unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2022-46934
kkFileView v4.1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the url parameter at /controller/OnlinePreviewController.java. CVE project by @Sn0wAlice
Create: 2023-02-02 05:29:01 +0000 UTC Push: 2023-02-02 05:29:03 +0000 UTC |
Live-Hack-CVE/CVE-2023-23969
In Django 3.2 before 3.2.17, 4.0 before 4.0.9, and 4.1 before 4.1.6, the parsed values of Accept-Language headers are cached in order to avoid repetitive parsing. This leads to a potential denial-of-service vector via excessive memory usage if the raw value of Accept-Language headers is very large. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:57 +0000 UTC Push: 2023-02-02 05:29:00 +0000 UTC |
Live-Hack-CVE/CVE-2023-22501
An authentication vulnerability was discovered in Jira Service Management Server and Data Center which allows an attacker to impersonate another user and gain access to a Jira Service Management instance under certain circumstances_._ With write access to a User Directory and outgoing email enabled on a Jira Service Ma CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:54 +0000 UTC Push: 2023-02-02 05:28:56 +0000 UTC |
Live-Hack-CVE/CVE-2019-19648
In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:50 +0000 UTC Push: 2023-02-02 05:28:53 +0000 UTC |
Live-Hack-CVE/CVE-2023-24170
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/fromSetWirelessRepeat. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:47 +0000 UTC Push: 2023-02-02 05:28:49 +0000 UTC |
Live-Hack-CVE/CVE-2022-47073
A cross-site scripting (XSS) vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:43 +0000 UTC Push: 2023-02-02 05:28:46 +0000 UTC |
Live-Hack-CVE/CVE-2023-24167
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/add_white_node. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:40 +0000 UTC Push: 2023-02-02 05:28:42 +0000 UTC |
Live-Hack-CVE/CVE-2023-24169
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_0007343c. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:36 +0000 UTC Push: 2023-02-02 05:28:38 +0000 UTC |
Live-Hack-CVE/CVE-2019-9904
An issue was discovered in lib\cdt\dttree.c in libcdt.a in graphviz 2.40.1. Stack consumption occurs because of recursive agclose calls in lib\cgraph\graph.c in libcgraph.a, related to agfstsubg in lib\cgraph\subg.c. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:32 +0000 UTC Push: 2023-02-02 05:28:35 +0000 UTC |
Live-Hack-CVE/CVE-2019-14465
fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:29 +0000 UTC Push: 2023-02-02 05:28:31 +0000 UTC |
Live-Hack-CVE/CVE-2023-24166
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:25 +0000 UTC Push: 2023-02-02 05:28:28 +0000 UTC |
Live-Hack-CVE/CVE-2019-4716
IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. IBM X-Force ID: 172094. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:22 +0000 UTC Push: 2023-02-02 05:28:24 +0000 UTC |
Live-Hack-CVE/CVE-2022-27507
Authenticated denial of service CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:18 +0000 UTC Push: 2023-02-02 05:28:20 +0000 UTC |
Live-Hack-CVE/CVE-2022-27508
Unauthenticated denial of service CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:14 +0000 UTC Push: 2023-02-02 05:28:17 +0000 UTC |
Live-Hack-CVE/CVE-2023-24165
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/initIpAddrInfo. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:10 +0000 UTC Push: 2023-02-02 05:28:13 +0000 UTC |
Live-Hack-CVE/CVE-2023-24164
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_000c2318. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:07 +0000 UTC Push: 2023-02-02 05:28:09 +0000 UTC |
Live-Hack-CVE/CVE-2022-43864
IBM Business Automation Workflow 22.0.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 239427. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:03 +0000 UTC Push: 2023-02-02 05:28:05 +0000 UTC |
Live-Hack-CVE/CVE-2022-40036
An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component. CVE project by @Sn0wAlice
Create: 2023-02-02 05:28:00 +0000 UTC Push: 2023-02-02 05:28:02 +0000 UTC |
Live-Hack-CVE/CVE-2022-43917
IBM WebSphere Application Server 8.5 and 9.0 traditional container uses weaker than expected cryptographic keys that could allow an attacker to decrypt sensitive information. This affects only the containerized version of WebSphere Application Server traditional. IBM X-Force ID: 241045. CVE project by @Sn0wAlice
Create: 2023-02-02 05:27:56 +0000 UTC Push: 2023-02-02 05:27:58 +0000 UTC |
Live-Hack-CVE/CVE-2022-40035
File Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing attackers to execute arbitrary commands and gain escalated privileges via the /uploadFileList component. CVE project by @Sn0wAlice
Create: 2023-02-02 05:27:52 +0000 UTC Push: 2023-02-02 05:27:55 +0000 UTC |
Previous
986
987
988
989
990
991
992
993
Next