Live-Hack-CVE/CVE-2022-46372 Alotcer - AR7088H-A firmware version 16.10.3 Command execution Improper validation of unspecified input field may allow Authenticated command execution. CVE project by @Sn0wAlice Create: 2023-01-24 01:22:14 +0000 UTC Push: 2023-01-24 01:22:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-0440 Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository healthchecks/healthchecks prior to v2.6. CVE project by @Sn0wAlice Create: 2023-01-24 00:16:46 +0000 UTC Push: 2023-01-24 00:16:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-0438 Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.0.4. CVE project by @Sn0wAlice Create: 2023-01-24 00:16:42 +0000 UTC Push: 2023-01-24 00:16:44 +0000 UTC |

vonahisec/CVE-2022-47966-Scan Create: 2023-01-23 23:49:10 +0000 UTC Push: 2023-01-24 23:50:57 +0000 UTC |

Live-Hack-CVE/CVE-2017-16322 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-23 22:02:59 +0000 UTC Push: 2023-01-23 22:03:02 +0000 UTC |

walnutsecurity/cve-2022-36804 A critical command injection vulnerability was found in multiple API endpoints of the Atlassian Bit bucket Server and Data center. This vulnerability affects all versions of Bitbucket Server and Data Center released before versions <7.6.17, <7.17.10, <7.21.4, <8.0.3, <8.1.2, <8.2.2, and <8.3.1 Create: 2023-01-23 20:51:09 +0000 UTC Push: 2023-01-23 20:51:09 +0000 UTC |

Live-Hack-CVE/CVE-2023-24069 Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to obtain potentially sensitive attachments sent in messages from the attachments.noindex directory. Cached attachments are not effectively cleared. In some cases, even after a self-initiated file deletion, an attacker can still recover the fil CVE project by @Sn0wAlice Create: 2023-01-23 19:52:47 +0000 UTC Push: 2023-01-23 19:52:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-24068 Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to modify conversation attachments within the attachments.noindex directory. Client mechanisms fail to validate modifications of existing cached files, resulting in an attacker's ability to insert malicious code into pre-existing attachments or CVE project by @Sn0wAlice Create: 2023-01-23 19:52:43 +0000 UTC Push: 2023-01-23 19:52:45 +0000 UTC |

ACE-Responder/CVE-2022-47966_checker Run on your ManageEngine server Create: 2023-01-23 19:33:29 +0000 UTC Push: 2023-01-23 19:33:29 +0000 UTC |

Inplex-sys/CVE-2022-47966 Create: 2023-01-23 18:45:23 +0000 UTC Push: 2023-01-23 18:45:43 +0000 UTC |

amit-pathak009/CVE-2018-6389-FIX it is the official Fix of Wordpress CVE-2018-6389. Create: 2023-01-23 17:44:16 +0000 UTC Push: 2023-01-23 17:44:16 +0000 UTC |

Live-Hack-CVE/CVE-2022-48281 processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image. CVE project by @Sn0wAlice Create: 2023-01-23 14:23:58 +0000 UTC Push: 2023-01-23 14:24:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-24070 app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field. CVE project by @Sn0wAlice Create: 2023-01-23 14:23:54 +0000 UTC Push: 2023-01-23 14:23:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-23314 An arbitrary file upload vulnerability in the /api/upload component of zdir v3.2.0 allows attackers to execute arbitrary code via a crafted .ssh file. CVE project by @Sn0wAlice Create: 2023-01-23 14:23:50 +0000 UTC Push: 2023-01-23 14:23:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-46959 An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal. CVE project by @Sn0wAlice Create: 2023-01-23 14:23:46 +0000 UTC Push: 2023-01-23 14:23:49 +0000 UTC |

vadim-a-yegorov/CVE-2022-26766-bootstrap Create: 2023-01-23 13:48:48 +0000 UTC Push: 2023-01-23 13:48:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-0435 Excessive Attack Surface in GitHub repository pyload/pyload prior to 0.5.0b3.dev41. CVE project by @Sn0wAlice Create: 2023-01-23 07:42:40 +0000 UTC Push: 2023-01-23 07:42:42 +0000 UTC |

BLY-Coder/Python-exploit-CVE-2020-25213 Python exploit for RCE in Wordpress Create: 2023-01-23 00:54:25 +0000 UTC Push: 2023-01-23 00:54:26 +0000 UTC |

Live-Hack-CVE/CVE-2023-24058 Booked Scheduler 2.5.5 allows authenticated users to create and schedule events for any other user via a modified userId value to reservation_save.php. NOTE: 2.5.5 is a version from 2014. CVE project by @Sn0wAlice Create: 2023-01-22 19:39:04 +0000 UTC Push: 2023-01-22 19:39:06 +0000 UTC |

Live-Hack-CVE/CVE-2023-24059 Grand Theft Auto V for PC allows attackers to achieve partial remote code execution or modify files on a PC, as exploited in the wild in January 2023. CVE project by @Sn0wAlice Create: 2023-01-22 19:39:00 +0000 UTC Push: 2023-01-22 19:39:03 +0000 UTC |