news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	WIRED:096FB8D75...	World Cup Scams Are Getting Harder to Spot_WIRED:096FB8D7590519B3E4B3B2CE7843F4F8 From fake tickets to cloned websites, AI is magnifying World Cup scams. Can fans distinguish between what’s real and what’s not?	N/A	N/A	Jun 22, 2026	WIRED
NONE	A6877829-9466-	docker-vuln-lab-builder_A6877829-9466-5B2C-B246-8DFE2FEDAFC1 bash python scripts-exportcontainer.py \ --image-path rockmelodies/sqli-lab:latest \ --container-id vuln-lab-a1b2c ： === Container exported as a t...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
NONE	9EF73DC0-C681-	red-specter-specter-foundry_9EF73DC0-C681-5C3C-ABD5-9E743077E08D No description provided...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 10	A9AC151B-4017-	Exploit for CVE-2026-48908_A9AC151B-4017-55EC-996C-AB5AF8111575 CVE-2026-48908 — SP Page Builder Joomla Unauthenticated RCE Proof-of-concept exploit for CVE-2026-48908, a critical CVSS 4.0 = 10.0 unauthenticated...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 10	40E52223-C309-	Log4J-PoC_40E52223-C309-5E07-BDDC-2B93D5BCEEEB Log4Shell – Technical Overview & PoC Made in May 2026 by Robin Köhler and Darian Rashed as part of the lecture Secure Software Testing at Hochschul...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
NONE	A74D449F-7BD1-	cmc-poc_A74D449F-7BD1-5DF7-8B5B-5031AC3238E1 No description provided...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
MEDIUM 6.3	CVE-2026-54665	Apache NiFi: Missing Validation for Proxy Host Headers_CVE-2026-54665 Apache NiFi 0.0.1 through 2.9.0 support building qualified URLs from one of several HTTP request headers that provide an alternative to the standar...	Apache Software Foundation	Apache NiFi 0.0.1	Jun 22, 2026	CVE
NONE	THN:737989C010C...	Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices_THN:737989C010C5C788BED2FE967F254621 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhKdFZ8X3qY44sjGFbQxJtogYdOcHTqy6L8zM5WrFEIcBfNui5A5cDTdrf932hfXB-Ugw_Uluy31ujP1EGMDy...	N/A	N/A	Jun 22, 2026	THN
HIGH 7.5	CVE-2026-44914	Apache NiFi: Missing Authorization of Restricted Permissions when Replacing Flow Contents_CVE-2026-44914 Apache NiFi 1.12.0 through 2.9.0 are missing authorization when replacing Process Groups that include extension components with specific Required P...	Apache Software Foundation	Apache NiFi 1.12.0	Jun 22, 2026	CVE
MEDIUM 5.2	CVE-2026-44913	Apache NiFi: Improper Escaping of Table Names in CaptureChangeMySQL_CVE-2026-44913 Improper escaping of database table names in the CaptureChangeMySQL Processor included with Apache NiFi 1.2.0 through 2.9.0 allows for injecting SQ...	Apache Software Foundation	Apache NiFi 1.2.0	Jun 22, 2026	CVE