CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.4	CVE-2026-49287	Statamic CMS vulnerable to unsafe method invocation via collection sorting allows data destruction_CVE-2026-49287 Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, the fix for CVE-2026-41175 was incomplete. It a...	statamic	cms < 5.73.23	Jun 19, 2026	CVE
HIGH 8.1	CVE-2026-49286	PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass)_CVE-2026-49286 PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTML page. Prior to version 2.6.0, `pontedilana/php-weasyprint` guarded the...	pontedilana	php-weasyprint < 2.6.0	Jun 19, 2026	CVE
MEDIUM 6.5	CVE-2026-49271	libheif: Wrapped icef compressed-unit range check causes out-of-bounds read in uncompressed HEIF decoder_CVE-2026-49271 libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compress...	strukturag	libheif < 1.22.1	Jun 19, 2026	CVE
HIGH 7.1	CVE-2026-49339	Path traversal in getPlaylist/deletePlaylist bypasses ownership check: any authenticated user can read or delete any other user’s playlist_CVE-2026-49339 gonic is a music streaming server / free-software subsonic server API implementation. The maintainer's fix in commit `6dd71e6a3c966867ef8c900d359a...	sentriz	gonic < 0.21.0	Jun 19, 2026	CVE
MEDIUM 5.5	CVE-2026-49336	@microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect due to case-mismatched scrub in fetchRequestAdapter_CVE-2026-49336 @microsoft/kiota-http-fetchlibrary provides TypeScript libraries for Kiota-generated API clients. In versions 1.0.0-preview.97 through 1.0.0-previe...	microsoft	kiota-typescript >= 1.0.0-preview.97, < 1.0.0-preview.102	Jun 19, 2026	CVE
HIGH 7.5	CVE-2026-49293	CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals_CVE-2026-49293 js-toml is a TOML parser for JavaScript, fully compliant with the TOML 1.0.0 Spec. Versions up to and including 1.1.0 parse hexadecimal / octal / b...	sunnyadn	js-toml < 1.1.1	Jun 19, 2026	CVE
HIGH 8.1	CVE-2026-49291	mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call_CVE-2026-49291 mcp-memory-service is a semantic memory layer for AI applications. Prior to version 10.65.3, the HTTP MCP JSON-RPC endpoint at `/mcp` requires only...	doobidoo	mcp-memory-service < 10.65.3	Jun 19, 2026	CVE
MEDIUM 4.3	CVE-2026-49288	Statamic CMS missing authorization on Control Panel fieldtype endpoints allows disclosure of restricted resources_CVE-2026-49288 Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, an authenticated Control Panel user could view ...	statamic	cms < 5.73.23	Jun 19, 2026	CVE
MEDIUM 5.3	CVE-2026-12238	WP Go Maps <= 10.1.01 - Unauthenticated Arbitrary Record Creation_CVE-2026-12238 The WP Go Maps – Most Popular Map Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 10.1.01. ...	wpgmaps	WP Go Maps – Google Map, OpenStreetMap, Leaflet Map	Jun 19, 2026	CVE
HIGH 7.5	CVE-2026-9375	Decompression Bomb Bypass via Negative max_length in Streaming API in urllib3_CVE-2026-9375 urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API (`preload_content=False`) when using Brotli support. The is...	urllib3	urllib3/urllib3 unspecified	Jun 19, 2026	CVE