exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.3	CVE-2026-13524	CherryHQ cherry-studio MCP OAuth Local Callback Server callback.ts improper authorization_CVE-2026-13524 A security vulnerability has been detected in CherryHQ cherry-studio up to 1.9.6. This vulnerability affects unknown code of the file src/main/serv...	CherryHQ	cherry-studio 1.9.0	Jun 29, 2026	CVE
MEDIUM 4.8	CVE-2026-13523	GPAC ISOBMFF base_encoding.c data amplification_CVE-2026-13523 A weakness has been identified in GPAC up to 26.02.0. This affects an unknown part of the file src/utils/base_encoding.c of the component ISOBMFF P...	n/a	GPAC 26.02	Jun 29, 2026	CVE
NONE	B21B76E5-AEA9-	openstamanager-cve-poc_B21B76E5-AEA9-5A94-B5B5-FEF27823A96D This might be an opportunity for both of these CVEs’ PoCs to be improved. https://github.com/advisories/GHSA-rm34-fg4m-39mw https://github.com/advi...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
NONE	HACKREAD:6CE6C4...	Top Cyber Range Providers: A Comparison of 15 Leading Platforms_HACKREAD:6CE6C44556B1DFB1F66C2B6C0EE3D3C7 Compare 15 cyber range platforms across live-fire exercises, AI testing, SOC training, OT realism, deployment options, pricing models, and data res...	N/A	N/A	Jun 28, 2026	HACKREAD
NONE	15C84537-E1A0-	customized_exploit_15C84537-E1A0-56B5-9CB0-11A9CF25D2A3 No description provided...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
LOW 2.3	CVE-2026-13511	VoltAgent Memory REST API memory.handlers.ts handleGetMemoryConversation improper authorization_CVE-2026-13511 A vulnerability was determined in VoltAgent up to 2.1.17. Affected by this issue is the function handleGetMemoryConversation of the file packages/s...	n/a	VoltAgent 2.1.0	Jun 28, 2026	CVE
MEDIUM 6.3	CVE-2026-13510	SimStudioAI sim Password Protection deployment.ts weak hash_CVE-2026-13510 A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in the library apps/sim/lib/c...	SimStudioAI	sim 0.6.0	Jun 28, 2026	CVE
MEDIUM 5.3	CVE-2026-13512	Databend Tenant client_session_manager.rs state_key authorization_CVE-2026-13512 A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::state_key of the file src/query/s...	n/a	Databend 1.2.881	Jun 28, 2026	CVE
HIGH 8.7	CVE-2026-13515	Tenda JD12L SetPptpServerCfg formSetPPTPServer stack-based overflow_CVE-2026-13515 A security vulnerability has been detected in Tenda JD12L 16.03.53.23. Impacted is the function formSetPPTPServer of the file /goform/SetPptpServer...	Tenda	JD12L 16.03.53.23	Jun 28, 2026	CVE
CRITICAL 10	8DE9243B-6A0A-	Exploit for Deserialization of Untrusted Data in Facebook React_8DE9243B-6A0A-594B-8B6F-C8166280CA2C CVE-2025-55182-React2Shell-RCE React2Shell CVE-2025-55182 PoC...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT