unSafe.sh - 不安全

ElGanz0/CVE-2022-0739 BookingPress < 1.0.11 - Unauthenticated SQL Injection
Create: 2023-02-18 23:23:49 +0000 UTC Push: 2023-02-18 23:23:50 +0000 UTC |

RicYaben/CVE-2020-1472-LAB Lab introduction to ZeroLogon
Create: 2023-02-18 22:52:17 +0000 UTC Push: 2023-02-18 22:52:18 +0000 UTC |

reewardius/CVE-2022-32074
Create: 2023-02-18 21:19:03 +0000 UTC Push: 2023-02-18 21:19:03 +0000 UTC |

reewardius/CVE-2022-31889
Create: 2023-02-18 21:14:53 +0000 UTC Push: 2023-02-18 21:14:54 +0000 UTC |

reewardius/CVE-2022-32132
Create: 2023-02-18 21:11:13 +0000 UTC Push: 2023-02-18 21:11:14 +0000 UTC |

WhiteOwl-Pub/Joomla-PoC-CVE-2023-23752 PoC for CVE-2023-23752 (joomla CMS)
Create: 2023-02-18 20:43:43 +0000 UTC Push: 2023-12-12 16:50:52 +0000 UTC |

reewardius/CVE-2022-31890
Create: 2023-02-18 20:40:45 +0000 UTC Push: 2023-02-18 20:40:46 +0000 UTC |

Serendipity-Lucky/CVE-2018-2628 CVE-2018-2628漏洞工具
Create: 2023-02-18 20:35:26 +0000 UTC Push: 2023-02-18 20:35:26 +0000 UTC |

Saboor-Hakimi/CVE-2023-23752 CVE-2023-23752 nuclei template
Create: 2023-02-18 20:19:24 +0000 UTC Push: 2023-02-18 20:19:24 +0000 UTC |

Live-Hack-CVE/CVE-2023-0901 Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pixelfed/pixelfed prior to 0.11.4. CVE project by @Sn0wAlice
Create: 2023-02-18 15:12:30 +0000 UTC Push: 2023-02-18 15:12:32 +0000 UTC |

Live-Hack-CVE/CVE-2022-40348 Cross Site Scripting (XSS) vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code. CVE project by @Sn0wAlice
Create: 2023-02-18 15:12:27 +0000 UTC Push: 2023-02-18 15:12:29 +0000 UTC |

yosef0x01/CVE-2023-0669 CVE-2023-0669 Encrpytion helper
Create: 2023-02-18 13:54:22 +0000 UTC Push: 2023-02-18 13:54:54 +0000 UTC |

T1erno/CVE-2022-0492-Docker-Breakout-Checker-and-PoC Docker Breakout Checker and PoC via CAP_SYS_ADMIN and via user namespaces (CVE-2022-0492)
Create: 2023-02-18 12:48:25 +0000 UTC Push: 2023-02-18 13:28:02 +0000 UTC |

YusinoMy/CVE-2023-23752 Joomla! 未授权访问漏洞
Create: 2023-02-18 11:36:54 +0000 UTC Push: 2023-02-18 11:36:58 +0000 UTC |

Live-Hack-CVE/CVE-2021-32846 HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107, function `pci_vtsock_proc_tx` in `virtio-sock` can lead to to uninitialized memory use. In this situation, there is a check for the return value to be less or equal to `VTSOCK_MAXSEGS`, but that check is not sufficien CVE project by @Sn0wAlice
Create: 2023-02-18 09:36:41 +0000 UTC Push: 2023-02-18 09:36:43 +0000 UTC |

Live-Hack-CVE/CVE-2021-32845 HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, the implementation of `qnotify` at `pci_vtrnd_notify` fails to check the return value of `vq_getchain`. This leads to `struct iovec iov;` being uninitialized and used to read memory in `len = (in CVE project by @Sn0wAlice
Create: 2023-02-18 09:36:38 +0000 UTC Push: 2023-02-18 09:36:40 +0000 UTC |

Live-Hack-CVE/CVE-2021-32844 HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, ` vi_pci_write` has is a call to `vc_cfgwrite` that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denial of service. T CVE project by @Sn0wAlice
Create: 2023-02-18 09:36:34 +0000 UTC Push: 2023-02-18 09:36:37 +0000 UTC |

Live-Hack-CVE/CVE-2021-32843 HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, `virtio.c` has is a call to `vc_cfgread` that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denial of service. This is CVE project by @Sn0wAlice
Create: 2023-02-18 09:36:31 +0000 UTC Push: 2023-02-18 09:36:33 +0000 UTC |

Live-Hack-CVE/CVE-2023-21593 Adobe InDesign versions ID18.1 (and earlier) and ID17.4 (and earlier) are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interacti CVE project by @Sn0wAlice
Create: 2023-02-18 07:23:23 +0000 UTC Push: 2023-02-18 07:23:26 +0000 UTC |

Live-Hack-CVE/CVE-2023-23064 TOTOLINK A720R V4.1.5cu.532_ B20210610 is vulnerable to Incorrect Access Control. CVE project by @Sn0wAlice
Create: 2023-02-18 07:23:20 +0000 UTC Push: 2023-02-18 07:23:22 +0000 UTC |