unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2015-10071
A vulnerability was found in gitter-badger ezpublish-modern-legacy. It has been rated as problematic. This issue affects some unknown processing of the file kernel/user/forgotpassword.php. The manipulation leads to weak password recovery. Upgrading to version 1.0 is able to address this issue. The name of the patch is CVE project by @Sn0wAlice
Create: 2023-01-19 20:08:12 +0000 UTC Push: 2023-01-19 20:08:15 +0000 UTC |
Live-Hack-CVE/CVE-2015-10070
A vulnerability was found in copperwall Twiddit. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation leads to sql injection. The name of the patch is 2203d4ce9810bdaccece5c48ff4888658a01acfc. It is recommended to apply a patch to fix this issue. The identifi CVE project by @Sn0wAlice
Create: 2023-01-19 20:08:08 +0000 UTC Push: 2023-01-19 20:08:11 +0000 UTC |
Live-Hack-CVE/CVE-2014-125083
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The name of the patch is 6fba04f18ab7764002a1da308e7cd9712b501cb7. It CVE project by @Sn0wAlice
Create: 2023-01-19 20:08:04 +0000 UTC Push: 2023-01-19 20:08:07 +0000 UTC |
Live-Hack-CVE/CVE-2013-10014
A vulnerability classified as critical has been found in oktora24 2moons. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 1b09cf7672eb85b5b0c8a4de321f7a4ad87b09a7. It is recommended to apply a patch to fix this issue. VDB-218898 is the identifier assigned to this vulne CVE project by @Sn0wAlice
Create: 2023-01-19 20:07:59 +0000 UTC Push: 2023-01-19 20:08:02 +0000 UTC |
Trinadh465/linux-4.19.72_CVE-2022-45934
Create: 2023-01-19 19:58:08 +0000 UTC Push: 2023-01-19 19:58:08 +0000 UTC |
0xDSousa/CVE-2022-23521
Truncated Allocation Leading to Out of Bounds Write Via Large Number of Attributes
Create: 2023-01-19 19:50:21 +0000 UTC Push: 2023-01-19 19:50:21 +0000 UTC |
ralph-morrinson/CVE-2022-47966-RCE-PoC
CVE-2022-47966 ManageEngine unauthenticated RCE exploit via the SAML request,
Create: 2023-01-19 18:41:26 +0000 UTC Push: 2023-01-19 18:41:27 +0000 UTC |
Live-Hack-CVE/CVE-2022-27778
A use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `--no-clobber` is used together with `--remove-on-error`. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:53 +0000 UTC Push: 2023-01-19 14:38:56 +0000 UTC |
Live-Hack-CVE/CVE-2013-0796
The WebGL subsystem in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, and SeaMonkey before 2.17 on Linux does not properly interact with Mesa drivers, which allows remote attackers to execute arbitrary code or cause a denial of service (free o CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:49 +0000 UTC Push: 2023-01-19 14:38:52 +0000 UTC |
Live-Hack-CVE/CVE-2014-6417
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly consider the possibility of kmalloc failure, which allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via a long unencrypted auth ticket. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:45 +0000 UTC Push: 2023-01-19 14:38:47 +0000 UTC |
Live-Hack-CVE/CVE-2016-0991
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via u CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:41 +0000 UTC Push: 2023-01-19 14:38:43 +0000 UTC |
Live-Hack-CVE/CVE-2016-0988
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via u CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:37 +0000 UTC Push: 2023-01-19 14:38:39 +0000 UTC |
Live-Hack-CVE/CVE-2021-39174
Cachet is an open source status page system. Prior to version 2.5.1, authenticated users, regardless of their privileges (User or Admin), can leak the value of any configuration entry of the dotenv file, e.g. the application secret (`APP_KEY`) and various passwords (email, database, etc). This issue was addressed in ve CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:32 +0000 UTC Push: 2023-01-19 14:38:35 +0000 UTC |
Live-Hack-CVE/CVE-2016-4272
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4279, CVE-2016-6921, CVE-2016-6923, CVE-2016-6925, CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:28 +0000 UTC Push: 2023-01-19 14:38:31 +0000 UTC |
Live-Hack-CVE/CVE-2016-6923
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4272, CVE-2016-4279, CVE-2016-6921, CVE-2016-6925, CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:24 +0000 UTC Push: 2023-01-19 14:38:27 +0000 UTC |
Live-Hack-CVE/CVE-2019-16781
In WordPress before 5.3.1, authenticated users with lower privileges (like contributors) can inject JavaScript code in the block editor, which is executed within the dashboard. It can lead to an admin opening the affected post in the editor leading to XSS. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:20 +0000 UTC Push: 2023-01-19 14:38:23 +0000 UTC |
Live-Hack-CVE/CVE-2015-5290
A Denial of Service vulnerability exists in ircd-ratbox 3.0.9 in the MONITOR Command Handler. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:17 +0000 UTC Push: 2023-01-19 14:38:19 +0000 UTC |
Live-Hack-CVE/CVE-2016-4166
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:12 +0000 UTC Push: 2023-01-19 14:38:15 +0000 UTC |
Live-Hack-CVE/CVE-2019-20042
In wp-includes/formatting.php in WordPress 3.7 to 5.3.0, the function wp_targeted_link_rel() can be used in a particular way to result in a stored cross-site scripting (XSS) vulnerability. This has been patched in WordPress 5.3.1, along with all the previous WordPress versions from 3.7 to 5.3 via a minor release. CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:08 +0000 UTC Push: 2023-01-19 14:38:11 +0000 UTC |
Live-Hack-CVE/CVE-2016-6925
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4272, CVE-2016-4279, CVE-2016-6921, CVE-2016-6923, CVE project by @Sn0wAlice
Create: 2023-01-19 14:38:04 +0000 UTC Push: 2023-01-19 14:38:07 +0000 UTC |
Previous
485
486
487
488
489
490
491
492
Next