packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	PACKETSTORM:212105	📄 Confluence 8.x Privilege Escalation_PACKETSTORM:212105 Metasploit module proof of concept exploit that demonstrates an authentication bypass vulnerability Confluence version 8.x...	N/A	N/A	Nov 26, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212103	📄 CAREL Boss / Boss Mini 1.4.0 Path Traversal_PACKETSTORM:212103 Proof of concept for an older vulnerability in 2023 where CAREL Boss and Boss Mini version 1.4.0 suffer from a path traversal vulnerability...	N/A	N/A	Nov 26, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212111	📄 Microsoft Sharepoint Authentication Bypass_PACKETSTORM:212111 This is a proof of concept exploit for a Microsoft Sharepoint authentication bypass vulnerability discovered in 2023...	N/A	N/A	Nov 26, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212110	📄 XWiki Platform 15.10.10 Remote Command Execution_PACKETSTORM:212110 XWiki Platform version 15.10.10 suffers from a critical unauthenticated remote command execution vulnerability through the SolrSearch endpoint. The...	N/A	N/A	Nov 26, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:212104	📄 Brocade Fabric OS Weak Crypto / Key Compromise_PACKETSTORM:212104 This analysis focuses on some older flaws with Brocade Fabric OS versions prior to 9.2.2 related to man-in-the-middle, weak cryptography, and hardc...	N/A	N/A	Nov 26, 2025	PACKETSTORM
HIGH 7.8	PACKETSTORM:212101	📄 7-Zip 25.00 Zip Slip Directory Traversal_PACKETSTORM:212101 7-Zip version 25.00 suffers from a symlink directory traversal vulnerability. This write up provides analysis with a proof of concept...	N/A	N/A	Nov 26, 2025	PACKETSTORM
NONE	PACKETSTORM:212000	📄 CZS CMS 1.3.0 Cross Site Request Forgery_PACKETSTORM:212000 This proof of concept leverages a known cross site request forgery vulnerability in CZS CMS version 1.3.0 to add an administrator...	N/A	N/A	Nov 25, 2025	PACKETSTORM
NONE	PACKETSTORM:211999	📄 Citrix Bleed 2 PHP Mass Scanner_PACKETSTORM:211999 This is a high-speed mass-scanner written in PHP designed to test for data leakage through the CitrixBleed2 InitialValue extraction issue. The tool...	N/A	N/A	Nov 25, 2025	PACKETSTORM
NONE	PACKETSTORM:211998	📄 macOS 18.3.2 VM_BEHAVIOR_ZERO_WIRED_PAGES Handling_PACKETSTORM:211998 A vulnerability exists in the way macOS handles VMBEHAVIORZEROWIREDPAGES combined with mmap + mlock + vmdeallocate on a read-only mapped file. A lo...	N/A	N/A	Nov 25, 2025	PACKETSTORM
NONE	PACKETSTORM:212009	📄 Classroomio LMS 0.1.13 Cross Site Scripting_PACKETSTORM:212009 Classroomio LMS version 0.1.13 suffers from multiple persistent cross site scripting vulnerabilities via uploaded SVG files...	N/A	N/A	Nov 25, 2025	PACKETSTORM