╔╝██║██║ ██║ ██╔════╝██╔══██╗ █████╗ ██║ ██║███████╗█████...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT