Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2025-71337	Flowise – Unverified Email Change via Account Profile Endpoint_CVE-2025-71337 Flowise before 3.0.10 (affected versions 3.0.7 and earlier) contains an unverified email change vulnerability. An authenticated user can change the...	Flowise	Flowise	Jun 23, 2026	CVE
NONE	75C34128-999D-	cybersec-cheat-sheets_75C34128-999D-5317-9E7C-9B35F3D51CC3 🛡️ Cybersecurity & Pentesting Cheat Sheets A collection of clean, practical cheat sheets for the security tools you actually use — built while work...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	HACKREAD:FBA757...	2 Scattered Spider-Linked Hackers Plead Guilty Over £39M TfL Cyberattack_HACKREAD:FBA7572946AB7B0A7A3BA36351A5085B Two teenagers face sentencing after admitting to a massive Scattered Spider cyberattack that hit Transport for London (TfL) and US healthcare netwo...	N/A	N/A	Jun 23, 2026	HACKREAD
NONE	MALWAREBYTES:9D...	Hackers steal passport and driver’s license data of 3 million Texans_MALWAREBYTES:9D69E222B6856BBA3932F0F2D0EB9073 You can change a password and cancel a card. But replacing a passport or driver's license number every time someone leaves yours unsecured in a ven...	N/A	N/A	Jun 23, 2026	MALWAREBYTES
NONE	SCHNEIER:50F4F7...	Anthropic’s Fable 5 Model Jailbroken Within Days_SCHNEIER:50F4F7230D43E3BC04D9A48F355AFA7C Fable 5 is the supposed safe version of Anthropic's Mythos Preview, with guardrails to ensure that it can't be used to create cyberattacks. Well, ...	N/A	N/A	Jun 23, 2026	SCHNEIER
NONE	HACKREAD:A12835...	The Evolution of iGaming Fraud: What Security Teams Should Expect in 2027_HACKREAD:A12835505DD5B7C87C9F7B3FCD193AAD Learn how AI, deepfakes, synthetic identities and fraud-as-a-service may reshape iGaming risk, and what security teams can do to detect future thre...	N/A	N/A	Jun 23, 2026	HACKREAD
NONE	THN:C8E3569189F...	Agentic AI: The Weapon That No Longer Needs a Warrior_THN:C8E3569189F8451F92B2576E7286E31A ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg5YrdKJuy4ZmnWf_7L2RdXqS2QWC2BHJIbGsapJLmmYy1hBXfHxE7WMk-itWDkh-oCbAr8-CZOiUTyLftdM6...	N/A	N/A	Jun 23, 2026	THN
MEDIUM 4.1	CVE-2026-4983	CVE-2026-4983_CVE-2026-4983 Open VSX Registry does not sanitize SVG files uploaded as extension icons prior to storage, and serves them with Content-Type: image/svg+xml withou...	Eclipse Foundation	Eclipse Open VSX 0.1.0	Jun 23, 2026	CVE
NONE	H1:3817602	Node.js: Node –run POSIX positional argument escaping allows shell command injection_H1:3817602 # ## Summary Node.js `node --run -- ` attempts to append positional arguments to a package script after escaping each argument for the shell. ...	N/A	N/A	Jun 22, 2026	HACKERONE
NONE	2E49ED4C-95C2-	xss-popup_2E49ED4C-95C2-540D-893B-E9DF48B970B0 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT