CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.7	CVE-2025-54382	Cherry Studio RCE Vulnerability Disclosure_CVE-2025-54382 Cherry Studio is a desktop client that supports for multiple LLM providers. In version 1.5.1, a remote code execution (RCE) vulnerability exists in...	CherryHQ	cherry-studio = 1.5.1	Aug 13, 2025	CVE
CRITICAL 9.8	THN:6424C9AEB80...	Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code_THN:6424C9AEB80EB4FC9DACB5F58A480B35 ![FortiSIEM Vulnerability \(CVE-2025-25256\)](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAA...	N/A	N/A	Aug 13, 2025	THN
CRITICAL 9.3	CVE-2025-8913	WellChoose｜Organization Portal System – Local File Inclusion_CVE-2025-8913 Organization Portal System developed by WellChoose has a Local File Inclusion vulnerability, allowing unauthenticated remote attackers to execute a...	WellChoose	Organization Portal System	Aug 13, 2025	CVE
CRITICAL 10	THN:7B84183CA8F...	Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws_THN:7B84183CA8FDD4C95B491A65BC16DE76 ![August 2025 Patch Tuesday](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) M...	N/A	N/A	Aug 13, 2025	THN
CRITICAL 9.8	3FC9E9A2-42CE-	Exploit for Code Injection in Xwiki_3FC9E9A2-42CE-552A-A046-E205E2471000 # CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki ## 0 Table of Contents 1. [Summary](#1-summary) 2. [Vulnerability Details](#2...	N/A	N/A	Aug 7, 2025	GITHUBEXPLOIT
CRITICAL 9.8	CC794B3A-AEAA-	Exploit for Deserialization of Untrusted Data in Microsoft_CC794B3A-AEAA-5702-835E-CDE940323175 # CVE-2025-53770 – Microsoft SharePoint Server 2019 Unauthenticated RCE via Deserialization ![CVE-2025-53770](https://img.shields.io/badge/CVE-202...	N/A	N/A	Aug 7, 2025	GITHUBEXPLOIT
CRITICAL 9.8	BA812463-BBF5-	Exploit for Code Injection in Xwiki_BA812463-BBF5-56F4-857D-CA61CFE29B88 # CVE-2025-24893 Bash POC script for RCE vulnerability in XWiki Platform ### Example usage: Setup a netcat listener: ``` $ nc -nvlp ``` Then run...	N/A	N/A	Aug 7, 2025	GITHUBEXPLOIT
CRITICAL 9.8	E5B5FB6C-FB47-	Exploit for Code Injection in Xwiki_E5B5FB6C-FB47-5B80-9C21-F45B725632D3 # CVE-2025-24893 Install bun: ```bash curl -fsSL https://bun.com/install \| bash ``` To install dependencies: ```bash bun install ``` To run: ...	N/A	N/A	Aug 7, 2025	GITHUBEXPLOIT
CRITICAL 9.8	B938A437-C237-	Exploit for Code Injection in Xwiki_B938A437-C237-5C4D-B15E-379C2F2B054F ## 📜 Description A critical RCE vulnerability exists in XWiki that allows unauthenticated attackers to execute arbitrary system c...	N/A	N/A	Aug 8, 2025	GITHUBEXPLOIT
CRITICAL 10	F2E4B773-91F0-	Exploit for Code Injection in Vmware Spring_Cloud_Gateway_F2E4B773-91F0-59FF-A88F-8896ED7892F1 # CVE-2022-22947 Spring Cloud Gateway 漏洞验证应用这是一个专门用于演示和验证 CVE-2022-22947 漏洞的 Spring Cloud Gateway 应用。该应用程序使用了易...	N/A	N/A	Aug 8, 2025	GITHUBEXPLOIT