Arrnitage/CVE-2022-23131_exp Create: 2023-01-09 12:10:08 +0000 UTC Push: 2023-01-09 12:10:36 +0000 UTC |

Live-Hack-CVE/CVE-2021-4309 A vulnerability, which was classified as problematic, has been found in 01-Scripts 01ACP. This issue affects some unknown processing. The manipulation of the argument $_SERVER['SCRIPT_NAME'] leads to cross site scripting. The attack may be initiated remotely. The name of the patch is a16eb7da46ed22bc61067c212635394f257 CVE project by @Sn0wAlice Create: 2023-01-09 03:26:14 +0000 UTC Push: 2023-01-09 03:26:17 +0000 UTC |

Live-Hack-CVE/CVE-2015-10031 A vulnerability classified as critical was found in purpleparrots 491-Project. This vulnerability affects unknown code of the file update.php of the component Highscore Handler. The manipulation leads to sql injection. The name of the patch is a812a5e4cf72f2a635a716086fe1ee2b8fa0b1ab. It is recommended to apply a patch CVE project by @Sn0wAlice Create: 2023-01-09 03:26:10 +0000 UTC Push: 2023-01-09 03:26:13 +0000 UTC |

Live-Hack-CVE/CVE-2016-15016 A vulnerability was found in mrtnmtth joomla_mod_einsatz_stats up to 0.2. It has been classified as critical. This affects the function getStatsByType of the file helper.php. The manipulation of the argument year leads to sql injection. Upgrading to version 0.3 is able to address this issue. The name of the patch is 27 CVE project by @Sn0wAlice Create: 2023-01-09 03:26:06 +0000 UTC Push: 2023-01-09 03:26:09 +0000 UTC |

Live-Hack-CVE/CVE-2016-15015 A vulnerability, which was classified as problematic, was found in viafintech Barzahlen Payment Module PHP SDK up to 2.0.0. Affected is the function verify of the file src/Webhook.php. The manipulation leads to observable timing discrepancy. Upgrading to version 2.0.1 is able to address this issue. The name of the patc CVE project by @Sn0wAlice Create: 2023-01-09 03:26:02 +0000 UTC Push: 2023-01-09 03:26:05 +0000 UTC |

Live-Hack-CVE/CVE-2014-125070 A vulnerability has been found in yanheven console and classified as problematic. Affected by this vulnerability is the function get_zone_hosts/AvailabilityZonesTable of the file openstack_dashboard/dashboards/admin/aggregates/tables.py. The manipulation leads to cross site scripting. The attack can be launched remotel CVE project by @Sn0wAlice Create: 2023-01-09 03:25:58 +0000 UTC Push: 2023-01-09 03:26:01 +0000 UTC |

Live-Hack-CVE/CVE-2022-0668 JFrog Artifactory prior to 7.37.13 is vulnerable to Authentication Bypass, which can lead to Privilege Escalation when a specially crafted request is sent by an unauthenticated user. CVE project by @Sn0wAlice Create: 2023-01-09 01:15:50 +0000 UTC Push: 2023-01-09 01:15:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-4881 A vulnerability was found in CapsAdmin PAC3. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lua/pac3/core/shared/http.lua. The manipulation of the argument url leads to cross site scripting. The attack may be launched remotely. The name of the patch is 8fc9e12dfa21d75 CVE project by @Sn0wAlice Create: 2023-01-09 00:10:45 +0000 UTC Push: 2023-01-09 00:10:48 +0000 UTC |

Live-Hack-CVE/CVE-2018-25072 A vulnerability classified as critical has been found in lojban jbovlaste. This affects an unknown part of the file dict/listing.html. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The name of the patch is 6ff44c2e87b1113eb07d76ea62e1f64193b04d15. It is recommended to apply a CVE project by @Sn0wAlice Create: 2023-01-09 00:10:41 +0000 UTC Push: 2023-01-09 00:10:44 +0000 UTC |

kevinsmith96/CVE-2022-1040 Sophos EXploit Create: 2023-01-08 23:46:00 +0000 UTC Push: 2023-01-08 23:46:01 +0000 UTC |

Live-Hack-CVE/CVE-2019-25100 A vulnerability was found in happyman twmap. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file twmap3/data/ajaxCRUD/pointdata2.php. The manipulation of the argument id leads to sql injection. Upgrading to version v2.9_v4.31 is able to address this issue. The name o CVE project by @Sn0wAlice Create: 2023-01-08 21:57:10 +0000 UTC Push: 2023-01-08 21:57:12 +0000 UTC |

Live-Hack-CVE/CVE-2014-125069 A vulnerability was found in saxman maps-js-icoads. It has been classified as problematic. Affected is an unknown function. The manipulation leads to exposure of information through directory listing. It is possible to launch the attack remotely. The name of the patch is 34b8b0cce2807b119f4cffda2ac48fc8f427d69a. It is CVE project by @Sn0wAlice Create: 2023-01-08 21:57:05 +0000 UTC Push: 2023-01-08 21:57:08 +0000 UTC |

Live-Hack-CVE/CVE-2014-125068 A vulnerability was found in saxman maps-js-icoads and classified as critical. This issue affects some unknown processing of the file http-server.js. The manipulation leads to path traversal. The name of the patch is 34b8b0cce2807b119f4cffda2ac48fc8f427d69a. It is recommended to apply a patch to fix this issue. The ass CVE project by @Sn0wAlice Create: 2023-01-08 21:57:01 +0000 UTC Push: 2023-01-08 21:57:04 +0000 UTC |

Live-Hack-CVE/CVE-2014-125066 A vulnerability was found in emmflo yuko-bot. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument title leads to denial of service. The attack can be initiated remotely. The name of the patch is e580584b877934a4298d4dd0c497c79e579380d0. It is recommended to app CVE project by @Sn0wAlice Create: 2023-01-08 19:46:59 +0000 UTC Push: 2023-01-08 19:47:02 +0000 UTC |

Live-Hack-CVE/CVE-2021-4308 A vulnerability was found in WebPA up to 3.1.1. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version 3.1.2 is able to address this issue. The name of the patch is 8836c4f549181e885a68e0e7ca561fdbcbd04bf0. It is recommended to upgrade th CVE project by @Sn0wAlice Create: 2023-01-08 19:46:55 +0000 UTC Push: 2023-01-08 19:46:58 +0000 UTC |

Live-Hack-CVE/CVE-2020-36648 A vulnerability, which was classified as critical, was found in pouetnet pouet 2.0. This affects an unknown part. The manipulation of the argument howmany leads to sql injection. The name of the patch is 11d615931352066fb2f6dcb07428277c2cd99baf. It is recommended to apply a patch to fix this issue. The identifier VDB-2 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:51 +0000 UTC Push: 2023-01-08 19:46:52 +0000 UTC |

Live-Hack-CVE/CVE-2020-36647 A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh. Affected is an unknown function of the file conf/nginx.conf. The manipulation leads to path traversal. The name of the patch is f136dfd44eda128129e5fd2d850a3a3c600e6a4a. It is recommended to apply a patch to fix this issue. VDB-217 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:47 +0000 UTC Push: 2023-01-08 19:46:50 +0000 UTC |

Live-Hack-CVE/CVE-2015-10030 A vulnerability has been found in SUKOHI Surpass and classified as critical. This vulnerability affects unknown code of the file src/Sukohi/Surpass/Surpass.php. The manipulation of the argument dir leads to pathname traversal. Upgrading to version 1.0.0 is able to address this issue. The name of the patch is d22337d453 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:43 +0000 UTC Push: 2023-01-08 19:46:45 +0000 UTC |

Live-Hack-CVE/CVE-2014-125067 A vulnerability classified as critical was found in corincerami curiosity. Affected by this vulnerability is an unknown functionality of the file app/controllers/image_controller.rb. The manipulation of the argument sol leads to sql injection. The name of the patch is d64fddd74ca72714e73f4efe24259ca05c8190eb. It is rec CVE project by @Sn0wAlice Create: 2023-01-08 19:46:38 +0000 UTC Push: 2023-01-08 19:46:41 +0000 UTC |

Live-Hack-CVE/CVE-2007-10002 A vulnerability, which was classified as critical, has been found in web-cyradm. Affected by this issue is some unknown functionality of the file auth.inc.php. The manipulation of the argument login/login_password/LANG leads to sql injection. The attack may be launched remotely. The name of the patch is 2bcbead3bdb5f11 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:34 +0000 UTC Push: 2023-01-08 19:46:37 +0000 UTC |