CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.7	CVE-2026-8660	OS Command Injection in Rapid7 InsightConnect Ping Plugin_CVE-2026-8660 OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows remote attackers to execute arbitrary OS...	Rapid7	InsightConnect Ping Plugin	Jun 25, 2026	CVE
HIGH 7.7	CVE-2026-8592	OS Command Injection in Rapid7 InsightConnect AWK Plugin_CVE-2026-8592 OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux allows remote attackers to execute arb...	Rapid7	InsightConnect AWK Plugin	Jun 25, 2026	CVE
HIGH 7.2	FDFAA405-236F-	Exploit for Race Condition in Canonical Ubuntu_Linux_FDFAA405-236F-52FC-99CA-7AE43569BBCF Kernel Exploit — Dirty Cow CVE-2016-5195 Laboratorio de escalamiento de privilegios mediante la vulnerabilidad Dirty Cow, realizado como parte de l...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
CRITICAL 9.8	783676F7-7FF1-	Exploit for Authentication Bypass by Spoofing in Alibaba Nacos_783676F7-7FF1-5239-9717-0FFAAC5D8271 CVE-2021-29441...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
CRITICAL 10	0452174E-CA14-	Exploit for CVE-2026-48908_0452174E-CA14-5E07-832F-D7B7BBD5B889 🚨 CVE-2026-48908 — Full Server Compromise via Arbitrary File Upload Critical Unauthenticated File Upload → Remote Code Execution RCE A critical vu...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
MEDIUM 5.1	CVE-2026-49979	Appsmith: SSRF via `POST /api/v1/admin/send-test-email` — JavaMail Bypasses WebClient IP Filter_CVE-2026-49979 Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accept...	appsmithorg	appsmith < 1.99	Jun 24, 2026	CVE
MEDIUM 5.3	CVE-2026-39897	Cacti has a Reflected XSS Vulnerability via html_auth_footer_CVE-2026-39897 Cacti is an open source performance and fault management framework. Versions 1.2.30 and below contain a Reflected XSS vulnerability in the html_aut...	Cacti	cacti < 1.2.31	Jun 24, 2026	CVE
LOW 2.9	CVE-2026-39894	Cacti: RRDtool metric shift via LC_NUMERIC locale comma decimal formatting_CVE-2026-39894 Cacti is an open source performance and fault management framework. In versions 1.2.30 and below, the locale-dependent decimal formatting in rrdtoo...	Cacti	cacti < 1.2.31	Jun 24, 2026	CVE
CRITICAL 9.8	CVE-2026-39893	Cacti: Pre-authentication SQL injection via rfilter RLIKE clause in graph_view.php_CVE-2026-39893 Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request variable was concatenated int...	Cacti	cacti < 1.2.31	Jun 24, 2026	CVE
HIGH 7.8	CVE-2026-2050	GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability_CVE-2026-2050 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra...	GIMP	GIMP 3.0.6	Jun 24, 2026	CVE