Live-Hack-CVE/CVE-2012-10004 A vulnerability was found in backdrop-contrib Basic Cart. It has been classified as problematic. Affected is the function basic_cart_checkout_form_submit of the file basic_cart.cart.inc. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 1.x-1.1.1 is able CVE project by @Sn0wAlice Create: 2023-01-19 03:34:56 +0000 UTC Push: 2023-01-19 03:34:59 +0000 UTC |

Live-Hack-CVE/CVE-2006-3360 Directory traversal vulnerability in index.php in phpSysInfo 2.5.1 allows remote attackers to determine the existence of arbitrary files via a .. (dot dot) sequence and a trailing null (%00) byte in the lng parameter, which will display a different error message if the file exists. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:51 +0000 UTC Push: 2023-01-19 03:34:53 +0000 UTC |

Live-Hack-CVE/CVE-2015-10039 A vulnerability was found in dobos domino. It has been rated as critical. Affected by this issue is some unknown functionality in the library src/Complex.Domino.Lib/Lib/EntityFactory.cs. The manipulation leads to sql injection. Upgrading to version 0.1.5524.38553 is able to address this issue. The name of the patch is CVE project by @Sn0wAlice Create: 2023-01-19 03:34:47 +0000 UTC Push: 2023-01-19 03:34:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-21603 Adobe Dimension version 3.4.6 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious CVE project by @Sn0wAlice Create: 2023-01-19 03:34:42 +0000 UTC Push: 2023-01-19 03:34:45 +0000 UTC |

Live-Hack-CVE/CVE-2023-21601 Adobe Dimension version 3.4.6 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file CVE project by @Sn0wAlice Create: 2023-01-19 03:34:38 +0000 UTC Push: 2023-01-19 03:34:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-47966 Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache xmlsec (aka XML Security for Java) 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain security protections, and the Manag CVE project by @Sn0wAlice Create: 2023-01-19 03:34:34 +0000 UTC Push: 2023-01-19 03:34:37 +0000 UTC |

Live-Hack-CVE/CVE-2022-45613 Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the publisher parameter. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:29 +0000 UTC Push: 2023-01-19 03:34:32 +0000 UTC |

Live-Hack-CVE/CVE-2023-21759 Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:24 +0000 UTC Push: 2023-01-19 03:34:28 +0000 UTC |

Live-Hack-CVE/CVE-2023-21758 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2023-21677, CVE-2023-21683. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:21 +0000 UTC Push: 2023-01-19 03:34:23 +0000 UTC |

Live-Hack-CVE/CVE-2023-21760 Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21678, CVE-2023-21765. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:16 +0000 UTC Push: 2023-01-19 03:34:19 +0000 UTC |

Live-Hack-CVE/CVE-2023-21762 Microsoft Exchange Server Spoofing Vulnerability. This CVE ID is unique from CVE-2023-21745. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:12 +0000 UTC Push: 2023-01-19 03:34:15 +0000 UTC |

Live-Hack-CVE/CVE-2023-21761 Microsoft Exchange Server Information Disclosure Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:07 +0000 UTC Push: 2023-01-19 03:34:10 +0000 UTC |

Live-Hack-CVE/CVE-2023-21763 Microsoft Exchange Server Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21764. CVE project by @Sn0wAlice Create: 2023-01-19 03:34:02 +0000 UTC Push: 2023-01-19 03:34:06 +0000 UTC |

Live-Hack-CVE/CVE-2015-10038 A vulnerability was found in nym3r0s pplv2. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The name of the patch is 28f8b0550104044da09f04659797487c59f85b00. It is recommended to apply a patch to fix this issue. The associated ident CVE project by @Sn0wAlice Create: 2023-01-19 03:33:54 +0000 UTC Push: 2023-01-19 03:33:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-21757 Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 03:33:50 +0000 UTC Push: 2023-01-19 03:33:53 +0000 UTC |

NurSec747/CVE-2022-46104---POC Create: 2023-01-19 01:41:06 +0000 UTC Push: 2023-01-19 01:41:07 +0000 UTC |

Live-Hack-CVE/CVE-2023-0385 The Custom 404 Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.7.1. This is due to missing or incorrect nonce validation on the custom_404_pro_admin_init function. This makes it possible for unauthenticated attackers to delete logs, via forged request granted the CVE project by @Sn0wAlice Create: 2023-01-19 01:23:54 +0000 UTC Push: 2023-01-19 01:23:57 +0000 UTC |

Live-Hack-CVE/CVE-2022-47881 Foxit PDF Reader and PDF Editor 11.2.1.53537 and earlier has an Out-of-Bounds Read vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:50 +0000 UTC Push: 2023-01-19 01:23:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-45103 Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to read arbitrary files on the underlying file system. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:45 +0000 UTC Push: 2023-01-19 01:23:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-21725 Windows Malicious Software Removal Tool Elevation of Privilege Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:41 +0000 UTC Push: 2023-01-19 01:23:44 +0000 UTC |