packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	PACKETSTORM:220609	📄 WordPress Chart 3.5.9 Missing Authentication_PACKETSTORM:220609 The Chartify WordPress Chart plugin contains a missing authentication vulnerability in all versions up to and including 3.5.9. The plugin registers...	N/A	N/A	May 8, 2026	PACKETSTORM
HIGH 10	PACKETSTORM:220563	📄 Exim 4.91 Remote Command Execution_PACKETSTORM:220563 Exim versions 4.87 through 4.91 improper recipient-address validation remote command execution exploit...	N/A	N/A	May 8, 2026	PACKETSTORM
MEDIUM 4.8	PACKETSTORM:220578	📄 Apache Airflow Databricks Provider Certificate Verification Bypass_PACKETSTORM:220578 The Apache Airflow Databricks Provider package disables TLS certificate verification when communicating with the Kubernetes API server during feder...	N/A	N/A	May 8, 2026	PACKETSTORM
MEDIUM 6.5	PACKETSTORM:220601	📄 WordPress CatFolders 2.5.2 SQL Injection_PACKETSTORM:220601 WordPress CatFolders plugin versions 2.5.2 and below suffer from a remote SQL injection vulnerability...	N/A	N/A	May 8, 2026	PACKETSTORM
NONE	PACKETSTORM:220639	📄 Dash-Uploader 0.7.0a2 Path Traversal_PACKETSTORM:220639 There is an unauthenticated path traversal in dash-uploader versions 0.1.0 through 0.7.0a2 allowing arbitrary file write, leading to but not limite...	N/A	N/A	May 8, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:220575	📄 telnetd 2.7 Buffer Overflow_PACKETSTORM:220575 telnetd version 2.7 addslc remote buffer overflow exploit that achieves root...	N/A	N/A	May 8, 2026	PACKETSTORM
HIGH 8.3	PACKETSTORM:220500	📄 Hibernate ORM 5.6.15 SQL Injection_PACKETSTORM:220500 Hibernate ORM versions 5.6.15 and below suffer from a remote SQL injection vulnerability...	N/A	N/A	May 6, 2026	PACKETSTORM
NONE	PACKETSTORM:220501	📄 MikroORM 7.0.5 SQL Injection_PACKETSTORM:220501 MikroORM versions 7.0.5 and below suffer from a remote SQL injection vulnerability...	N/A	N/A	May 6, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:220410	📄 SumatraPDF 3.5.2 Remote Code Execution_PACKETSTORM:220410 SumatraPDF versions 3.5.0 to 3.5.2 disable TLS hostname verification during update checks using INTERNETFLAGIGNORECERTCNINVALID and do not perform ...	N/A	N/A	May 5, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:220381	📄 MindsDB 25.9.1.1 Path Traversal_PACKETSTORM:220381 MindsDB version 25.9.1.1 suffers from a path traversal vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM