packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	PACKETSTORM:215739	📄 PaperCut MF/NG 25.0.5 Authentication Bypass / Remote Code Execution_PACKETSTORM:215739 A critical security vulnerability was discovered in version 25.0.5 of PaperCut MF/NG that allows attackers to bypass authentication and execute rem...	N/A	N/A	Feb 17, 2026	PACKETSTORM
NONE	PACKETSTORM:215747	📄 Python 3 Minidom Denial of Service_PACKETSTORM:215747 This proof of concept demonstrates an algorithmic denial of service condition caused by parsing an XML document containing an extremely large numbe...	N/A	N/A	Feb 17, 2026	PACKETSTORM
CRITICAL 9.9	PACKETSTORM:215712	📄 BeyondTrust Remote Support / Privileged Remote Access Remote Code Execution_PACKETSTORM:215712 A critical pre‑authentication remote code execution vulnerability identified as CVE-2026-1731 affects products from BeyondTrust, specifically Remot...	N/A	N/A	Feb 17, 2026	PACKETSTORM
HIGH 7.2	PACKETSTORM:215790	📄 SmarterMail 9518 Cross Site Scripting_PACKETSTORM:215790 SmarterMail versions 9518 and below have an issue where user input passed through the MailboxId GET parameter to the MAPI endpoints is not properly...	N/A	N/A	Feb 17, 2026	PACKETSTORM
MEDIUM 5.5	PACKETSTORM:215750	📄 Qualcomm CVP Kernel Driver Pointer Disclosure / Privilege Escalation_PACKETSTORM:215750 This advisory describes a local privilege escalation vulnerability affecting the Qualcomm CVP kernel driver msmcvp, exposed through the /dev/cvp de...	N/A	N/A	Feb 17, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:215719	📄 Extensis Portfolio Manager 4.0.1 Shell Upload_PACKETSTORM:215719 This Metasploit module exploits multiple vulnerabilities in Extensis Portfolio Server to achieve remote code execution. It leverages CVE-2022-24251...	N/A	N/A	Feb 17, 2026	PACKETSTORM
NONE	PACKETSTORM:215641	📄 PopojiCMS 2.0.1 Code Injection_PACKETSTORM:215641 PopojiCMS version 2.0.1 remote PHP code injection proof of concept exploit...	N/A	N/A	Feb 16, 2026	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:215642	📄 PPOM for WooCommerce 33.0.15 SQL Injection / Code Execution_PACKETSTORM:215642 This is an extensive exploit that leverages a remote SQL injection vulnerability in PPOM for WooCommerce version 33.0.15 to also achieve remote cod...	N/A	N/A	Feb 16, 2026	PACKETSTORM
CRITICAL 10	PACKETSTORM:215704	📄 ChurchCRM 6.8.0 Unauthenticated Remote Code Execution_PACKETSTORM:215704 This Metasploit module exploits an unauthenticated remote code execution vulnerability in the installation process of ChurchCRM versions 6.8.0 and ...	N/A	N/A	Feb 16, 2026	PACKETSTORM
NONE	PACKETSTORM:215645	📄 Netgate pfSense Community Edition 2.7.2 / 2.8.0 Remote Code Execution_PACKETSTORM:215645 Netgate pfSense Community Edition versions 2.7.2 and 2.8.0 appear to suffer from multiple authenticated remote code execution vulnerabilities that ...	N/A	N/A	Feb 16, 2026	PACKETSTORM