LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.7	CVE-2026-1582	WP All Export <= 1.4.14 - Unauthenticated Sensitive Information Exposure via PHP Type Juggling_CVE-2026-1582 The WP All Export plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.14 via the export ...	soflyy	WP All Export – Drag & Drop Export to Any Custom CSV, XML & Excel *	Feb 18, 2026	CVE
LOW 2.7	CVE-2026-2419	WP-DownloadManager <= 1.69 - Authenticated (Administrator+) Path Traversal to Arbitrary File Read via 'download_path' Parameter_CVE-2026-2419 The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.69 via the 'download_path' conf...	gamerz	WP-DownloadManager *	Feb 18, 2026	CVE
LOW 2.7	CVE-2026-1831	YayMail <= 4.3.2 - Missing Authorization to Authenticated (Shop Manager+) Plugin Installation and Activation_CVE-2026-1831 The YayMail - WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized plugin installation and activation due to missing cap...	yaycommerce	YayMail – WooCommerce Email Customizer *	Feb 18, 2026	CVE
LOW 2.9	CVE-2026-27171	CVE-2026-27171_CVE-2026-27171 zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no ...	zlib	zlib	Feb 18, 2026	CVE
LOW 3.1	CVE-2026-0102	Microsoft Edge (Chromium-based) Defense in Depth Vulnerability_CVE-2026-0102 {“lastseen”:””,”description”:””,”published”:”2026-02-17T19:14:32.901Z”,&#82...	Microsoft	Microsoft Edge (Chromium-based) 1.0.0.0	Feb 17, 2026	CVE
LOW 3.8	CVE-2025-36183	Privileged User File Upload Vulnerability Leading to Limited Server-Side Execution affects watsonx.data_CVE-2025-36183 IBM watsonx.data 2.2 through 2.2.1 IBM Lakehouse could allow a privileged user to upload malicious files that could be executed server to modify li...	IBM	watsonx.data 2.2	Feb 17, 2026	CVE
LOW 3.3	CVE-2026-20601	CVE-2026-20601_CVE-2026-20601 A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.3. An app may be able to monitor keystrokes w...	Apple	macOS unspecified	Feb 11, 2026	CVE
LOW 2.3	CVE-2026-2555	JeecgBoot Retrieval-Augmented Generation AiragKnowledgeController.java importDocumentFromZip deserialization_CVE-2026-2555 A weakness has been identified in JeecgBoot 3.9.1. This vulnerability affects the function importDocumentFromZip of the file org/jeecg/modules/aira...	n/a	JeecgBoot 3.9.1	Feb 16, 2026	CVE
LOW 3.8	CVE-2025-14573	Team Admin Bypass of Invite Permissions via allow_open_invite Field_CVE-2025-14573 Mattermost versions 10.11.x	Mattermost	Mattermost 10.11.0	Feb 16, 2026	CVE
LOW 3.3	CVE-2026-20681	CVE-2026-20681_CVE-2026-20681 A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Tahoe 26.3. An app may be able to ...	Apple	macOS unspecified	Feb 11, 2026	CVE