Live-Hack-CVE/CVE-2010-10008 ** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in simplesamlphp simplesamlphp-module-openidprovider up to 0.8.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file templates/trust.tpl.php. The manipulation of the argumen CVE project by @Sn0wAlice Create: 2023-01-17 19:31:45 +0000 UTC Push: 2023-01-17 19:31:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-22366 CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having a user to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:40 +0000 UTC Push: 2023-01-17 19:31:43 +0000 UTC |

Live-Hack-CVE/CVE-2023-22357 Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of CVE project by @Sn0wAlice Create: 2023-01-17 19:31:36 +0000 UTC Push: 2023-01-17 19:31:39 +0000 UTC |

Live-Hack-CVE/CVE-2023-22316 Hidden functionality vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker to access the product via undocumented Telnet or SSH services. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:32 +0000 UTC Push: 2023-01-17 19:31:35 +0000 UTC |

Live-Hack-CVE/CVE-2023-22304 OS command injection vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker who can access product settings to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:27 +0000 UTC Push: 2023-01-17 19:31:30 +0000 UTC |

Live-Hack-CVE/CVE-2023-22303 TP-Link SG105PE firmware prior to 'TL-SG105PE(UN) 1.0_1.0.0 Build 20221208' contains an authentication bypass vulnerability. Under the certain conditions, an attacker may impersonate an administrator of the product. As a result, information may be obtained and/or the product's settings may be altered with the privilege CVE project by @Sn0wAlice Create: 2023-01-17 19:31:22 +0000 UTC Push: 2023-01-17 19:31:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-22280 MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:17 +0000 UTC Push: 2023-01-17 19:31:20 +0000 UTC |

Live-Hack-CVE/CVE-2023-22298 Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:13 +0000 UTC Push: 2023-01-17 19:31:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-22296 Reflected cross-site scripting vulnerability in MAHO-PBX NetDevancer series MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to inject an arb CVE project by @Sn0wAlice Create: 2023-01-17 19:31:08 +0000 UTC Push: 2023-01-17 19:31:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-22286 Cross-site request forgery (CSRF) vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user authentication and con CVE project by @Sn0wAlice Create: 2023-01-17 19:31:03 +0000 UTC Push: 2023-01-17 19:31:06 +0000 UTC |

Live-Hack-CVE/CVE-2022-47318 ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-46648. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:59 +0000 UTC Push: 2023-01-17 19:31:02 +0000 UTC |

Live-Hack-CVE/CVE-2023-22279 MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:55 +0000 UTC Push: 2023-01-17 19:30:58 +0000 UTC |

Live-Hack-CVE/CVE-2022-46648 ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-47318. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:51 +0000 UTC Push: 2023-01-17 19:30:54 +0000 UTC |

Live-Hack-CVE/CVE-2023-22278 m-FILTER prior to Ver.5.70R01 (Ver.5 Series) and m-FILTER prior to Ver.4.87R04 (Ver.4 Series) allows a remote unauthenticated attacker to bypass authentication and send users' unintended email when email is being sent under the certain conditions. The attacks exploiting this vulnerability have been observed. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:47 +0000 UTC Push: 2023-01-17 19:30:50 +0000 UTC |

jsirichai/CVE-2022-23540-PoC Create: 2023-01-17 18:34:10 +0000 UTC Push: 2023-01-17 18:34:11 +0000 UTC |

pazhanivel07/pazhanivel07-frameworks_av-r33_CVE-2022-20413 Create: 2023-01-17 18:31:03 +0000 UTC Push: 2023-01-17 18:31:04 +0000 UTC |

pazhanivel07/frameworks_av-r33_CVE-2022-20413 Create: 2023-01-17 18:28:42 +0000 UTC Push: 2023-01-17 18:28:43 +0000 UTC |

notareaperbutDR34P3r/CVE-2022-40684-Rust Create: 2023-01-17 15:49:25 +0000 UTC Push: 2023-01-17 15:49:26 +0000 UTC |

Live-Hack-CVE/CVE-2020-36611 Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS, Hitachi Tuning Manager - Agent for SAN Switch components) allows local users to read and write specific files.This issue affects CVE project by @Sn0wAlice Create: 2023-01-17 15:07:13 +0000 UTC Push: 2023-01-17 15:07:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-45440 A vulnerability exists in the FTP server of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0, which processes symbolic links on external storage media. A local authenticated attacker with administrator privileges could abuse this vulnerability to access the root file system by creating a symbolic link on external CVE project by @Sn0wAlice Create: 2023-01-17 15:07:08 +0000 UTC Push: 2023-01-17 15:07:11 +0000 UTC |