Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.9	CVE-2026-41280	Apache DolphinScheduler: Incorrect Authorization vulnerability allows users with system login privileges to delete task definitions in unauthorized projects_CVE-2026-41280 Incorrect Authorization vulnerability allows users with system login privileges to delete task definitions in unauthorized projects This issue aff...	Apache Software Foundation	Apache DolphinScheduler	Jun 17, 2026	CVE
HIGH 7.5	CVE-2026-9690	WordPress WP Media folder Addon plugin <= 4.0.1 - Arbitrary File Download vulnerability_CVE-2026-9690 Unauthenticated Arbitrary File Download in WP Media folder Addon	Joomunited	WP Media folder Addon n/a	Jun 17, 2026	CVE
HIGH 7.2	CVE-2026-5667	Information Disclosure, Information Tampering, or Denial-of-Service (DoS) Vulnerability in Multiple Home Appliances_CVE-2026-5667 Use of Hard-coded Credentials vulnerability in Mitsubishi Electric Room Air Conditioners (for Japan and outside Japan); Wireless LAN Adapters for R...	Mitsubishi Electric Corporation	Room Air Conditioners (for Japan) MSZ-BKR2223-W 42.00 and prior	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-54811	WordPress WP eMember plugin < v10.9.4 - SQL Injection vulnerability_CVE-2026-54811 Unauthenticated SQL Injection in WP eMember < v10.9.4 versions.	Tips and Tricks HQ	WP eMember n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2026-54807	WordPress Registration Form for WooCommerce plugin <= 1.0.9 - Privilege Escalation vulnerability_CVE-2026-54807 Unauthenticated Privilege Escalation in Registration Form for WooCommerce	ThemeGrill	Registration Form for WooCommerce n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2026-54806	WordPress WP Activity Log plugin <= 5.6.3.1 - PHP Object Injection vulnerability_CVE-2026-54806 Unauthenticated PHP Object Injection in WP Activity Log	Melapress	WP Activity Log n/a	Jun 17, 2026	CVE
HIGH 8.8	CVE-2026-54805	WordPress Falang multilanguage plugin <= 1.4.2 - Privilege Escalation vulnerability_CVE-2026-54805 Subscriber Privilege Escalation in Falang multilanguage	sbouey	Falang multilanguage n/a	Jun 17, 2026	CVE
HIGH 7.6	CVE-2026-54804	WordPress Melhor Envio plugin <= 2.16.3 - Broken Authentication vulnerability_CVE-2026-54804 Subscriber Broken Authentication in Melhor Envio	melhorenvio	Melhor Envio n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2026-54803	WordPress SMS Alert Order Notifications plugin <= 3.9.4 - Privilege Escalation vulnerability_CVE-2026-54803 Subscriber Privilege Escalation in SMS Alert Order Notifications	Cozy Vision Technologies Pvt. Ltd.	SMS Alert Order Notifications n/a	Jun 17, 2026	CVE
HIGH 7.5	CVE-2026-54802	WordPress SMS Alert Order Notifications plugin <= 3.9.3 - Broken Authentication vulnerability_CVE-2026-54802 Unauthenticated Broken Authentication in SMS Alert Order Notifications	Cozy Vision Technologies Pvt. Ltd.	SMS Alert Order Notifications n/a	Jun 17, 2026	CVE