CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	CVE-2026-52704	WordPress WooCommerce PDF Invoice Builder plugin <= 2.0.8 - Remote Code Execution (RCE) vulnerability_CVE-2026-52704 Improper Control of Generation of Code ('Code Injection') vulnerability in Edgar Rojas WooCommerce PDF Invoice Builder allows Remote Code Inclusion...	Edgar Rojas	WooCommerce PDF Invoice Builder n/a	Jun 15, 2026	CVE
CRITICAL 9.3	CVE-2026-5482	Remote Code Execution via Unrestricted File Upload in Responsive FileManager_CVE-2026-5482 Responsive FileManager's allows an unauthenticated attacker to upload files of any type and extension without restriction using dialog.php endpoint...	Tecrail	Responsive FileManager 9.14.0	Jun 15, 2026	CVE
CRITICAL 9.2	CVE-2026-49757	OAuth2/OIDC account takeover in AshAuthentication via email-based user matching_CVE-2026-49757 Authentication Bypass by Spoofing vulnerability in team-alembic AshAuthentication allows account takeover of local users via OAuth2/OIDC sign-in. ...	team-alembic	ash_authentication 0.1.0	Jun 15, 2026	CVE
CRITICAL 9.1	FC17B1E5-1DBA-	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Treck Tcp\/Ip_FC17B1E5-1DBA-5684-A537-D7493B9D3AEA No description provided...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.1	FB7C6A6C-C89F-	Exploit for Reliance on Cookies without Validation and Integrity Checking in Paloaltonetworks Pan-Os_FB7C6A6C-C89F-5CF5-BC7F-79EAF5F42258 CVE-2026-0257 testing...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.2	90F0A8EE-51A7-	Exploit for CVE-2026-42945_90F0A8EE-51A7-5AC2-8C97-EEBEED5A9E9B CVE-2026-42945 — NGINX Rift Critical heap buffer overflow in NGINX's ngxhttprewritemodule, present since 2008 version 0.6.27. Allows unauthenticate...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
CRITICAL 9.1	THN:23F3604E6D0...	Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw_THN:23F3604E6D0C0EDC18C5C8E4FF76DDC8 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMFIs6j0CgFzSojDqSi_UsqRzjlbYcRsrJG714Yh40TZXU4ZzlB_Do-7nbx5WGGvOS7mV3TojQLTiHbFS57B...	N/A	N/A	Jun 15, 2026	THN
CRITICAL 9.8	18388716-B313-	Exploit for Missing Authentication for Critical Function in Mcpjam Inspector_18388716-B313-53EE-AC64-C942EFC5962F CVE-2026-23744 – MCPJam Inspector Unauthenticated Remote Code Execution RCE Description - Product: MCPJam Inspector - Affected versions: ≤ 1.4.2 - ...	N/A	N/A	Jun 14, 2026	GITHUBEXPLOIT
CRITICAL 9.2	A6ABFB6C-1C6C-	Exploit for CVE-2026-42945_A6ABFB6C-1C6C-5010-B6BD-1110C1242606 CVE-2026-42945 NGINX Rift RCE PoC with Reverse Shell Remote code execution proof-of-concept for CVE-2026-42945, a heap buffer overflow in NGINX's n...	N/A	N/A	Jun 14, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CVE-2026-46289	lib/scatterlist: fix length calculations in extract_kvec_to_sg_CVE-2026-46289 In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations in extract_kvec_to_sg Patch series "...	Linux	Linux 0185846975339a5c348373aa450a977f5242366b	Jun 8, 2026	CVE