packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	PACKETSTORM:212864	📄 Craft CMS 5.0 Twig Template Injection Scanner_PACKETSTORM:212864 This is a mass scanning script for the Craft CMS version 5.0 Twig template injection vulnerability...	N/A	N/A	Dec 16, 2025	PACKETSTORM
HIGH 7.5	PACKETSTORM:212872	📄 HTTP/2 Rapid Reset DoS Tester_PACKETSTORM:212872 This is an HTTP/2 Rapid Reset denial of service testing tool. It provides a comprehensive method for testing CVE-2023-44487 with cross-system compa...	N/A	N/A	Dec 16, 2025	PACKETSTORM
MEDIUM 6.4	PACKETSTORM:212873	📄 WordPress Omnipress 1.6.3 Cross Site Scripting_PACKETSTORM:212873 WordPress Omnipress plugin versions 1.6.3 and below suffer from a persistent cross site scripting vulnerability...	N/A	N/A	Dec 16, 2025	PACKETSTORM
NONE	PACKETSTORM:212870	📄 HighCMS 12.x SQL Injection_PACKETSTORM:212870 HighCMS version 12.x remote SQL injection proof of concept exploit written in Python...	N/A	N/A	Dec 16, 2025	PACKETSTORM
HIGH 7.8	PACKETSTORM:212871	📄 HTMLDOC 1.9.13 Stack Buffer Overflow_PACKETSTORM:212871 Proof of concept exploit written in PHP for HTMLDOC version 1.9.13 that generates a malicious BMP file that will trigger a stack buffer overflow vu...	N/A	N/A	Dec 16, 2025	PACKETSTORM
NONE	PACKETSTORM:212816	📄 Flask 3.0.0 Command Injection_PACKETSTORM:212816 Flash 3.0.0 proof of concept exploit that demonstrates multiple command injection vulnerabilities...	N/A	N/A	Dec 15, 2025	PACKETSTORM
NONE	PACKETSTORM:212819	📄 Docker Compose 2.40.3 Command Execution_PACKETSTORM:212819 Docker Compose version 2.40.3 proof of concept provider type PHP command execution exploit...	N/A	N/A	Dec 15, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212824	📄 FoxCMS 1.0 Code Injection_PACKETSTORM:212824 FoxCMS version 1.0 proof of concept remote code injection exploit...	N/A	N/A	Dec 15, 2025	PACKETSTORM
CRITICAL 9.4	PACKETSTORM:212820	📄 dotCMS 25.07.02-1 Security Scanner_PACKETSTORM:212820 dotCMS version 25.07.02-1 python scanning script that looks for remote SQL injection...	N/A	N/A	Dec 15, 2025	PACKETSTORM
HIGH 7.2	PACKETSTORM:212825	📄 GetSimple CMS 3.3.16 Cross Site Request Forgery_PACKETSTORM:212825 GetSimple CMS version 3.3.16 cross site request forgery proof of concept that deletes all backups without user confirmation...	N/A	N/A	Dec 15, 2025	PACKETSTORM