CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-11860	Insecure Deserialisation via Plaintext HTTP leading to Remote Code Execution in Quick.CMS_CVE-2026-11860 Quick.CMS deserializes user-controlled data received over plaintext HTTP without ensuring integrity or authenticity. This allows attackers to tampe...	OpenSolution	Quick.CMS	Jun 15, 2026	CVE
NONE	24D4A1C9-6687-	sql_injection_exploit.sh_24D4A1C9-6687-59B5-944C-CBC0F8CD1746 sqlinjectionexploit.sh SQL Injection attack on DVWA Low Security - Cybersecurity Internship Task 3...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:A1...	A week in security (June 8 – June 14)_MALWAREBYTES:A1CEB0E4C217C2EBFF41B26DA0B035F9 Last week on Malwarebytes Labs: * Stolen iPhones could soon be worth a lot less to thieves * Fake verification pages are stealing Steam accoun...	N/A	N/A	Jun 15, 2026	MALWAREBYTES
MEDIUM 4.4	E2CF04E5-7B2B-	Exploit for CVE-2026-48849_E2CF04E5-7B2B-56AE-BB11-79D1448AB6ED CVE-2026-48849 - Stored XSS, HTML Injection & CSS Injection in Roundcube Webmail Overview This repository contains a Proof-of-Concept PoC for CVE-2...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.1	FB7C6A6C-C89F-	Exploit for Reliance on Cookies without Validation and Integrity Checking in Paloaltonetworks Pan-Os_FB7C6A6C-C89F-5CF5-BC7F-79EAF5F42258 CVE-2026-0257 testing...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.2	90F0A8EE-51A7-	Exploit for CVE-2026-42945_90F0A8EE-51A7-5AC2-8C97-EEBEED5A9E9B CVE-2026-42945 — NGINX Rift Critical heap buffer overflow in NGINX's ngxhttprewritemodule, present since 2008 version 0.6.27. Allows unauthenticate...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.1	THN:23F3604E6D0...	Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw_THN:23F3604E6D0C0EDC18C5C8E4FF76DDC8 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMFIs6j0CgFzSojDqSi_UsqRzjlbYcRsrJG714Yh40TZXU4ZzlB_Do-7nbx5WGGvOS7mV3TojQLTiHbFS57B...	N/A	N/A	Jun 15, 2026	THN
NONE	THN:9116A77898E...	Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts_THN:9116A77898EC8EE45393221837A936E9 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj-L0YMpJQcSqCJeQR6NevaPeBZW1uc13Y3nV37mR6tEuSsuMxWV6RrohLtgsVqG_Ja_kBoZTAMcKXlaG-Ofy...	N/A	N/A	Jun 15, 2026	THN
HIGH 8.5	CVE-2026-12217	DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys privileges management_CVE-2026-12217 A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the comp...	DVDFab	Virtual Drive 2.0.0.5	Jun 15, 2026	CVE
MEDIUM 4.8	CVE-2026-12216	svaarala duktape duk_api_bytecode.c memory corruption_CVE-2026-12216 A weakness has been identified in svaarala duktape up to 2.99.99. This issue affects some unknown processing of the file duk_api_bytecode.c. Execut...	svaarala	duktape 2.99.0	Jun 15, 2026	CVE