Live-Hack-CVE/CVE-2023-0850 A vulnerability was found in Netgear WNDR3700v2 1.0.1.14 and classified as problematic. This issue affects some unknown processing of the component Web Interface. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifi CVE project by @Sn0wAlice Create: 2023-02-16 07:25:47 +0000 UTC Push: 2023-02-16 07:25:50 +0000 UTC |

Live-Hack-CVE/CVE-2023-0849 A vulnerability has been found in Netgear WNDR3700v2 1.0.1.14 and classified as critical. This vulnerability affects unknown code of the component Web Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifie CVE project by @Sn0wAlice Create: 2023-02-16 07:25:42 +0000 UTC Push: 2023-02-16 07:25:46 +0000 UTC |

Live-Hack-CVE/CVE-2023-0848 A vulnerability was found in Netgear WNDR3700v2 1.0.1.14. It has been rated as problematic. This issue affects some unknown processing of the component Web Management Interface. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be use CVE project by @Sn0wAlice Create: 2023-02-16 07:25:38 +0000 UTC Push: 2023-02-16 07:25:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-40016 Use After Free (UAF) vulnerability in ireader media-server before commit 3e0f63f1d3553f75c7d4eb32fa7c7a1976a9ff84 in librtmp, allows attackers to cause a denial of service. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:35 +0000 UTC Push: 2023-02-16 07:25:37 +0000 UTC |

Live-Hack-CVE/CVE-2022-38935 An issue was discovered in NiterForum version 2.5.0-beta in /src/main/java/cn/niter/forum/api/SsoApi.java and /src/main/java/cn/niter/forum/controller/AdminController.java, allows attackers to gain escalated privileges. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:31 +0000 UTC Push: 2023-02-16 07:25:33 +0000 UTC |

Live-Hack-CVE/CVE-2022-38868 SQL Injection vulnerability in Ehoney version 2.0.0 in models/protocol.go and models/images.go, allows attackers to execute arbitrary code. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:28 +0000 UTC Push: 2023-02-16 07:25:30 +0000 UTC |

Live-Hack-CVE/CVE-2022-38867 SQL Injection vulnerability in rttys versions 4.0.0, 4.0.1, and 4.0.2 in api.go, allows attackers to execute arbitrary code. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:24 +0000 UTC Push: 2023-02-16 07:25:27 +0000 UTC |

Live-Hack-CVE/CVE-2021-34117 SQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows attackers to gain sensitive information. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:21 +0000 UTC Push: 2023-02-16 07:25:23 +0000 UTC |

Live-Hack-CVE/CVE-2021-33925 SQL Injection vulnerability in nitinparashar30 cms-corephp through commit bdabe52ef282846823bda102728a35506d0ec8f9 (May 19, 2021) allows unauthenticated attackers to gain escilated privledges via a crafted login. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:17 +0000 UTC Push: 2023-02-16 07:25:20 +0000 UTC |

Live-Hack-CVE/CVE-2021-33396 Cross Site Request Forgery (CSRF) vulnerability in baijiacms 4.1.4, allows attackers to change the password or other information of an arbitrary account via index.php. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:13 +0000 UTC Push: 2023-02-16 07:25:16 +0000 UTC |

Live-Hack-CVE/CVE-2021-33304 Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules/pico_fragments.c in function pico_fragments_reassemble, allows attackers to execute arbitrary code. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:10 +0000 UTC Push: 2023-02-16 07:25:12 +0000 UTC |

Live-Hack-CVE/CVE-2020-21120 SQL Injection vulnerability in file home\controls\cart.class.php in UQCMS 2.1.3, allows attackers execute arbitrary commands via the cookie_cart parameter to /index.php/cart/num. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:07 +0000 UTC Push: 2023-02-16 07:25:09 +0000 UTC |

Live-Hack-CVE/CVE-2020-21119 SQL Injection vulnerability in Kliqqi-CMS 2.0.2 in admin/admin_update_module_widgets.php in recordIDValue parameter, allows attackers to gain escalated privileges and execute arbitrary code. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:03 +0000 UTC Push: 2023-02-16 07:25:05 +0000 UTC |

Live-Hack-CVE/CVE-2020-19825 Cross Site Scripting (XSS) vulnerability in kevinpapst kimai2 1.30.0 in /src/Twig/Runtime/MarkdownExtension.php, allows attackers to gain escalated privileges. CVE project by @Sn0wAlice Create: 2023-02-16 07:25:00 +0000 UTC Push: 2023-02-16 07:25:02 +0000 UTC |

Live-Hack-CVE/CVE-2021-38239 SQL Injection vulnerability in dataease before 1.2.0, allows attackers to gain sensitive information via the orders parameter to /api/sys_msg/list/1/10. CVE project by @Sn0wAlice Create: 2023-02-16 07:24:56 +0000 UTC Push: 2023-02-16 07:24:58 +0000 UTC |

BKreisel/CVE-2022-41343 Create: 2023-02-16 07:17:55 +0000 UTC Push: 2023-02-16 07:17:55 +0000 UTC |

cataiovita/CVE-2023-0669 CVE-2023-0669 GoAnywhere MFT command injection vulnerability Create: 2023-02-16 07:00:18 +0000 UTC Push: 2023-02-16 07:00:19 +0000 UTC |

Live-Hack-CVE/CVE-2023-23462 Libpeconv – integer overflow, before commit 75b1565 (30/11/2022). CVE project by @Sn0wAlice Create: 2023-02-16 06:18:13 +0000 UTC Push: 2023-02-16 06:18:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-23461 Libpeconv – access violation, before commit b076013 (30/11/2022). CVE project by @Sn0wAlice Create: 2023-02-16 06:18:09 +0000 UTC Push: 2023-02-16 06:18:12 +0000 UTC |

Live-Hack-CVE/CVE-2023-23459 Priority Windows may allow Command Execution via SQL Injection using an unspecified method. CVE project by @Sn0wAlice Create: 2023-02-16 06:18:06 +0000 UTC Push: 2023-02-16 06:18:08 +0000 UTC |