unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2022-48125
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the password parameter in the setting/setOpenVpnCertGenerationCfg function. CVE project by @Sn0wAlice
Create: 2023-01-27 02:04:27 +0000 UTC Push: 2023-01-27 02:04:29 +0000 UTC |
Live-Hack-CVE/CVE-2022-48124
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the FileName parameter in the setting/setOpenVpnCertGenerationCfg function. CVE project by @Sn0wAlice
Create: 2023-01-27 02:04:23 +0000 UTC Push: 2023-01-27 02:04:25 +0000 UTC |
Live-Hack-CVE/CVE-2022-48123
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function. CVE project by @Sn0wAlice
Create: 2023-01-27 02:04:19 +0000 UTC Push: 2023-01-27 02:04:22 +0000 UTC |
Live-Hack-CVE/CVE-2022-48191
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowing a escalation of pri CVE project by @Sn0wAlice
Create: 2023-01-27 02:04:16 +0000 UTC Push: 2023-01-27 02:04:18 +0000 UTC |
Live-Hack-CVE/CVE-2022-20964
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to inject arbitrary commands on the underlying operating system. This vulnerability is due to improper validation of user input within requests as part of the web-based management interf CVE project by @Sn0wAlice
Create: 2023-01-27 02:04:12 +0000 UTC Push: 2023-01-27 02:04:15 +0000 UTC |
Relativ3Pa1n/CVE-2014-2383-LFI-to-RCE-Escalation
Create: 2023-01-27 02:01:50 +0000 UTC Push: 2023-01-27 02:01:50 +0000 UTC |
Relativ3Pa1n/CVE-2014-2383-Escalation-to-RCE
Create: 2023-01-27 01:26:50 +0000 UTC Push: 2023-01-27 01:26:51 +0000 UTC |
Live-Hack-CVE/CVE-2022-47917
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to several modules and services of the software. This could allow an attacker to delete arbitrary files and cause a denial-of-service condition. CVE project by @Sn0wAlice
Create: 2023-01-26 23:55:11 +0000 UTC Push: 2023-01-26 23:55:13 +0000 UTC |
Live-Hack-CVE/CVE-2016-4223
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4224 and CVE-2016-4225. CVE project by @Sn0wAlice
Create: 2023-01-26 23:55:07 +0000 UTC Push: 2023-01-26 23:55:09 +0000 UTC |
Live-Hack-CVE/CVE-2016-4224
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4223 and CVE-2016-4225. CVE project by @Sn0wAlice
Create: 2023-01-26 23:55:02 +0000 UTC Push: 2023-01-26 23:55:05 +0000 UTC |
Live-Hack-CVE/CVE-2022-23521
Git is distributed revision control system. gitattributes are a mechanism to allow defining attributes for paths. These attributes can be defined by adding a `.gitattributes` file to the repository, which contains a set of file patterns and the attributes that should be set for paths matching this pattern. When parsing CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:58 +0000 UTC Push: 2023-01-26 23:55:01 +0000 UTC |
Live-Hack-CVE/CVE-2016-4225
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2016-4223 and CVE-2016-4224. CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:54 +0000 UTC Push: 2023-01-26 23:54:57 +0000 UTC |
Live-Hack-CVE/CVE-2023-0396
A malicious / defective bluetooth controller can cause buffer overreads in the most functions that process HCI command responses. CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:51 +0000 UTC Push: 2023-01-26 23:54:53 +0000 UTC |
Live-Hack-CVE/CVE-2022-3806
Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer. CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:47 +0000 UTC Push: 2023-01-26 23:54:49 +0000 UTC |
Live-Hack-CVE/CVE-2016-1017
Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-101 CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:43 +0000 UTC Push: 2023-01-26 23:54:46 +0000 UTC |
Live-Hack-CVE/CVE-2016-1031
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1013, CVE-2016-1016, and CVE-2016-1 CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:39 +0000 UTC Push: 2023-01-26 23:54:41 +0000 UTC |
Live-Hack-CVE/CVE-2016-4226
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4227, CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:34 +0000 UTC Push: 2023-01-26 23:54:36 +0000 UTC |
Live-Hack-CVE/CVE-2016-1011
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1013, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1 CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:28 +0000 UTC Push: 2023-01-26 23:54:30 +0000 UTC |
Live-Hack-CVE/CVE-2016-1013
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1011, CVE-2016-1016, CVE-2016-1017, and CVE-2016-1 CVE project by @Sn0wAlice
Create: 2023-01-26 23:54:24 +0000 UTC Push: 2023-01-26 23:54:27 +0000 UTC |
DRAGOWN/Injection-vulnerability-in-Paradox-Security-Systems-IPR512-CVE-2023-24709-PoC
In Paradox Security System IPR512 Web console login form page, attacker can input JavaScript string, such as "</script>" that will overwrite configurations in the file "login.xml" and cause the login page to crash.
Create: 2023-01-26 12:13:51 +0000 UTC Push: 2025-01-09 12:32:43 +0000 UTC |
Previous
486
487
488
489
490
491
492
493
Next