CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	CVE-2025-7778	Icons Factory <= 1.6.12 - Missing Authorization to Unauthenticated Arbitrary File Deletion via delete_files() Function_CVE-2025-7778 The Icons Factory plugin for WordPress is vulnerable to Arbitrary File Deletion due to insufficient authorization and improper path validation with...	artkrylov	Icons Factory *	Aug 15, 2025	CVE
CRITICAL 10	THN:0A1BBE33E80...	Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution_THN:0A1BBE33E809E0FF0ABAE5D110986874 ![](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) Cisco has released securit...	N/A	N/A	Aug 15, 2025	THN
CRITICAL 9.8	CVE-2025-6679	Contact Form by Bit Form – Bit Form <= 2.20.3 - Unauthenticated Arbitrary File Upload_CVE-2025-6679 The Bit Form builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and in...	bitpressadmin	Bit Form – Custom Contact Form, Multi Step, Conversational, Payment & Quiz Form builder *	Aug 15, 2025	CVE
CRITICAL 9.8	F88F0C98-2FD9-	Exploit for CVE-2024-47533_F88F0C98-2FD9-50F5-AA41-8A5C21BF5BB5 CVE-2024-47533 – Cobbler XML-RPC Authentication Bypass Exploit 📜 Description CVE-2024-47533...	N/A	N/A	Aug 14, 2025	GITHUBEXPLOIT
CRITICAL 10	CVE-2025-20265	Cisco Secure Firewall Management Center Software Radius Remote Code Execution Vulnerability_CVE-2025-20265 A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, re...	Cisco	Cisco Firepower Management Center 7.0.7	Aug 14, 2025	CVE
CRITICAL 9.8	TALOSBLOG:2E575...	What happened in Vegas (that you actually want to know about)_TALOSBLOG:2E5750634BF4A53879ACA24A74E002C6 ![What happened in Vegas \(that you actually want to know about\)](https://blog.talosintelligence.com/content/images/2025/08/threat-source-newslett...	N/A	N/A	Aug 14, 2025	TALOSBLOG
CRITICAL 9.8	CVE-2025-51451	CVE-2025-51451_CVE-2025-51451 In TOTOLINK EX1200T firmware 4.1.2cu.5215, an attacker can bypass login by sending a specific request through formLoginAuth.htm.	n/a	n/a n/a	Aug 13, 2025	CVE
CRITICAL 9.8	CVE-2025-50594	CVE-2025-50594_CVE-2025-50594 An issue was discovered in /Code/Websites/DanpheEMR/Controllers/Settings/SecuritySettingsController.cs in Danphe Health Hospital Management System ...	n/a	n/a n/a	Aug 13, 2025	CVE
CRITICAL 9.8	CVE-2025-52385	CVE-2025-52385_CVE-2025-52385 An issue in Studio 3T v.2025.1.0 and before allows a remote attacker to execute arbitrary code via a crafted payload to the child_process module	n/a	n/a n/a	Aug 13, 2025	CVE
CRITICAL 9.8	CVE-2025-8047	Multiple Plugins from itayamar – Supply Chain Compromise_CVE-2025-8047 The disable-right-click-powered-by-pixterme through v1.2 and pixter-image-digital-license thtough v1.0 WordPress plugins load a JavaScript file whi...	Unknown	disable-right-click-powered-by-pixterme	Aug 14, 2025	CVE