githubexploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9	6276B3AF-472D-	Exploit for Cross-site Scripting in Xwiki Commons_6276B3AF-472D-5204-999D-C8E1355D5525 # XWiki Commons [XWiki Commons](http://commons.xwiki.org/xwiki/bin/view/Main/) are technical libraries common to several other top level XWiki pro...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
CRITICAL 9.6	1F444329-FF5F-	Exploit for Cross-site Scripting in Xwiki Xwiki-Rendering_1F444329-FF5F-578D-A932-7280A406CCA5 # XWiki Rendering [XWiki Rendering](http://rendering.xwiki.org/xwiki/bin/view/Main/) is a generic Rendering system that converts textual input in ...	N/A	N/A	Aug 16, 2025	GITHUBEXPLOIT
MEDIUM 5.3	8647EB50-4530-	Exploit for CVE-2024-28397_8647EB50-4530-5E8E-BA03-DB4AD8D66089 # CVE-2024-28397-command-execution-poc This vulnerability arises from incomplete sandboxing in js2py, where crafted JavaScript can traverse Python’...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
HIGH 7.5	089E8633-57EA-	Exploit for Path Traversal in Spaceapplications Yamcs_089E8633-57EA-5541-A3D6-6570CC36A4EB # Yamcs Mission Control ![Maven Central](https://img.shields.io/maven-central/v/org.yamcs/yamcs.svg?label=release) * Website: https://yamcs.org * ...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
MEDIUM 6.1	14C2B413-1560-	Exploit for Cross-site Scripting in Antisamy_Project Antisamy_14C2B413-1560-5460-AF74-D9E95868D55B # AntiSamy A library for performing fast, configurable cleansing of HTML coming from untrusted sources. Supports Java 7+. Another way of saying t...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
CRITICAL 9.3	EB484048-BFE6-	Exploit for CVE-2025-32778_EB484048-BFE6-585B-9A92-3600B22D8B68 # CVE-2025-32778 - Web-Check Command Injection Exploit [![Critical](https://img.shields.io/badge/CVSS-9.3-critical)](https://nvd.nist.gov/vuln/det...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
HIGH 8.8	65E110B6-22C3-	Exploit for Path Traversal in Rarlab Winrar_65E110B6-22C3-5609-A7CB-C20D761D5783 # PoC for CVE-2025-8088: Path Traversal in WinRAR ## Vulnerability Description ☢️ CVE-2025-8088 (CVSS 8.4) is a path traversal vulnerability in Wi...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
HIGH 8.8	E70A90E3-A691-	Exploit for OS Command Injection in Jenkins Pipeline\:_Groovy_E70A90E3-A691-580C-9098-8330B9CB9FEB # Pipeline: Groovy Plugin [![Jenkins Plugin](https://img.shields.io/jenkins/plugin/v/workflow-cps)](https://plugins.jenkins.io/workflow-cps) [![Ch...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
CRITICAL 9.8	5E7E3637-A48D-	Exploit for Code Injection in Codecentric Spring_Boot_Admin_5E7E3637-A48D-5AA5-9B73-0DC6A9C35728 codecentric's Spring Boot Admin =============================== [![Apache License 2](https://img.shields.io/badge/license-ASF2-blue.svg)](https://w...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT
HIGH 8.8	2D5B9636-CBA3-	Exploit for OS Command Injection in Apache Nifi_2D5B9636-CBA3-5F2E-8365-F95DB3051F53 # Apache NiFi ### Status [![ci-workflow](https://github.com/apache/nifi/workflows/ci-workflow/badge.svg)](https://github.com/apache/nifi/acti...	N/A	N/A	Aug 17, 2025	GITHUBEXPLOIT