Live-Hack-CVE/CVE-2023-21853 Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite (component: Synchronization). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field Service. Successful CVE project by @Sn0wAlice Create: 2023-01-18 09:54:15 +0000 UTC Push: 2023-01-18 09:54:17 +0000 UTC |

Live-Hack-CVE/CVE-2023-21850 Vulnerability in the Oracle Demantra Demand Management product of Oracle Supply Chain (component: E-Business Collections). Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Demantra Demand Manageme CVE project by @Sn0wAlice Create: 2023-01-18 09:54:11 +0000 UTC Push: 2023-01-18 09:54:13 +0000 UTC |

Live-Hack-CVE/CVE-2023-21841 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Su CVE project by @Sn0wAlice Create: 2023-01-18 09:54:07 +0000 UTC Push: 2023-01-18 09:54:10 +0000 UTC |

Live-Hack-CVE/CVE-2023-21849 Vulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: Java utils). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications DBA. Successful attacks of t CVE project by @Sn0wAlice Create: 2023-01-18 09:54:02 +0000 UTC Push: 2023-01-18 09:54:06 +0000 UTC |

Live-Hack-CVE/CVE-2023-21839 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Su CVE project by @Sn0wAlice Create: 2023-01-18 09:53:58 +0000 UTC Push: 2023-01-18 09:54:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-21843 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf, 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Difficult to exploit vulnerability all CVE project by @Sn0wAlice Create: 2023-01-18 09:53:54 +0000 UTC Push: 2023-01-18 09:53:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-21864 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulner CVE project by @Sn0wAlice Create: 2023-01-18 09:53:50 +0000 UTC Push: 2023-01-18 09:53:53 +0000 UTC |

Live-Hack-CVE/CVE-2023-21837 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP to compromise Oracle WebLogic Server. Succes CVE project by @Sn0wAlice Create: 2023-01-18 09:53:46 +0000 UTC Push: 2023-01-18 09:53:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-21829 Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database RDBMS Security CVE project by @Sn0wAlice Create: 2023-01-18 09:53:43 +0000 UTC Push: 2023-01-18 09:53:45 +0000 UTC |

Live-Hack-CVE/CVE-2023-21840 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.40 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability CVE project by @Sn0wAlice Create: 2023-01-18 09:53:39 +0000 UTC Push: 2023-01-18 09:53:42 +0000 UTC |

Live-Hack-CVE/CVE-2023-21847 Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite (component: Download). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web Applications Desktop I CVE project by @Sn0wAlice Create: 2023-01-18 09:53:35 +0000 UTC Push: 2023-01-18 09:53:38 +0000 UTC |

Live-Hack-CVE/CVE-2022-46660 An unauthorized user could alter or write files with full control over the path and content of the file. CVE project by @Sn0wAlice Create: 2023-01-18 09:53:31 +0000 UTC Push: 2023-01-18 09:53:33 +0000 UTC |

Live-Hack-CVE/CVE-2023-21835 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable vulnerability allows unauthenticated at CVE project by @Sn0wAlice Create: 2023-01-18 09:53:27 +0000 UTC Push: 2023-01-18 09:53:30 +0000 UTC |

Live-Hack-CVE/CVE-2022-39429 Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of this vulnerability CVE project by @Sn0wAlice Create: 2023-01-18 09:53:23 +0000 UTC Push: 2023-01-18 09:53:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-21832 Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware (component: Security). Supported versions that are affected are 5.9.0.0.0, 6.4.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle BI Publisher CVE project by @Sn0wAlice Create: 2023-01-18 09:53:18 +0000 UTC Push: 2023-01-18 09:53:21 +0000 UTC |

Live-Hack-CVE/CVE-2023-21830 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulnerability allows unauthenticated attacke CVE project by @Sn0wAlice Create: 2023-01-18 09:53:13 +0000 UTC Push: 2023-01-18 09:53:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-21827 Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database Data Redaction CVE project by @Sn0wAlice Create: 2023-01-18 09:53:08 +0000 UTC Push: 2023-01-18 09:53:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-21825 Vulnerability in the Oracle iSupplier Portal product of Oracle E-Business Suite (component: Supplier Management). Supported versions that are affected are 12.2.6-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iSupplier Portal. Successful atta CVE project by @Sn0wAlice Create: 2023-01-18 09:53:03 +0000 UTC Push: 2023-01-18 09:53:06 +0000 UTC |

Live-Hack-CVE/CVE-2010-10006 A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The manipulation leads to observable timing discrepancy. Upgrading to version 1.08 is able to address this issue. The name o CVE project by @Sn0wAlice Create: 2023-01-18 09:52:58 +0000 UTC Push: 2023-01-18 09:53:01 +0000 UTC |

Live-Hack-CVE/CVE-2016-1583 The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVE project by @Sn0wAlice Create: 2023-01-18 07:41:03 +0000 UTC Push: 2023-01-18 07:41:06 +0000 UTC |