Live-Hack-CVE/CVE-2023-21683 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2023-21677, CVE-2023-21758. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:35 +0000 UTC Push: 2023-01-19 01:23:39 +0000 UTC |

Live-Hack-CVE/CVE-2023-21724 Microsoft DWM Core Library Elevation of Privilege Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:31 +0000 UTC Push: 2023-01-19 01:23:34 +0000 UTC |

Live-Hack-CVE/CVE-2023-21768 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:26 +0000 UTC Push: 2023-01-19 01:23:29 +0000 UTC |

Live-Hack-CVE/CVE-2023-21767 Windows Overlay Filter Elevation of Privilege Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:21 +0000 UTC Push: 2023-01-19 01:23:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-21558 Windows Error Reporting Service Elevation of Privilege Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:17 +0000 UTC Push: 2023-01-19 01:23:19 +0000 UTC |

Live-Hack-CVE/CVE-2023-21682 Windows Point-to-Point Protocol (PPP) Information Disclosure Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:13 +0000 UTC Push: 2023-01-19 01:23:15 +0000 UTC |

Live-Hack-CVE/CVE-2023-21766 Windows Overlay Filter Information Disclosure Vulnerability. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:08 +0000 UTC Push: 2023-01-19 01:23:11 +0000 UTC |

Live-Hack-CVE/CVE-2020-20412 lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146. CVE project by @Sn0wAlice Create: 2023-01-19 01:23:04 +0000 UTC Push: 2023-01-19 01:23:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-46463 ** DISPUTED ** An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature." CVE project by @Sn0wAlice Create: 2023-01-19 01:23:00 +0000 UTC Push: 2023-01-19 01:23:02 +0000 UTC |

Live-Hack-CVE/CVE-2022-46505 An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data. CVE project by @Sn0wAlice Create: 2023-01-19 01:22:55 +0000 UTC Push: 2023-01-19 01:22:58 +0000 UTC |

Live-Hack-CVE/CVE-2021-4314 It is possible to manipulate the JWT token without the knowledge of the JWT secret and authenticate without valid JWT token as any user. This is happening only in the situation when zOSMF doesn’t have the APAR PH12143 applied. This issue affects: 1.16 versions to 1.19. What happens is that the services using the ZAAS c CVE project by @Sn0wAlice Create: 2023-01-19 01:22:51 +0000 UTC Push: 2023-01-19 01:22:54 +0000 UTC |

Live-Hack-CVE/CVE-2017-20173 A vulnerability was found in AlexRed contentmap. It has been rated as critical. Affected by this issue is the function Load of the file contentmap.php. The manipulation of the argument contentid leads to sql injection. The name of the patch is dd265d23ff4abac97422835002c6a47f45ae2a66. It is recommended to apply a patch CVE project by @Sn0wAlice Create: 2023-01-19 01:22:46 +0000 UTC Push: 2023-01-19 01:22:49 +0000 UTC |

Live-Hack-CVE/CVE-2012-10006 A vulnerability classified as critical has been found in ale7714 sigeprosi. This affects an unknown part. The manipulation leads to sql injection. The name of the patch is 5291886f6c992316407c376145d331169c55f25b. It is recommended to apply a patch to fix this issue. The identifier VDB-218493 was assigned to this vulne CVE project by @Sn0wAlice Create: 2023-01-19 01:22:42 +0000 UTC Push: 2023-01-19 01:22:45 +0000 UTC |

Live-Hack-CVE/CVE-2011-10001 A vulnerability was found in iamdroppy phoenixcf. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file content/2-Community/articles.cfm. The manipulation leads to sql injection. The name of the patch is d156faf8bc36cd49c3b10d3697ef14167ad451d8. It is recommended to ap CVE project by @Sn0wAlice Create: 2023-01-19 01:22:38 +0000 UTC Push: 2023-01-19 01:22:41 +0000 UTC |

Live-Hack-CVE/CVE-2023-22963 The personnummer implementation before 3.0.3 for Dart mishandles numbers in which the last four digits match the ^000[0-9]$ regular expression. CVE project by @Sn0wAlice Create: 2023-01-19 01:22:33 +0000 UTC Push: 2023-01-19 01:22:36 +0000 UTC |

Live-Hack-CVE/CVE-2023-21736 Microsoft Office Visio Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2023-21737, CVE-2023-21738. CVE project by @Sn0wAlice Create: 2023-01-19 01:22:27 +0000 UTC Push: 2023-01-19 01:22:30 +0000 UTC |

Live-Hack-CVE/CVE-2023-21772 Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21675, CVE-2023-21747, CVE-2023-21748, CVE-2023-21749, CVE-2023-21750, CVE-2023-21754, CVE-2023-21755, CVE-2023-21773, CVE-2023-21774. CVE project by @Sn0wAlice Create: 2023-01-19 01:22:22 +0000 UTC Push: 2023-01-19 01:22:26 +0000 UTC |

FruitSnac/Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2022 Create: 2023-01-19 01:15:40 +0000 UTC Push: 2023-01-19 01:15:41 +0000 UTC |

NoizThaGod/Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2022 Vulnerability Disclosure Timeline Closer inspection of the Exploit JPG content reveals the malicious link as well as the URL Download and Execute of the tool used to generate the Exploit JPG from Python encrypted code content which we also implement in couple of our builders.Silent JPG Exploit There are multiple Exploit JPG in Silent JPG Exploit, a Create: 2023-01-19 01:15:40 +0000 UTC Push: 2023-01-19 01:17:29 +0000 UTC |

FruitSnac/Discord-Image-Token-Password-Grabber-Exploit-Cve-2022 Create: 2023-01-19 01:15:16 +0000 UTC Push: 2023-01-19 01:15:16 +0000 UTC |