Live-Hack-CVE/CVE-2023-0258 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Category List Handler. The manipulation of the argument Reason with the input "><script>prompt(1)</script> leads to cross site scripting. T CVE project by @Sn0wAlice Create: 2023-01-13 07:33:42 +0000 UTC Push: 2023-01-13 07:33:44 +0000 UTC |

Live-Hack-CVE/CVE-2023-0257 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fos/admin/index.php?page=menu of the component Menu Form. The manipulation of the argument Image with the input <?php system($_GET['c']); CVE project by @Sn0wAlice Create: 2023-01-13 07:33:38 +0000 UTC Push: 2023-01-13 07:33:41 +0000 UTC |

Live-Hack-CVE/CVE-2023-0256 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file /fos/admin/ajax.php?action=login of the component Login Page. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack CVE project by @Sn0wAlice Create: 2023-01-13 07:33:33 +0000 UTC Push: 2023-01-13 07:33:36 +0000 UTC |

Live-Hack-CVE/CVE-2022-47102 A cross-site scripting (XSS) vulnerability in Student Study Center Management System V 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:28 +0000 UTC Push: 2023-01-13 07:33:32 +0000 UTC |

Live-Hack-CVE/CVE-2022-46623 Judging Management System v1.0.0 was discovered to contain a SQL injection vulnerability via the username parameter. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:24 +0000 UTC Push: 2023-01-13 07:33:27 +0000 UTC |

Live-Hack-CVE/CVE-2022-46622 A cross-site scripting (XSS) vulnerability in Judging Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:19 +0000 UTC Push: 2023-01-13 07:33:22 +0000 UTC |

Live-Hack-CVE/CVE-2022-45729 A cross-site scripting (XSS) vulnerability in Doctor Appointment Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Employee ID parameter. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:15 +0000 UTC Push: 2023-01-13 07:33:18 +0000 UTC |

Live-Hack-CVE/CVE-2022-45728 Doctor Appointment Management System v1.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:11 +0000 UTC Push: 2023-01-13 07:33:14 +0000 UTC |

Live-Hack-CVE/CVE-2017-5242 Nexpose and InsightVM virtual appliances downloaded between April 5th, 2017 and May 3rd, 2017 contain identical SSH host keys. Normally, a unique SSH host key should be generated the first time a virtual appliance boots. CVE project by @Sn0wAlice Create: 2023-01-13 07:33:06 +0000 UTC Push: 2023-01-13 07:33:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-33283 Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check. CVE project by @Sn0wAlice Create: 2023-01-13 07:32:57 +0000 UTC Push: 2023-01-13 07:33:01 +0000 UTC |

Live-Hack-CVE/CVE-2022-33284 Information disclosure due to buffer over-read in WLAN while parsing BTM action frame. CVE project by @Sn0wAlice Create: 2023-01-13 07:32:53 +0000 UTC Push: 2023-01-13 07:32:56 +0000 UTC |

Live-Hack-CVE/CVE-2023-22488 Flarum is a forum software for building communities. Using the notifications feature, one can read restricted/private content and bypass access checks that would be in place for such content. The notification-sending component does not check that the subject of the notification can be seen by the receiver, and proceeds CVE project by @Sn0wAlice Create: 2023-01-13 05:21:25 +0000 UTC Push: 2023-01-13 05:21:27 +0000 UTC |

Live-Hack-CVE/CVE-2022-40518 Information disclosure due to buffer overread in Core CVE project by @Sn0wAlice Create: 2023-01-13 05:21:11 +0000 UTC Push: 2023-01-13 05:21:14 +0000 UTC |

Live-Hack-CVE/CVE-2022-40517 Memory corruption in core due to stack-based buffer overflow CVE project by @Sn0wAlice Create: 2023-01-13 05:21:07 +0000 UTC Push: 2023-01-13 05:21:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-40516 Memory corruption in Core due to stack-based buffer overflow. CVE project by @Sn0wAlice Create: 2023-01-13 05:21:02 +0000 UTC Push: 2023-01-13 05:21:05 +0000 UTC |

Live-Hack-CVE/CVE-2022-40519 Information disclosure due to buffer overread in Core CVE project by @Sn0wAlice Create: 2023-01-13 05:20:57 +0000 UTC Push: 2023-01-13 05:21:00 +0000 UTC |

Live-Hack-CVE/CVE-2022-33300 Memory corruption in Automotive Android OS due to improper input validation. CVE project by @Sn0wAlice Create: 2023-01-13 05:20:51 +0000 UTC Push: 2023-01-13 05:20:54 +0000 UTC |

Live-Hack-CVE/CVE-2022-35281 IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, 7.6.1.3 and the IBM Maximo Manage 8.3, 8.4 application in IBM Maximo Application Suite are vulnerable to CSV injection. IBM X-Force ID: 2306335. CVE project by @Sn0wAlice Create: 2023-01-13 05:20:43 +0000 UTC Push: 2023-01-13 05:20:49 +0000 UTC |

Live-Hack-CVE/CVE-2022-37933 A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be exploited to allow local unauthorized data injection. HPE has made the following software updates to resolve the vulnerability in HPE Superdome Flex firmware 3.60.50 and below and Supe CVE project by @Sn0wAlice Create: 2023-01-13 04:15:53 +0000 UTC Push: 2023-01-13 04:15:56 +0000 UTC |

Live-Hack-CVE/CVE-2022-46761 The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons. CVE project by @Sn0wAlice Create: 2023-01-13 04:15:48 +0000 UTC Push: 2023-01-13 04:15:52 +0000 UTC |