Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6	CVE-2026-13752	Snowflake CLI SQL Injection Through Improper Neutralization of Parameters in Secret Creation and SPCS Service Log Commands_CVE-2026-13752 Improper neutralization of parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. An attacker could exploit this by s...	Snowflake	Snowflake CLI 1.1.0	Jun 29, 2026	CVE
MEDIUM 4.1	CVE-2026-13751	Snowflake CLI Server-Side Request Forgery via Arbitrary URL Fetch in !source/!load_CVE-2026-13751 Improper handling of untrusted remote references in Snowflake CLI versions prior to 3.19 allowed server-side request forgery. The SQL statement rea...	Snowflake	Snowflake CLI 3.6.0	Jun 29, 2026	CVE
LOW 2.3	CVE-2026-13591	DeepMyst Mysti Contact Tracking ChannelBridge.ts _isTrackedConversation improper authorization_CVE-2026-13591 A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function _isTrackedConversation of the file src/managers/ChannelBridge.ts o...	DeepMyst	Mysti 0.4.0	Jun 29, 2026	CVE
MEDIUM 6.3	CVE-2026-13590	seladb PcapPlusPlus Modbus Protocol ModbusLayer.h getLength heap-based overflow_CVE-2026-13590 A security flaw has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in the library Packet++/he...	seladb	PcapPlusPlus 25.05	Jun 29, 2026	CVE
MEDIUM 6.3	CVE-2026-13589	seladb PcapPlusPlus Telnet Subnegotiation Packet TelnetLayer.cpp getSubCommand heap-based overflow_CVE-2026-13589 A vulnerability was identified in seladb PcapPlusPlus 25.05. This affects the function pcpp::TelnetLayer::getSubCommand of the file Packet++/src/Te...	seladb	PcapPlusPlus 25.05	Jun 29, 2026	CVE
MEDIUM 6.3	CVE-2026-13588	seladb PcapPlusPlus TLS Hello SSLHandshake.cpp getHandshakeVersion heap-based overflow_CVE-2026-13588 A vulnerability was determined in seladb PcapPlusPlus 25.05. The impacted element is the function pcpp::SSLClientHelloMessage::getHandshakeVersion ...	seladb	PcapPlusPlus 25.05	Jun 29, 2026	CVE
HIGH 7.3	CVE-2026-12912	Libtiff: libtiff: heap-based buffer overflow via crafted pixarlog-compressed tiff image_CVE-2026-12912 A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. Th...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 5.3	PACKETSTORM:224503	📄 WordPress WP Full Stripe Free 8.4.3 Missing Authorization_PACKETSTORM:224503 The WP Full Stripe Free plugin for WordPress is vulnerable to missing authorization in versions up to, and including, 8.4.3 via the wpfsupdatefaile...	N/A	N/A	Jun 29, 2026	PACKETSTORM
CRITICAL 9.8	7494D4F4-A649-	Exploit for SQL Injection in Drupal_7494D4F4-A649-54A0-92A2-96DC1D8B29D1 CVE-2026-9082 Drupal PostgreSQL SQLi to RCE This repository contains a local lab and a short exploit for the Drupal JSON:API PostgreSQL SQL injecti...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
HIGH 8.8	5E9A2406-CBCB-	Exploit for CVE-2026-43503_5E9A2406-CBCB-52D3-84A7-1C3505E7F2B4 CVE-2026-43503 DirtyClone - PoC - SecurewithUmer POC of DirtyClone — a Linux kernel local privilege escalation vulnerability. This repository conta...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT