CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	548ECB08-BE83-	Exploit for Embedded Malicious Code in Tukaani Xz_548ECB08-BE83-5A35-9E83-965AB296DFB4 XZ Backdoor Labs CVE-2024-3094 Safe, hands-on labs for understanding the xz-utils supply-chain backdoor — built for defenders, students, and blue-t...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	DF2E3CB4-78E1-	Exploit for CVE-2026-1555_DF2E3CB4-78E1-50A5-8D6D-0BAD9ED75E23 CVE-2026-1555: Unauthenticated Arbitrary File Upload in WebStack WordPress Theme Proof of Concept PoC Credits \| \| \| \|---\|---\| \| PoC Author: \| Secur...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	THN:8375823B34D...	Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication_THN:8375823B34DF93A93B46E3192643E1ED ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7NRzSRKbGdsTj1TIWcks4nX5u6n1U2vl5hxJ8KKFZ-JCAKlMQPXQNHA1i0otd63wcKJoZbeEc3oVa9o4uYN...	N/A	N/A	Jun 13, 2026	THN
CRITICAL 9.8	B20223AD-B178-	Exploit for CVE-2026-6279_B20223AD-B178-5271-9BDA-0376DF827CFA CVE-2026-6279...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 10	9362E5FB-8A5E-	Exploit for CVE-2026-48907_9362E5FB-8A5E-5D90-AEE0-44FA2E7F560E CVE-2026-48907 Description هذا الملف CVE-2025-9209.py هو أداة استغلال جماعي تعمل على استهداف ثغرة CVE-2025-9209. الوظائف الأساسية: تفحص قائمة مواقع...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	1B1A3142-CD90-	Exploit for Improper Access Control in Getgrav Grav-Plugin-Admin_1B1A3142-CD90-5BA0-A772-AC630842FD7C CVE-2021-21425 - GravCMS Unauthenticated RCE Unauthenticated Remote Code Execution exploit for GravCMS Custom command python3 exploit.py -t http://...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	A1D50DD6-435E-	Exploit for CVE-2026-6279_A1D50DD6-435E-5B9D-933B-23BDA38B2B7B Description This Python script is an exploit tool for CVE-2026-6279 targeting Avada Builder = 3.15.2. Key behavior: scans targets for fusionloadnon...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.4	CVE-2026-11624	CVE-2026-11624_CVE-2026-11624 The Model Context Protocol has a security warning advising servers to validate the "Origin" header on all incoming connections to prevent DNS rebin...	Google	MCP Toolbox for Databases	Jun 13, 2026	CVE
CRITICAL 10	305568CC-85F7-	Exploit for Missing Authentication for Critical Function in Erlang Erlang\/Otp_305568CC-85F7-5A1B-8FAE-834B17D0B008 Information Security Fundamentals — Spring 2026 Project Total Points: 20 \| Deadline: No late submissions accepted Overview This project simulates a...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT
CRITICAL 9.3	CVE-2026-44990	Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`_CVE-2026-44990 ApostropheCMS is an open-source Node.js content management system, and sanitize-html provides a simple HTML sanitizer with a clear API. Under the d...	apostrophecms	sanitize-html < 2.17.4	Jun 12, 2026	CVE