unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
Github CVE
Github Tools
编码/解码
文件传输
管理
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2019-13564
XSS exists in Ping Identity Agentless Integration Kit before 1.5. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:59 +0800 CST Push: 2023-01-31 03:43:01 +0800 CST |
Live-Hack-CVE/CVE-2022-43975
An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. A vulnerability in the web server allows arbitrary files and configurations to be read via directory traversal over TCP port 8888. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:55 +0800 CST Push: 2023-01-31 03:42:58 +0800 CST |
Live-Hack-CVE/CVE-2019-11822
Relative path traversal vulnerability in SYNO.PhotoStation.File in Synology Photo Station before 6.8.11-3489 and before 6.3-2977 allows remote attackers to upload arbitrary files via the uploadphoto parameter. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:51 +0800 CST Push: 2023-01-31 03:42:53 +0800 CST |
Live-Hack-CVE/CVE-2018-1893
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:47 +0800 CST Push: 2023-01-31 03:42:49 +0800 CST |
Live-Hack-CVE/CVE-2018-1828
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:43 +0800 CST Push: 2023-01-31 03:42:46 +0800 CST |
Live-Hack-CVE/CVE-2018-1892
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:39 +0800 CST Push: 2023-01-31 03:42:42 +0800 CST |
Live-Hack-CVE/CVE-2018-1827
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:35 +0800 CST Push: 2023-01-31 03:42:37 +0800 CST |
Live-Hack-CVE/CVE-2018-1826
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:31 +0800 CST Push: 2023-01-31 03:42:33 +0800 CST |
Live-Hack-CVE/CVE-2018-1760
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:27 +0800 CST Push: 2023-01-31 03:42:30 +0800 CST |
Live-Hack-CVE/CVE-2018-1734
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:24 +0800 CST Push: 2023-01-31 03:42:26 +0800 CST |
Live-Hack-CVE/CVE-2018-1758
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:20 +0800 CST Push: 2023-01-31 03:42:22 +0800 CST |
Live-Hack-CVE/CVE-2019-4377
IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 reveals sensitive information from a stack trace that could be used in further attacks against the system. IBM X-Force ID: 162803. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:16 +0800 CST Push: 2023-01-31 03:42:18 +0800 CST |
Live-Hack-CVE/CVE-2019-4382
IBM API Connect 5.0.0.0 through 5.0.8.6 could allow an unauthorized user to obtain sensitive information about the system users using specially crafted HTTP requests. IBM X-Force ID: 162162. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:12 +0800 CST Push: 2023-01-31 03:42:15 +0800 CST |
Live-Hack-CVE/CVE-2019-13072
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:08 +0800 CST Push: 2023-01-31 03:42:11 +0800 CST |
Live-Hack-CVE/CVE-2018-2013
IBM API Connect 2018.1 through 2018.4.1.5 could disclose sensitive information to an unauthorized user that could aid in further attacks against the system. IBM X-Force ID: 155193. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:05 +0800 CST Push: 2023-01-31 03:42:07 +0800 CST |
Live-Hack-CVE/CVE-2019-11206
The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains vulnerabilities that theoretically allow a malicious user to undermine the integrity of comments and bookmarks. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Ana CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:00 +0800 CST Push: 2023-01-31 03:42:03 +0800 CST |
Live-Hack-CVE/CVE-2018-2011
IBM API Connect 2018.1 through 2018.4.1.5 could allow an attacker to obtain sensitive information from a specially crafted HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 155150. CVE project by @Sn0wAlice
Create: 2023-01-31 03:41:56 +0800 CST Push: 2023-01-31 03:41:59 +0800 CST |
choda225/CvecaraAplikacija2021271025
Create: 2023-01-31 01:38:18 +0800 CST Push: 2023-01-31 01:38:18 +0800 CST |
Live-Hack-CVE/CVE-2022-38490
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 corrects this issue. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:22 +0800 CST Push: 2023-01-31 01:31:25 +0800 CST |
Live-Hack-CVE/CVE-2022-3145
An open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitrary URL. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:17 +0800 CST Push: 2023-01-31 01:31:20 +0800 CST |
Previous
11
12
13
14
15
16
17
18
Next