CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	CVE-2025-52761	WordPress WP Funnel Manager Plugin <= 1.4.0 - PHP Object Injection Vulnerability_CVE-2025-52761 Deserialization of Untrusted Data vulnerability in manfcarlo WP Funnel Manager allows Object Injection. This issue affects WP Funnel Manager: from ...	manfcarlo	WP Funnel Manager n/a	Aug 28, 2025	CVE
CRITICAL 9.3	CVE-2025-54720	WordPress Nest Addons Plugin <= 1.6.3 - SQL Injection Vulnerability_CVE-2025-54720 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SteelThemes Nest Addons allows SQL Injection....	SteelThemes	Nest Addons n/a	Aug 28, 2025	CVE
CRITICAL 9.8	CVE-2025-54725	WordPress Golo Theme <= 1.7.0 - Broken Authentication Vulnerability_CVE-2025-54725 Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo allows Authentication Abuse. This issue affects Golo: from n/a...	uxper	Golo n/a	Aug 28, 2025	CVE
CRITICAL 9.8	CVE-2025-54738	WordPress Jobmonster Theme <= 4.7.9 - Broken Authentication Vulnerability_CVE-2025-54738 Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster allows Authentication Abuse. This issue affects Jobmo...	NooTheme	Jobmonster n/a	Aug 28, 2025	CVE
CRITICAL 9.8	EDF9DFFD-577C-	Exploit for CVE-2025-7955_EDF9DFFD-577C-5E0F-A454-256B8522C303 CVE-2025-7955 RingCentral...	N/A	N/A	Aug 28, 2025	GITHUBEXPLOIT
CRITICAL 9.3	CVE-2025-39496	WordPress WooBeWoo Product Filter Pro plugin < 2.9.6 - SQL Injection vulnerability_CVE-2025-39496 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WooBeWoo Product Filter Pro allows SQL In...	WBW	WooBeWoo Product Filter Pro n/a	Aug 28, 2025	CVE
CRITICAL 9.3	CVE-2025-53970	CVE-2025-53970_CVE-2025-53970 SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) allows a remote unauthenticated attacker to upload arbitrary files and execute OS...	DOS Co., Ltd.	SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) (Affected under Windows environment only)	Aug 28, 2025	CVE
CRITICAL 9.3	CVE-2025-54762	CVE-2025-54762_CVE-2025-54762 SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) allows a remote unauthenticated attacker to upload arbitrary files and execute OS...	DOS Co., Ltd.	SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) (Windows environment only)	Aug 28, 2025	CVE
CRITICAL 9.1	2EA95DA1-D4FA-	Exploit for CVE-2025-29927_2EA95DA1-D4FA-5012-8F18-04F211253834 CVE-2025-29927 - Next.js Middleware 15.2.2 - Authorization Bypass ⚠️ Critical...	N/A	N/A	Aug 28, 2025	GITHUBEXPLOIT
CRITICAL 9.8	294ED0BF-602B-	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Citrix Netscaler_Application_Delivery_Controller_294ED0BF-602B-5900-A466-234B551524F9 CVE-2025-7775 \| NetScaler ADC RCE PoC ⚠️ Disclaimer: This is a...	N/A	N/A	Aug 28, 2025	GITHUBEXPLOIT