CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	54DE62F9-A0CE-	Exploit for Use After Free in Google Android_54DE62F9-A0CE-554B-A9D1-FCB05FE5250D Root Sonim XP3800 Root access for the Sonim XP3800 XP3plus. Two paths are available — choose whichever fits your situation. Two paths to root Optio...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
NONE	THN:7F75382DA65...	AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks_THN:7F75382DA651A5ECDEF282D4E511FDDF ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhCyrr25-wXst4kOLIEi1-Q1d5XMVDCvWqUacEoSRsLn6C5CbKoXGLb4nzTB-DVr9cLOkyuIT5wyMrQICAVhQ...	N/A	N/A	Jun 30, 2026	THN
NONE	THN:27E06C2F7B7...	New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials_THN:27E06C2F7B7D18B0ABBE148809FF4D82 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEitNDarGF3uRKXTWC12cbM97uJW3DxiLuQwmplVLHEqdrUZJdzbkMz6Wc524z5Xu2GGSyNYhMT_m9kGqqGjRm...	N/A	N/A	Jun 30, 2026	THN
CRITICAL 9.8	FBFF27F7-8ED1-	Exploit for CVE-2026-56121_FBFF27F7-8ED1-5776-9326-EF2D07BF0586 CVE-2026-56121 — Feast Unauthenticated RCE via gRPC Registry Deserialization The Feast function of an OnDemandFeatureView as soon as a spec arrives...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.4	8276B0B0-A504-	Exploit for OS Command Injection in Devcode Openstamanager_8276B0B0-A504-5BFB-96EF-E9535076655D CVE-2025-69212-PoC https://github.com/advisories/GHSA-25fp-8w8p-mx36 A critical OS Command Injection vulnerability exists in the P7M signed XML fil...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.8	2EC91A8F-3FD4-	CVE-2026-XXXX-silverpeak-webgms-9.5.6-exposed-admin_2EC91A8F-3FD4-54B9-8741-6AC2418907A9 CVE-2026-XXXX: NVIDIA/SilverPeak SD-WAN webGMS - Exposed Admin Interface Product NVIDIA SilverPeak SD-WAN webGMS Global Management System - Version...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.8	A372C56F-D8B3-	Exploit for CVE-2026-10580_A372C56F-D8B3-5DAE-BD3F-1EB6467679D8 CVE-2026-10580 - WordPress - Hippoo Mobile App for WooCommerce 1.9.4. Additionally: - Regularly audit user accounts for unauthorized changes - Moni...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
MEDIUM 5.3	CVE-2026-12349	Premium Addons for KingComposer <= 1.1.1 - Missing Authorization to Unauthenticated Arbitrary Custom Sidebar Creation and Deletion via 'add_custom_sidebar' and 'remove_custom_sidebar' AJAX actions_CVE-2026-12349 The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and includi...	octagonwebstudio	Premium Addons for KingComposer	Jun 30, 2026	CVE
CRITICAL 9.8	CVE-2026-12073	ProfileGrid – User Profiles, Groups and Communities <= 5.9.9.5 - Unauthenticated Privilege Escalation via Email Overwrite_CVE-2026-12073 The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation via account takeover in all vers...	metagauss	ProfileGrid – User Profiles, Groups and Communities	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-11367	PixMagix <= 1.7.2 - Authenticated (Author+) Path Traversal in 'layers[].id' Parameter_CVE-2026-11367 The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the...	andrasweb	PixMagix – WordPress Image Editor	Jun 30, 2026	CVE