packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	PACKETSTORM:220739	📄 Fuel CMS 1.4.1 PHP Code Injection_PACKETSTORM:220739 This Metasploit module targets a remote code execution vulnerability in Fuel CMS version 1.4.1. The issue stems from improper input sanitization in...	N/A	N/A	May 11, 2026	PACKETSTORM
HIGH 7.8	PACKETSTORM:220745	📄 OSK Privilege Escalation_PACKETSTORM:220745 This PowerShell script acts as a wrapper/launcher for a compiled Windows exploit binary targeting the OSK On-Screen Keyboard privilege escalation v...	N/A	N/A	May 11, 2026	PACKETSTORM
NONE	PACKETSTORM:220748	📄 Pixa Bank 2.0 SQL Injection_PACKETSTORM:220748 Pixa Bank version 2.0 remote API SQL injection exploit...	N/A	N/A	May 11, 2026	PACKETSTORM
NONE	PACKETSTORM:220735	📄 MATLAB R2024a Code Execution / Information Disclosure_PACKETSTORM:220735 MATLAB R2024a suffers from a remote code execution vulnerability as well as a sandbox escape that allows for information disclosure...	N/A	N/A	May 11, 2026	PACKETSTORM
NONE	PACKETSTORM:220734	📄 Car Rental Script 4.0 Cross Site Scripting_PACKETSTORM:220734 Car Rental Script version 4.0 suffers from a cross site scripting vulnerability...	N/A	N/A	May 11, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:220753	📄 Contact Form by Supsystic 1.7.36 Server-Side Template Injection_PACKETSTORM:220753 Contact Form by Supsystic versions 1.7.36 and below server-side template injection exploit that achieves remote code execution...	N/A	N/A	May 11, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:220741	📄 Oracle WebLogic WLS-WSAT XMLDecoder Remote Code Execution_PACKETSTORM:220741 This script is a Python-based proof of concept exploit targeting a deserialization vulnerability in Oracle WebLogic Server's WLS-WSAT component. Th...	N/A	N/A	May 11, 2026	PACKETSTORM
HIGH 8.7	PACKETSTORM:220761	📄 strongSwan 4.5.0 EAP-TTLS Integer Underflow_PACKETSTORM:220761 This Metasploit auxiliary module is designed to detect a vulnerability in strongSwan's EAP-TTLS implementation, identified as CVE-2026-25075. The i...	N/A	N/A	May 11, 2026	PACKETSTORM
CRITICAL 9.1	PACKETSTORM:220574	📄 ThingsBoard IoT Platform 4.2.0 Server-Side Request Forgery_PACKETSTORM:220574 ThingsBoard IoT Platform version 4.2.0 suffers from a server-side request forgery vulnerability...	N/A	N/A	May 8, 2026	PACKETSTORM
CRITICAL 9.9	PACKETSTORM:220576	📄 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 NocoBase versions 2.0.27 and below VM sandbox escape exploit...	N/A	N/A	May 8, 2026	PACKETSTORM