packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	PACKETSTORM:218708	📄 Authentic 8 User Profile Insecure Direct Object Reference_PACKETSTORM:218708 Proof of concept exploit that demonstrates user data exposure via an insecure direct object reference and missing access control vulnerabilities in...	N/A	N/A	Apr 10, 2026	PACKETSTORM
NONE	PACKETSTORM:215963	📄 Soosyze CMS 2.0 Rate Limit Scanner_PACKETSTORM:215963 Soosyze CMS 2.0 suffers from a missing authentication rate‑limiting vulnerability CWE‑307 on the /user/login endpoint. The application allows unlim...	N/A	N/A	Feb 20, 2026	PACKETSTORM
NONE	PACKETSTORM:215967	📄 wlc SSL Certification Validation Bypass_PACKETSTORM:215967 This proof of concept demonstrates a security issue in wlc versions earlier than 1.17.0, where SSL/TLS certificate validation can be bypassed. By a...	N/A	N/A	Feb 20, 2026	PACKETSTORM
MEDIUM 5	PACKETSTORM:215965	📄 Sophos Web Virtual Appliance 3.7.0 Directory Traversal_PACKETSTORM:215965 Proof of concept exploit for an older vulnerability from 2013 where Sophos Web Virtual Appliance version 3.7.0 suffered from a directory traversal ...	N/A	N/A	Feb 20, 2026	PACKETSTORM
MEDIUM 5.3	PACKETSTORM:215956	📄 GnuTLS X.509 Name Constraints Denial of Service_PACKETSTORM:215956 This program is a multi-threaded test application created to analyze the impact of excessive X.509 Name Constraints processing in vulnerable versio...	N/A	N/A	Feb 20, 2026	PACKETSTORM
HIGH 8.8	PACKETSTORM:215966	📄 Splunk Enterprise 8.2.9 / 9.0.2 Authenticated Remote Code Execution_PACKETSTORM:215966 Proof of concept exploit for CVE-2022-43571, a critical authenticated remote code execution vulnerability affecting Splunk Enterprise versions 8.2....	N/A	N/A	Feb 20, 2026	PACKETSTORM
NONE	PACKETSTORM:215953	📄 GLPI Accessible Documents Insecure Direct Object Reference_PACKETSTORM:215953 This Metasploit auxiliary module scans a GLPI installation for improperly exposed documents linked to KnowbaseItem objects via the document.send.ph...	N/A	N/A	Feb 20, 2026	PACKETSTORM
CRITICAL 10	PACKETSTORM:215955	📄 Dell RecoverPoint for Virtual Machines Shell Upload_PACKETSTORM:215955 This proof of concept leverage Tomcat manager credentials to upload and execute a malicious WAR file containing a JSP web shell on Dell RecoverPoin...	N/A	N/A	Feb 20, 2026	PACKETSTORM
CRITICAL 10	PACKETSTORM:215959	📄 SmarterMail 100.0.9413 GUID File Remote Code Execution_PACKETSTORM:215959 This PHP code implements a fully automated remote exploitation framework targeting SmarterMail version 100.0.9413. It is designed to identify the s...	N/A	N/A	Feb 20, 2026	PACKETSTORM
NONE	PACKETSTORM:215921	📄 Selenium Server (Grid) 4.27.0 Code Injection_PACKETSTORM:215921 Proof of concept exploit for Selenium Server Grid versions 4.27.0 and below that exploits firefoxprofile to force the browser to run bash commands...	N/A	N/A	Feb 20, 2026	PACKETSTORM