unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2022-47197
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To trigger this vulnerability, an attacker can sen CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:33 +0000 UTC Push: 2023-01-20 03:51:36 +0000 UTC |
Live-Hack-CVE/CVE-2022-47196
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To trigger this vulnerability, an attacker can sen CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:29 +0000 UTC Push: 2023-01-20 03:51:32 +0000 UTC |
Live-Hack-CVE/CVE-2022-47195
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To trigger this vulnerability, an attacker can sen CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:25 +0000 UTC Push: 2023-01-20 03:51:28 +0000 UTC |
Live-Hack-CVE/CVE-2022-47194
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To trigger this vulnerability, an attacker can sen CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:21 +0000 UTC Push: 2023-01-20 03:51:24 +0000 UTC |
Live-Hack-CVE/CVE-2020-25714
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:17 +0000 UTC Push: 2023-01-20 03:51:20 +0000 UTC |
Live-Hack-CVE/CVE-2020-25679
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:13 +0000 UTC Push: 2023-01-20 03:51:16 +0000 UTC |
Live-Hack-CVE/CVE-2020-1715
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:10 +0000 UTC Push: 2023-01-20 03:51:12 +0000 UTC |
Live-Hack-CVE/CVE-2020-10765
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:06 +0000 UTC Push: 2023-01-20 03:51:08 +0000 UTC |
Live-Hack-CVE/CVE-2020-10764
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:51:02 +0000 UTC Push: 2023-01-20 03:51:04 +0000 UTC |
Live-Hack-CVE/CVE-2020-10694
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:50:58 +0000 UTC Push: 2023-01-20 03:51:01 +0000 UTC |
Live-Hack-CVE/CVE-2020-10692
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2020. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-20 03:50:54 +0000 UTC Push: 2023-01-20 03:50:57 +0000 UTC |
Live-Hack-CVE/CVE-2022-4543
A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems. CVE project by @Sn0wAlice
Create: 2023-01-20 03:50:50 +0000 UTC Push: 2023-01-20 03:50:53 +0000 UTC |
Live-Hack-CVE/CVE-2018-20961
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact. CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:41 +0000 UTC Push: 2023-01-20 01:40:44 +0000 UTC |
Live-Hack-CVE/CVE-2019-15504
drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir). CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:36 +0000 UTC Push: 2023-01-20 01:40:40 +0000 UTC |
Live-Hack-CVE/CVE-2014-2523
net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a DCCP packet that triggers a call to the (1) dccp_new, (2) dccp_packet, or (3) dccp_error f CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:32 +0000 UTC Push: 2023-01-20 01:40:35 +0000 UTC |
Live-Hack-CVE/CVE-2006-7204
The imap_body function in PHP before 4.4.4 does not implement safemode or open_basedir checks, which allows local users to read arbitrary files or list arbitrary directory contents. CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:24 +0000 UTC Push: 2023-01-20 01:40:26 +0000 UTC |
Live-Hack-CVE/CVE-2017-18017
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action. CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:20 +0000 UTC Push: 2023-01-20 01:40:22 +0000 UTC |
Live-Hack-CVE/CVE-2017-17806
The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3) to cause a kernel CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:16 +0000 UTC Push: 2023-01-20 01:40:19 +0000 UTC |
Live-Hack-CVE/CVE-2017-17853
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations. CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:12 +0000 UTC Push: 2023-01-20 01:40:15 +0000 UTC |
Live-Hack-CVE/CVE-2015-8787
The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.c in the Linux kernel before 4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by sending certain IPv4 packets to an incompletely configured interface, a relate CVE project by @Sn0wAlice
Create: 2023-01-20 01:40:08 +0000 UTC Push: 2023-01-20 01:40:10 +0000 UTC |
Previous
1041
1042
1043
1044
1045
1046
1047
1048
Next