CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2026-56073	Cap-go – OTP Bypass via Response Manipulation in Email Verification_CVE-2026-56073 Cap-go before 12.128.2 contains an authentication bypass vulnerability in OTP verification that allows attackers to bypass email verification by mo...	Cap-go	capgo	Jun 19, 2026	CVE
CRITICAL 9.8	CVE-2026-11551	Branda – White Label & Branding, Free Login Page Customizer <= 3.4.29 - Unauthenticated Privilege Escalation via Account Takeover_CVE-2026-11551 The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.29. This is du...	wpmudev	Branda – White Label & Branding, Free Login Page Customizer	Jun 19, 2026	CVE
CRITICAL 9.6	MS:CVE-2026-12440	CVE-2026-12440 Use after free in DigitalCredentials_MS:CVE-2026-12440 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
CRITICAL 9.8	CVE-2026-48773	ProxySQL pre-auth heap overflow in MySQL and PostgreSQL first-packet handling_CVE-2026-48773 ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. Versions 2.0.18 through 3.0.8 have a pre-authentication heap memory corruption ...	sysown	proxysql >= 2.0.18, < 3.0.9	Jun 19, 2026	CVE
CRITICAL 10	CVE-2026-48772	ProxySQL: PROXY-Protocol-v1 UNKNOWN parses spoofed source IP, bypassing mysql_query_rules.client_addr ACL_CVE-2026-48772 ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In versions 2.0.0 through 3.0.8, the ProxySQL MySQL frontend accepts the `PROXY...	sysown	proxysql >= 2.0.0, < 3.0.9	Jun 19, 2026	CVE
CRITICAL 9.9	CVE-2026-48584	Microsoft Azure Synapse Elevation of Privilege Vulnerability_CVE-2026-48584 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:48.494Z”,&#82...	Microsoft	Azure Synapse -	Jun 19, 2026	CVE
CRITICAL 9.6	CVE-2026-48582	Microsoft Exchange Online Elevation of Privilege Vulnerability_CVE-2026-48582 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:29:41.615Z”,&#82...	Microsoft	Microsoft Exchange Online -	Jun 19, 2026	CVE
CRITICAL 10	CVE-2026-45480	Azure Active Directory Elevation of Privilege Vulnerability_CVE-2026-45480 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:46.192Z”,&#82...	Microsoft	Azure Active Directory -	Jun 19, 2026	CVE
CRITICAL 9.9	44B81EDD-C298-	Exploit for Execution with Unnecessary Privileges in Percona Monitoring_And_Management_44B81EDD-C298-593E-9EA3-5225EF88AC36 CVE-2026-25212 POC for CVE-2026-25212...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 10	FF7344F1-411D-	Exploit for Deserialization of Untrusted Data in Facebook React_FF7344F1-411D-55F1-B276-7221215B98DB CVE-2025-55182 — React2Shell Unauthenticated RCE in React Server Components Author: TYehan --- TL;DR A single unauthenticated HTTP request can exec...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT