Live-Hack-CVE/CVE-2009-10003 A vulnerability was found in capnsquarepants wordcraft up to 0.6. It has been classified as problematic. Affected is an unknown function of the file tag.php. The manipulation of the argument tag leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 0.7 is able to address this CVE project by @Sn0wAlice Create: 2023-01-30 05:52:50 +0000 UTC Push: 2023-01-30 05:52:52 +0000 UTC |

Live-Hack-CVE/CVE-2023-0569 Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10. CVE project by @Sn0wAlice Create: 2023-01-30 03:44:30 +0000 UTC Push: 2023-01-30 03:44:31 +0000 UTC |

Live-Hack-CVE/CVE-2021-23434 This affects the package object-path before 0.11.6. A type confusion vulnerability can lead to a bypass of CVE-2020-15256 when the path components used in the path parameter are arrays. In particular, the condition currentPath === '__proto__' returns false if currentPath is ['__proto__']. This is because the === operat CVE project by @Sn0wAlice Create: 2023-01-30 03:44:26 +0000 UTC Push: 2023-01-30 03:44:28 +0000 UTC |

Live-Hack-CVE/CVE-2021-3805 object-path is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') CVE project by @Sn0wAlice Create: 2023-01-30 03:44:23 +0000 UTC Push: 2023-01-30 03:44:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-0571 A vulnerability has been found in SourceCodester Canteen Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file createcustomer.php of the component Add Customer. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. T CVE project by @Sn0wAlice Create: 2023-01-30 03:44:20 +0000 UTC Push: 2023-01-30 03:44:22 +0000 UTC |

Live-Hack-CVE/CVE-2023-0570 A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file user\operations\payment_operation.php. The manipulation of the argument booking_id leads to sql injection. It is possible to initiate the attack remotely. CVE project by @Sn0wAlice Create: 2023-01-30 03:44:16 +0000 UTC Push: 2023-01-30 03:44:18 +0000 UTC |

MataKucing-OFC/CVE-2018-17254 Joomla JCK Editor 6.4.4 - 'parent' SQL Injection Create: 2023-01-30 01:07:10 +0000 UTC Push: 2023-01-30 01:07:10 +0000 UTC |

Live-Hack-CVE/CVE-2020-4051 In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than 1.14.7, and greater than or equal to 1.15.0 and less than 1.15.4, and greater than or equal to 1.16.0 and less than 1.16 CVE project by @Sn0wAlice Create: 2023-01-29 23:20:27 +0000 UTC Push: 2023-01-29 23:20:29 +0000 UTC |

Live-Hack-CVE/CVE-2021-23450 All versions of package dojo are vulnerable to Prototype Pollution via the setObject function. CVE project by @Sn0wAlice Create: 2023-01-29 23:20:24 +0000 UTC Push: 2023-01-29 23:20:26 +0000 UTC |

Cyb3rtus/keepass_CVE-2023-24055_yara_rule Contains a simple yara rule to hunt for possible compromised KeePass config files Create: 2023-01-29 22:13:44 +0000 UTC Push: 2023-01-29 22:13:44 +0000 UTC |

nikn0laty/PDFkit-CMD-Injection-CVE-2022-25765- Exploit for CVE-2022-25765 command injection in pdfkit < 0.8.6 Create: 2023-01-29 18:36:40 +0000 UTC Push: 2023-01-29 18:36:40 +0000 UTC |

nikn0laty/PDFkit-CMD-Injection-CVE-2022-25765 Exploit for CVE-2022-25765 command injection in pdfkit < 0.8.6 Create: 2023-01-29 18:36:40 +0000 UTC Push: 2023-01-29 18:37:22 +0000 UTC |

Live-Hack-CVE/CVE-2023-0564 Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10. CVE project by @Sn0wAlice Create: 2023-01-29 14:37:11 +0000 UTC Push: 2023-01-29 14:37:13 +0000 UTC |

Live-Hack-CVE/CVE-2022-48285 loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive. CVE project by @Sn0wAlice Create: 2023-01-29 14:37:06 +0000 UTC Push: 2023-01-29 14:37:08 +0000 UTC |

SeasonLeague/CVE-2017-5487 This is a vulnerability in the Linux kernel that was discovered and disclosed in 2017. Create: 2023-01-29 12:43:37 +0000 UTC Push: 2023-01-29 12:43:37 +0000 UTC |

krizzz07/CVE-2020-0796 windows 10 SMB vulnerability Create: 2023-01-29 12:29:49 +0000 UTC Push: 2023-01-29 12:29:50 +0000 UTC |

fakenews2025/CVE-2023-21839 CVE-2023-21839 exp Create: 2023-01-29 11:02:10 +0000 UTC Push: 2023-01-29 11:02:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-0563 A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. The manipulation of the argument ahname leads to cross site scripting. It is possible to initiate the attack remotely. Th CVE project by @Sn0wAlice Create: 2023-01-29 10:18:12 +0000 UTC Push: 2023-01-29 10:18:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-0562 A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The identifi CVE project by @Sn0wAlice Create: 2023-01-29 10:18:09 +0000 UTC Push: 2023-01-29 10:18:11 +0000 UTC |

Live-Hack-CVE/CVE-2021-4315 A vulnerability has been found in NYUCCL psiTurk up to 3.2.0 and classified as critical. This vulnerability affects unknown code of the file psiturk/experiment.py. The manipulation of the argument mode leads to improper neutralization of special elements used in a template engine. The exploit has been disclosed to the CVE project by @Sn0wAlice Create: 2023-01-29 10:18:05 +0000 UTC Push: 2023-01-29 10:18:08 +0000 UTC |