Live-Hack-CVE/CVE-2009-10002 A vulnerability, which was classified as problematic, has been found in dpup fittr-flickr. This issue affects some unknown processing of the file fittr-flickr/features/easy-exif.js of the component EXIF Preview Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of th CVE project by @Sn0wAlice Create: 2023-01-14 03:26:16 +0000 UTC Push: 2023-01-14 03:26:19 +0000 UTC |

Live-Hack-CVE/CVE-2009-10001 A vulnerability classified as problematic was found in jianlinwei cool-php-captcha up to 0.2. This vulnerability affects unknown code of the file example-form.php. The manipulation of the argument captcha with the input %3Cscript%3Ealert(1)%3C/script%3E leads to cross site scripting. The attack can be initiated remotel CVE project by @Sn0wAlice Create: 2023-01-14 03:26:12 +0000 UTC Push: 2023-01-14 03:26:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-36930 Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain to escalate their privileges to the SYSTEM user. CVE project by @Sn0wAlice Create: 2023-01-14 03:26:03 +0000 UTC Push: 2023-01-14 03:26:06 +0000 UTC |

Live-Hack-CVE/CVE-2021-39260 A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:58 +0000 UTC Push: 2023-01-14 03:26:01 +0000 UTC |

Live-Hack-CVE/CVE-2021-39261 A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:54 +0000 UTC Push: 2023-01-14 03:25:56 +0000 UTC |

Live-Hack-CVE/CVE-2021-39259 A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:49 +0000 UTC Push: 2023-01-14 03:25:52 +0000 UTC |

Live-Hack-CVE/CVE-2021-39263 A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value, in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:45 +0000 UTC Push: 2023-01-14 03:25:48 +0000 UTC |

Live-Hack-CVE/CVE-2021-39262 A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:40 +0000 UTC Push: 2023-01-14 03:25:44 +0000 UTC |

Live-Hack-CVE/CVE-2023-22494 a12nserver is an open source lightweight OAuth2 server. Users of a12nserver that use MySQL might be vulnerable to SQL injection bugs. If you use a12nserver and MySQL, update as soon as possible. This SQL injection bug might let an attacker obtain OAuth2 Access Tokens for users unrelated to those that permitted OAuth2 c CVE project by @Sn0wAlice Create: 2023-01-14 01:15:44 +0000 UTC Push: 2023-01-14 01:15:45 +0000 UTC |

Live-Hack-CVE/CVE-2023-0289 Cross-site Scripting (XSS) - Stored in GitHub repository craigk5n/webcalendar prior to master. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:39 +0000 UTC Push: 2023-01-14 01:15:42 +0000 UTC |

Live-Hack-CVE/CVE-2023-0288 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:35 +0000 UTC Push: 2023-01-14 01:15:38 +0000 UTC |

Live-Hack-CVE/CVE-2023-0221 Product security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypass the execution controls provided by ACC using the utilman program. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:30 +0000 UTC Push: 2023-01-14 01:15:34 +0000 UTC |

Live-Hack-CVE/CVE-2019-14369 Exiv2::PngImage::readMetadata() in pngimage.cpp in Exiv2 0.27.99.0 allows attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:25 +0000 UTC Push: 2023-01-14 01:15:28 +0000 UTC |

Live-Hack-CVE/CVE-2019-13504 There is an out-of-bounds read in Exiv2::MrwImage::readMetadata in mrwimage.cpp in Exiv2 through 0.27.2. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:21 +0000 UTC Push: 2023-01-14 01:15:24 +0000 UTC |

Live-Hack-CVE/CVE-2019-17402 Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:16 +0000 UTC Push: 2023-01-14 01:15:20 +0000 UTC |

Live-Hack-CVE/CVE-2019-14370 In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in mrwimage.cpp. It could result in denial of service. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:12 +0000 UTC Push: 2023-01-14 01:15:15 +0000 UTC |

Live-Hack-CVE/CVE-2018-17581 CiffDirectory::readDirectory() at crwimage_int.cpp in Exiv2 0.26 has excessive stack consumption due to a recursive function, leading to Denial of service. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:07 +0000 UTC Push: 2023-01-14 01:15:11 +0000 UTC |

Live-Hack-CVE/CVE-2018-8976 In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.cpp Exiv2::Internal::stringFormat out-of-bounds read) via a crafted file. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:03 +0000 UTC Push: 2023-01-14 01:15:06 +0000 UTC |

Live-Hack-CVE/CVE-2018-19535 In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunk_int.cpp may cause a denial of service (application crash due to a heap-based buffer over-read) via a crafted PNG file. CVE project by @Sn0wAlice Create: 2023-01-14 01:14:59 +0000 UTC Push: 2023-01-14 01:15:02 +0000 UTC |

Live-Hack-CVE/CVE-2018-19108 In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may suffer from a denial of service (infinite loop) caused by an integer overflow via a crafted PSD image file. CVE project by @Sn0wAlice Create: 2023-01-14 01:14:54 +0000 UTC Push: 2023-01-14 01:14:57 +0000 UTC |