Live-Hack-CVE/CVE-2020-24307 An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. CVE project by @Sn0wAlice Create: 2023-02-02 21:57:38 +0000 UTC Push: 2023-02-02 21:57:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-33323 Active Debug Code vulnerability in robot controller of Mitsubishi Electric Corporation industrial robot MELFA SD/SQ Series and MELFA F-Series allows a remote unauthenticated attacker to gain unauthorized access by authentication bypass through an unauthorized telnet login. As for the affected model names, controller ty CVE project by @Sn0wAlice Create: 2023-02-02 19:49:22 +0000 UTC Push: 2023-02-02 19:49:24 +0000 UTC |

Live-Hack-CVE/CVE-2022-40269 Authentication Bypass by Spoofing vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265B to 1.285X allows a re CVE project by @Sn0wAlice Create: 2023-02-02 19:49:17 +0000 UTC Push: 2023-02-02 19:49:20 +0000 UTC |

Live-Hack-CVE/CVE-2022-40268 Improper Restriction of Rendered UI Layers or Frames vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265B to CVE project by @Sn0wAlice Create: 2023-02-02 19:49:14 +0000 UTC Push: 2023-02-02 19:49:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-0641 A vulnerability was found in PHPGurukul Employee Leaves Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file changepassword.php. The manipulation of the argument newpassword/confirmpassword leads to weak password requirements. The attack can CVE project by @Sn0wAlice Create: 2023-02-02 19:49:10 +0000 UTC Push: 2023-02-02 19:49:12 +0000 UTC |

Live-Hack-CVE/CVE-2023-0640 A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and m CVE project by @Sn0wAlice Create: 2023-02-02 19:49:06 +0000 UTC Push: 2023-02-02 19:49:09 +0000 UTC |

Live-Hack-CVE/CVE-2023-0639 A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file get_set.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated remotely. The associa CVE project by @Sn0wAlice Create: 2023-02-02 19:49:02 +0000 UTC Push: 2023-02-02 19:49:05 +0000 UTC |

Live-Hack-CVE/CVE-2023-0638 A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. This vulnerability affects unknown code of the component Web Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-220018 i CVE project by @Sn0wAlice Create: 2023-02-02 19:48:59 +0000 UTC Push: 2023-02-02 19:49:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-0637 A vulnerability, which was classified as critical, was found in TRENDnet TEW-811DRU 1.0.10.0. This affects an unknown part of the file wan.asp of the component Web Management Interface. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The exploit has been disclosed to the pub CVE project by @Sn0wAlice Create: 2023-02-02 19:48:55 +0000 UTC Push: 2023-02-02 19:48:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-0400 The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correctly prevented. Versions prior to 11.9 correctly detected and bl CVE project by @Sn0wAlice Create: 2023-02-02 19:48:51 +0000 UTC Push: 2023-02-02 19:48:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-2546 The All-in-One WP Migration WordPress plugin before 7.63 uses the wrong content type, and does not properly escape the response from the ai1wm_export AJAX action, allowing an attacker to craft a request that when submitted by any visitor will inject arbitrary html or javascript into the response that will be executed i CVE project by @Sn0wAlice Create: 2023-02-02 19:48:47 +0000 UTC Push: 2023-02-02 19:48:50 +0000 UTC |

Live-Hack-CVE/CVE-2022-43665 A denial of service vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.8.645. A specially-crafted PE file can lead to killing target process. An attacker can provide a malicious file to trigger this vulnerability. CVE project by @Sn0wAlice Create: 2023-02-02 19:48:44 +0000 UTC Push: 2023-02-02 19:48:46 +0000 UTC |

ColdFusionX/CVE-20204-4877-CWP7 Control Web Panel 7 (CWP7) Remote Code Execution (RCE) (CVE-2022-44877) (Unauthenticated) Create: 2023-02-02 19:00:32 +0000 UTC Push: 2023-02-02 19:00:33 +0000 UTC |

ColdFusionX/CVE-2022-44877-CWP7 Control Web Panel 7 (CWP7) Remote Code Execution (RCE) (CVE-2022-44877) (Unauthenticated) Create: 2023-02-02 19:00:32 +0000 UTC Push: 2023-02-02 19:01:51 +0000 UTC |

Kimorea/CVE-2020-27955-LFS Create: 2023-02-02 17:28:33 +0000 UTC Push: 2023-02-02 17:28:33 +0000 UTC |

Trinadh465/linux-4.1.15_CVE-2017-1000371 Create: 2023-02-02 15:22:19 +0000 UTC Push: 2023-02-02 15:22:20 +0000 UTC |

Live-Hack-CVE/CVE-2018-3965 An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malic CVE project by @Sn0wAlice Create: 2023-02-02 14:22:27 +0000 UTC Push: 2023-02-02 14:22:29 +0000 UTC |

Live-Hack-CVE/CVE-2018-3967 An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malic CVE project by @Sn0wAlice Create: 2023-02-02 14:22:23 +0000 UTC Push: 2023-02-02 14:22:25 +0000 UTC |

Live-Hack-CVE/CVE-2018-3966 An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malic CVE project by @Sn0wAlice Create: 2023-02-02 14:22:20 +0000 UTC Push: 2023-02-02 14:22:22 +0000 UTC |

Live-Hack-CVE/CVE-2018-3890 An exploitable code execution vulnerability exists in the firmware update functionality of Yi Home Camera 27US 1.8.7.0D. A specially crafted file can cause a logic flaw and command injection, resulting in code execution. An attacker can insert an SD card to trigger this vulnerability. CVE project by @Sn0wAlice Create: 2023-02-02 14:22:16 +0000 UTC Push: 2023-02-02 14:22:18 +0000 UTC |