exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3795615	curl: Duplicate chunked Transfer-Encoding lets a malicious origin smuggle a response across reused HTTP proxy connections_H1:3795615 ## TL;DR A malicious HTTP origin can send `Transfer-Encoding: chunked, chunked, gzip` through a reusable HTTP proxy connection to bypass curl's "c...	N/A	N/A	Jun 11, 2026	HACKERONE
NONE	C59EAF7F-FEBE-	MeshCentral-RogueAgent_C59EAF7F-FEBE-5CF2-A77B-B0BEFA18269C MeshCentral RogueAgent A proof-of-concept exploit chain for a stored XSS vulnerability in MeshCentral that escalates to unauthenticated RCE across ...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
HIGH 8.7	CVE-2026-12174	D-Link DCS-935L HTTP rhea snprintf format string_CVE-2026-12174 A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhe...	D-Link	DCS-935L 1.10.01	Jun 13, 2026	CVE
CRITICAL 10	D6099C25-1141-	Exploit for Deserialization of Untrusted Data in Facebook React_D6099C25-1141-56E6-8EF9-3CFD8897013F CVE-2025-55182 - React2Shell Pre-authentication RCE in React Server Components. Summary of the CVE A pre-authentication remote code execution vulne...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CDF7493E-7394-	Exploit for Authentication Bypass Using an Alternate Path or Channel in Gitlab_CDF7493E-7394-51A6-B8C6-ED65CE3C2ED6 CVE-2025-4524 WordPress Madara Theme 2.2.2.1 - Local File Inclusion ---...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
NONE	FB29A6F9-8FD2-	Exploit-Development-master_FB29A6F9-8FD2-5475-894F-D5F10F83FA22 Exploit-Development Weaponized Exploit and Proof of Concepts PoC...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
MEDIUM 5.6	CVE-2026-6428	CVE-2026-6428_CVE-2026-6428 SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x bef...	Koha Community	Koha	Jun 13, 2026	CVE
CRITICAL 9.3	CVE-2026-12183	CVE-2026-12183_CVE-2026-12183 Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-28...	Nefteprodukttekhnika LLC	BUK TS-G Gas Station Automation System 2.9.1, 2.10.2	Jun 13, 2026	CVE
CRITICAL 9.3	FD4AA5D0-761A-	Exploit for CVE-2026-42647_FD4AA5D0-761A-574B-BE76-55A50B193227 CVE-2026-42647 - JoomSport Unauthenticated Time-Based Blind SQL Injection via sortf Executive Summary This repository contains a local Docker lab f...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
HIGH 7.5	EDEE9204-2DB4-	Exploit for Memory Allocation with Excessive Size Value in Apache Http_Server_EDEE9204-2DB4-5931-983F-6C7DB7FD4FB7 CVE-2026-49975 HTTP/2 Bomb Complete Reproduction Guide Based on QiAnXin CERT Advisory + Calif Original Research ===================================...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT