Live-Hack-CVE/CVE-2022-33946 Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:56 +0000 UTC Push: 2023-02-17 21:22:58 +0000 UTC |

Live-Hack-CVE/CVE-2022-33190 Improper input validation in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:53 +0000 UTC Push: 2023-02-17 21:22:55 +0000 UTC |

Live-Hack-CVE/CVE-2022-31476 Improper access control in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable denial of service via local access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:49 +0000 UTC Push: 2023-02-17 21:22:51 +0000 UTC |

Live-Hack-CVE/CVE-2022-35729 Out of bounds read in firmware for OpenBMC in some Intel(R) platforms before version 0.72 may allow unauthenticated user to potentially enable denial of service via network access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:45 +0000 UTC Push: 2023-02-17 21:22:47 +0000 UTC |

Live-Hack-CVE/CVE-2022-29494 Improper input validation in firmware for OpenBMC in some Intel(R) platforms before versions egs-0.91-179 and bhs-04-45 may allow an authenticated user to potentially enable denial of service via network access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:41 +0000 UTC Push: 2023-02-17 21:22:44 +0000 UTC |

Live-Hack-CVE/CVE-2022-21163 Improper access control in the Crypto API Toolkit for Intel(R) SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE project by @Sn0wAlice Create: 2023-02-17 21:22:38 +0000 UTC Push: 2023-02-17 21:22:40 +0000 UTC |

Live-Hack-CVE/CVE-2023-24078 Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution (RCE) vulnerability via the component /FuguHub/cmsdocs/. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:58 +0000 UTC Push: 2023-02-17 20:16:00 +0000 UTC |

Live-Hack-CVE/CVE-2023-24221 LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/DeptMapper.xml. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:55 +0000 UTC Push: 2023-02-17 20:15:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-24220 LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/RoleMapper.xml. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:51 +0000 UTC Push: 2023-02-17 20:15:53 +0000 UTC |

Live-Hack-CVE/CVE-2023-24219 LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:48 +0000 UTC Push: 2023-02-17 20:15:50 +0000 UTC |

Live-Hack-CVE/CVE-2023-23695 Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:44 +0000 UTC Push: 2023-02-17 20:15:46 +0000 UTC |

Live-Hack-CVE/CVE-2023-0887 A vulnerability was found in phjounin TFTPD64-SE 4.64 and classified as critical. This issue affects some unknown processing of the file tftpd64_svc.exe. The manipulation leads to unquoted search path. An attack has to be approached locally. The associated identifier of this vulnerability is VDB-221351. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:41 +0000 UTC Push: 2023-02-17 20:15:43 +0000 UTC |

Live-Hack-CVE/CVE-2023-0883 A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. This vulnerability affects unknown code of the file /php-opos/index.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the p CVE project by @Sn0wAlice Create: 2023-02-17 20:15:37 +0000 UTC Push: 2023-02-17 20:15:39 +0000 UTC |

Live-Hack-CVE/CVE-2023-0882 Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Kron Tech Single Connect on Windows allows Privilege Abuse.This issue affects Single Connect: 2.16. CVE project by @Sn0wAlice Create: 2023-02-17 20:15:34 +0000 UTC Push: 2023-02-17 20:15:36 +0000 UTC |

LycsHub/CVE-2020-5245 Create: 2023-02-17 17:55:45 +0000 UTC Push: 2023-02-17 17:55:46 +0000 UTC |

LycsHub/CVE-2018-18893 Create: 2023-02-17 17:48:14 +0000 UTC Push: 2023-02-17 17:48:15 +0000 UTC |

Live-Hack-CVE/CVE-2023-0878 Cross-site Scripting (XSS) - Generic in GitHub repository nuxt/framework prior to 3.2.1. CVE project by @Sn0wAlice Create: 2023-02-17 14:46:05 +0000 UTC Push: 2023-02-17 14:46:07 +0000 UTC |

Live-Hack-CVE/CVE-2023-0879 Cross-site Scripting (XSS) - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.12. CVE project by @Sn0wAlice Create: 2023-02-17 14:46:01 +0000 UTC Push: 2023-02-17 14:46:03 +0000 UTC |

Live-Hack-CVE/CVE-2023-0877 Code Injection in GitHub repository froxlor/froxlor prior to 2.0.11. CVE project by @Sn0wAlice Create: 2023-02-17 14:45:57 +0000 UTC Push: 2023-02-17 14:45:59 +0000 UTC |

Live-Hack-CVE/CVE-2023-0880 Misinterpretation of Input in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-17 14:45:53 +0000 UTC Push: 2023-02-17 14:45:56 +0000 UTC |