Live-Hack-CVE/CVE-2017-7492 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-7503. Reason: This candidate is a reservation duplicate of CVE-2017-7503. Notes: All CVE users should reference CVE-2017-7503 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. CVE project by @Sn0wAlice Create: 2023-02-12 20:10:01 +0000 UTC Push: 2023-02-12 20:10:03 +0000 UTC |

Live-Hack-CVE/CVE-2017-7473 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA based off of CNT 3. Further investigation determined that there was a secure method for using the directive. Notes: none. CVE project by @Sn0wAlice Create: 2023-02-12 20:09:57 +0000 UTC Push: 2023-02-12 20:10:00 +0000 UTC |

Live-Hack-CVE/CVE-2023-0785 A vulnerability classified as problematic was found in SourceCodester Best Online News Portal 1.0. Affected by this vulnerability is an unknown functionality of the file check_availability.php. The manipulation of the argument username leads to exposure of sensitive information through data queries. The attack can be l CVE project by @Sn0wAlice Create: 2023-02-12 20:09:52 +0000 UTC Push: 2023-02-12 20:09:54 +0000 UTC |

Live-Hack-CVE/CVE-2023-0784 A vulnerability classified as critical has been found in SourceCodester Best Online News Portal 1.0. Affected is an unknown function of the component Login Page. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a CVE project by @Sn0wAlice Create: 2023-02-12 20:09:49 +0000 UTC Push: 2023-02-12 20:09:51 +0000 UTC |

wlswotmd/CVE-2022-0435 Create: 2023-02-12 15:13:19 +0000 UTC Push: 2023-02-12 15:13:20 +0000 UTC |

wlswotmd/CVE-2022-1015 Create: 2023-02-12 15:06:40 +0000 UTC Push: 2023-02-12 15:06:40 +0000 UTC |

Live-Hack-CVE/CVE-2022-25733 Denial of service in modem due to null pointer dereference while processing DNS packets CVE project by @Sn0wAlice Create: 2023-02-12 14:44:48 +0000 UTC Push: 2023-02-12 14:44:50 +0000 UTC |

Live-Hack-CVE/CVE-2022-41731 IBM Watson Knowledge Catalog on Cloud Pak for Data 4.5.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 237402. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:44 +0000 UTC Push: 2023-02-12 14:44:46 +0000 UTC |

Live-Hack-CVE/CVE-2022-25729 Memory corruption in modem due to improper length check while copying into memory CVE project by @Sn0wAlice Create: 2023-02-12 14:44:40 +0000 UTC Push: 2023-02-12 14:44:43 +0000 UTC |

Live-Hack-CVE/CVE-2022-38681 In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:37 +0000 UTC Push: 2023-02-12 14:44:39 +0000 UTC |

Live-Hack-CVE/CVE-2022-38674 In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:33 +0000 UTC Push: 2023-02-12 14:44:36 +0000 UTC |

Live-Hack-CVE/CVE-2022-38396 HP Factory Preinstalled Images on certain systems that shipped with Windows 10 versions 20H2 and earlier OS versions might allow escalation of privilege via execution of certain files outside the restricted path. This potential vulnerability was remediated starting with Windows 10 versions 21H2 on October 31, 2021. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:29 +0000 UTC Push: 2023-02-12 14:44:31 +0000 UTC |

Live-Hack-CVE/CVE-2022-34146 Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:26 +0000 UTC Push: 2023-02-12 14:44:28 +0000 UTC |

Live-Hack-CVE/CVE-2022-33277 Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:23 +0000 UTC Push: 2023-02-12 14:44:24 +0000 UTC |

Live-Hack-CVE/CVE-2022-33225 Memory corruption due to use after free in trusted application environment. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:19 +0000 UTC Push: 2023-02-12 14:44:21 +0000 UTC |

Live-Hack-CVE/CVE-2022-33216 Transient Denial-of-service in Automotive due to improper input validation while parsing ELF file. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:16 +0000 UTC Push: 2023-02-12 14:44:18 +0000 UTC |

Live-Hack-CVE/CVE-2022-25728 Information disclosure in modem due to buffer over-read while processing response from DNS server CVE project by @Sn0wAlice Create: 2023-02-12 14:44:12 +0000 UTC Push: 2023-02-12 14:44:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-24029 In Progress WS_FTP Server before 8.8, it is possible for a host administrator to elevate their privileges via the administrative interface due to insufficient authorization controls applied on user modification workflows. CVE project by @Sn0wAlice Create: 2023-02-12 14:44:02 +0000 UTC Push: 2023-02-12 14:44:04 +0000 UTC |

Live-Hack-CVE/CVE-2022-1970 keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter. CVE project by @Sn0wAlice Create: 2023-02-12 14:43:54 +0000 UTC Push: 2023-02-12 14:43:56 +0000 UTC |

varelsecurity/CVE-2016-10993 CVE-2016-10993 Create: 2023-02-12 14:28:43 +0000 UTC Push: 2023-02-12 14:28:43 +0000 UTC |