krizzz07/CVE-2020-0796 windows 10 SMB vulnerability Create: 2023-01-29 12:29:49 +0000 UTC Push: 2023-01-29 12:29:50 +0000 UTC |

fakenews2025/CVE-2023-21839 CVE-2023-21839 exp Create: 2023-01-29 11:02:10 +0000 UTC Push: 2023-01-29 11:02:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-0563 A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. The manipulation of the argument ahname leads to cross site scripting. It is possible to initiate the attack remotely. Th CVE project by @Sn0wAlice Create: 2023-01-29 10:18:12 +0000 UTC Push: 2023-01-29 10:18:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-0562 A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The identifi CVE project by @Sn0wAlice Create: 2023-01-29 10:18:09 +0000 UTC Push: 2023-01-29 10:18:11 +0000 UTC |

Live-Hack-CVE/CVE-2021-4315 A vulnerability has been found in NYUCCL psiTurk up to 3.2.0 and classified as critical. This vulnerability affects unknown code of the file psiturk/experiment.py. The manipulation of the argument mode leads to improper neutralization of special elements used in a template engine. The exploit has been disclosed to the CVE project by @Sn0wAlice Create: 2023-01-29 10:18:05 +0000 UTC Push: 2023-01-29 10:18:08 +0000 UTC |

Live-Hack-CVE/CVE-2023-0561 A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file /user/s.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed t CVE project by @Sn0wAlice Create: 2023-01-29 03:42:55 +0000 UTC Push: 2023-01-29 03:42:58 +0000 UTC |

Live-Hack-CVE/CVE-2023-0560 A vulnerability, which was classified as critical, has been found in SourceCodester Online Tours & Travels Management System 1.0. This issue affects some unknown processing of the file admin/practice_pdf.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit h CVE project by @Sn0wAlice Create: 2023-01-29 03:42:52 +0000 UTC Push: 2023-01-29 03:42:54 +0000 UTC |

Live-Hack-CVE/CVE-2020-16093 In LemonLDAP::NG (aka lemonldap-ng) through 2.0.8, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. CVE project by @Sn0wAlice Create: 2023-01-29 03:42:48 +0000 UTC Push: 2023-01-29 03:42:51 +0000 UTC |

dpbe32/CVE-2022-23935-PoC-Exploit CVE-2022-23935 exploit PoC exiftool version 12.37 Create: 2023-01-29 02:04:05 +0000 UTC Push: 2023-01-29 02:04:06 +0000 UTC |

mauricelambert/LabAutomationCVE-2021-43798 This script implements a lab automation where I exploit CVE-2021-43798 to steal user secrets and then gain privileges on a Linux system. Create: 2023-01-28 19:12:22 +0000 UTC Push: 2023-01-28 19:12:22 +0000 UTC |

Live-Hack-CVE/CVE-2020-24371 lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:43 +0000 UTC Push: 2023-01-28 14:35:45 +0000 UTC |

Live-Hack-CVE/CVE-2020-14947 OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandled in get_mib_oid. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:39 +0000 UTC Push: 2023-01-28 14:35:41 +0000 UTC |

Live-Hack-CVE/CVE-2019-11165 Improper conditions check in the Linux kernel driver for the Intel(R) FPGA SDK for OpenCL(TM) Pro Edition before version 19.4 may allow an authenticated user to potentially enable denial of service via local access. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:35 +0000 UTC Push: 2023-01-28 14:35:38 +0000 UTC |

Live-Hack-CVE/CVE-2019-10695 When using the cd4pe::root_configuration task to configure a Continuous Delivery for PE installation, the root user’s username and password were exposed in the job’s Job Details pane in the PE console. These issues have been resolved in version 1.2.1 of the puppetlabs/cd4pe module. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:32 +0000 UTC Push: 2023-01-28 14:35:34 +0000 UTC |

Live-Hack-CVE/CVE-2019-19740 Octeth Oempro 4.7 and 4.8 allow SQL injection. The parameter CampaignID in Campaign.Get is vulnerable. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:28 +0000 UTC Push: 2023-01-28 14:35:31 +0000 UTC |

Live-Hack-CVE/CVE-2023-23014 Cross Site Scripting (XSS) vulnerability in InventorySystem thru commit e08fbbe17902146313501ed0b5feba81d58f455c (on Apr 23, 2021) via edit_store_name and edit_active inputs in file InventorySystem.php. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:25 +0000 UTC Push: 2023-01-28 14:35:27 +0000 UTC |

Live-Hack-CVE/CVE-2023-23010 Cross Site Scripting (XSS) vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 (on Dec 27, 2022), allows attackers to execute arbitrary code via the languages and trans_load parameters in file add_product.php. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:21 +0000 UTC Push: 2023-01-28 14:35:23 +0000 UTC |

Live-Hack-CVE/CVE-2022-45748 An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:17 +0000 UTC Push: 2023-01-28 14:35:19 +0000 UTC |

Live-Hack-CVE/CVE-2022-47012 Use of uninitialized variable in function gen_eth_recv in GNS3 dynamips 0.2.21. CVE project by @Sn0wAlice Create: 2023-01-28 14:35:13 +0000 UTC Push: 2023-01-28 14:35:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-42410 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PGM files. Crafted data CVE project by @Sn0wAlice Create: 2023-01-28 14:35:10 +0000 UTC Push: 2023-01-28 14:35:12 +0000 UTC |