unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2018-1827
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:35 +0000 UTC Push: 2023-01-31 03:42:37 +0000 UTC |
Live-Hack-CVE/CVE-2018-1826
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:31 +0000 UTC Push: 2023-01-31 03:42:33 +0000 UTC |
Live-Hack-CVE/CVE-2018-1760
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:27 +0000 UTC Push: 2023-01-31 03:42:30 +0000 UTC |
Live-Hack-CVE/CVE-2018-1734
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:24 +0000 UTC Push: 2023-01-31 03:42:26 +0000 UTC |
Live-Hack-CVE/CVE-2018-1758
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148 CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:20 +0000 UTC Push: 2023-01-31 03:42:22 +0000 UTC |
Live-Hack-CVE/CVE-2019-4377
IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 reveals sensitive information from a stack trace that could be used in further attacks against the system. IBM X-Force ID: 162803. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:16 +0000 UTC Push: 2023-01-31 03:42:18 +0000 UTC |
Live-Hack-CVE/CVE-2019-4382
IBM API Connect 5.0.0.0 through 5.0.8.6 could allow an unauthorized user to obtain sensitive information about the system users using specially crafted HTTP requests. IBM X-Force ID: 162162. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:12 +0000 UTC Push: 2023-01-31 03:42:15 +0000 UTC |
Live-Hack-CVE/CVE-2019-13072
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:08 +0000 UTC Push: 2023-01-31 03:42:11 +0000 UTC |
Live-Hack-CVE/CVE-2018-2013
IBM API Connect 2018.1 through 2018.4.1.5 could disclose sensitive information to an unauthorized user that could aid in further attacks against the system. IBM X-Force ID: 155193. CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:05 +0000 UTC Push: 2023-01-31 03:42:07 +0000 UTC |
Live-Hack-CVE/CVE-2019-11206
The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains vulnerabilities that theoretically allow a malicious user to undermine the integrity of comments and bookmarks. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Ana CVE project by @Sn0wAlice
Create: 2023-01-31 03:42:00 +0000 UTC Push: 2023-01-31 03:42:03 +0000 UTC |
Live-Hack-CVE/CVE-2018-2011
IBM API Connect 2018.1 through 2018.4.1.5 could allow an attacker to obtain sensitive information from a specially crafted HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 155150. CVE project by @Sn0wAlice
Create: 2023-01-31 03:41:56 +0000 UTC Push: 2023-01-31 03:41:59 +0000 UTC |
choda225/CvecaraAplikacija2021271025
Create: 2023-01-31 01:38:18 +0000 UTC Push: 2023-01-31 01:38:18 +0000 UTC |
Live-Hack-CVE/CVE-2022-38490
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 corrects this issue. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:22 +0000 UTC Push: 2023-01-31 01:31:25 +0000 UTC |
Live-Hack-CVE/CVE-2022-3145
An open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitrary URL. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:17 +0000 UTC Push: 2023-01-31 01:31:20 +0000 UTC |
Live-Hack-CVE/CVE-2018-3734
stattic node module suffers from a Path Traversal vulnerability due to lack of validation of path, which allows a malicious user to read content of any file with known path. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:10 +0000 UTC Push: 2023-01-31 01:31:12 +0000 UTC |
Live-Hack-CVE/CVE-2018-3715
glance node module before 3.0.4 suffers from a Path Traversal vulnerability due to lack of validation of path passed to it, which allows a malicious user to read content of any file with known path. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:06 +0000 UTC Push: 2023-01-31 01:31:08 +0000 UTC |
Live-Hack-CVE/CVE-2018-3746
The pdfinfojs NPM module versions <= 0.3.6 has a command injection vulnerability that allows an attacker to execute arbitrary commands on the victim's machine. CVE project by @Sn0wAlice
Create: 2023-01-31 01:31:01 +0000 UTC Push: 2023-01-31 01:31:04 +0000 UTC |
Live-Hack-CVE/CVE-2018-3743
Open redirect in hekto <=0.2.3 when target domain name is used as html filename on server. CVE project by @Sn0wAlice
Create: 2023-01-31 01:30:58 +0000 UTC Push: 2023-01-31 01:31:00 +0000 UTC |
Live-Hack-CVE/CVE-2018-3730
mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path. CVE project by @Sn0wAlice
Create: 2023-01-31 01:30:54 +0000 UTC Push: 2023-01-31 01:30:56 +0000 UTC |
Live-Hack-CVE/CVE-2018-3744
The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL. CVE project by @Sn0wAlice
Create: 2023-01-31 01:30:50 +0000 UTC Push: 2023-01-31 01:30:53 +0000 UTC |
Previous
655
656
657
658
659
660
661
662
Next