packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	PACKETSTORM:220639	📄 Dash-Uploader 0.7.0a2 Path Traversal_PACKETSTORM:220639 There is an unauthenticated path traversal in dash-uploader versions 0.1.0 through 0.7.0a2 allowing arbitrary file write, leading to but not limite...	N/A	N/A	May 8, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:220575	📄 telnetd 2.7 Buffer Overflow_PACKETSTORM:220575 telnetd version 2.7 addslc remote buffer overflow exploit that achieves root...	N/A	N/A	May 8, 2026	PACKETSTORM
HIGH 8.3	PACKETSTORM:220500	📄 Hibernate ORM 5.6.15 SQL Injection_PACKETSTORM:220500 Hibernate ORM versions 5.6.15 and below suffer from a remote SQL injection vulnerability...	N/A	N/A	May 6, 2026	PACKETSTORM
NONE	PACKETSTORM:220501	📄 MikroORM 7.0.5 SQL Injection_PACKETSTORM:220501 MikroORM versions 7.0.5 and below suffer from a remote SQL injection vulnerability...	N/A	N/A	May 6, 2026	PACKETSTORM
HIGH 7.5	PACKETSTORM:220410	📄 SumatraPDF 3.5.2 Remote Code Execution_PACKETSTORM:220410 SumatraPDF versions 3.5.0 to 3.5.2 disable TLS hostname verification during update checks using INTERNETFLAGIGNORECERTCNINVALID and do not perform ...	N/A	N/A	May 5, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:220381	📄 MindsDB 25.9.1.1 Path Traversal_PACKETSTORM:220381 MindsDB version 25.9.1.1 suffers from a path traversal vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:220383	📄 HUSTOJ 26.01.24 Zip-Slip Remote Code Execution_PACKETSTORM:220383 HUSTOJ version 26.01.24 suffers from zip-slip remote code execution vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM
HIGH 7.8	PACKETSTORM:220388	📄 Microsoft Windows 11 23H2 Denial of Service_PACKETSTORM:220388 Microsoft Windows 11 23H2 suffers from a denial of service vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM
HIGH 8.6	PACKETSTORM:220400	📄 Python-Multipart 0.0.22 Path Traversal_PACKETSTORM:220400 Python-Multipart version 0.0.22 suffers from a path traversal vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM
CRITICAL 9.6	PACKETSTORM:220394	📄 Cybersecurity AI (CAI) Framework 0.5.10 Command Injection_PACKETSTORM:220394 Cybersecurity AI CAI Framework versions 0.5.10 and below suffer from a command injection vulnerability...	N/A	N/A	May 5, 2026	PACKETSTORM