Live-Hack-CVE/CVE-2014-125063 A vulnerability was found in ada-l0velace Bid and classified as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is abd71140b8219fa8741d0d8a57ab27d5bfd34222. It is recommended to apply a patch to fix this issue. The identifier VDB-217625 was assigned t CVE project by @Sn0wAlice Create: 2023-01-08 05:37:27 +0000 UTC Push: 2023-01-08 05:37:29 +0000 UTC |

Live-Hack-CVE/CVE-2020-36645 A vulnerability, which was classified as critical, was found in square squalor. This affects an unknown part. The manipulation leads to sql injection. Upgrading to version v0.0.0 is able to address this issue. The name of the patch is f6f0a47cc344711042eb0970cb423e6950ba3f93. It is recommended to upgrade the affected c CVE project by @Sn0wAlice Create: 2023-01-08 05:37:23 +0000 UTC Push: 2023-01-08 05:37:25 +0000 UTC |

Live-Hack-CVE/CVE-2014-125065 A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is CVE project by @Sn0wAlice Create: 2023-01-08 05:37:19 +0000 UTC Push: 2023-01-08 05:37:21 +0000 UTC |

Live-Hack-CVE/CVE-2021-4307 A vulnerability was found in Yomguithereal Baobab up to 2.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). The attack can be launched remotely. Upgrading CVE project by @Sn0wAlice Create: 2023-01-08 05:37:15 +0000 UTC Push: 2023-01-08 05:37:17 +0000 UTC |

Live-Hack-CVE/CVE-2020-36646 A vulnerability classified as problematic has been found in MediaArea ZenLib up to 0.4.38. This affects the function Ztring::Date_From_Seconds_1970_Local of the file Source/ZenLib/Ztring.cpp. The manipulation of the argument Value leads to unchecked return value to null pointer dereference. Upgrading to version 0.4.39 CVE project by @Sn0wAlice Create: 2023-01-08 05:37:11 +0000 UTC Push: 2023-01-08 05:37:14 +0000 UTC |

Live-Hack-CVE/CVE-2017-20164 A vulnerability was found in Symbiote Seed up to 6.0.2. It has been classified as critical. Affected is the function onBeforeSecurityLogin of the file code/extensions/SecurityLoginExtension.php of the component Login. The manipulation of the argument URL leads to open redirect. It is possible to launch the attack remot CVE project by @Sn0wAlice Create: 2023-01-08 05:37:07 +0000 UTC Push: 2023-01-08 05:37:10 +0000 UTC |

Live-Hack-CVE/CVE-2016-15014 A vulnerability has been found in CESNET theme-cesnet up to 1.x and classified as problematic. Affected by this vulnerability is an unknown functionality of the file cesnet/core/lostpassword/templates/resetpassword.php. The manipulation leads to insufficiently protected credentials. Attacking locally is a requirement. CVE project by @Sn0wAlice Create: 2023-01-08 05:37:04 +0000 UTC Push: 2023-01-08 05:37:06 +0000 UTC |

Live-Hack-CVE/CVE-2016-15013 A vulnerability was found in ForumHulp searchresults. It has been rated as critical. Affected by this issue is the function list_keywords of the file event/listener.php. The manipulation of the argument word leads to sql injection. The name of the patch is dd8a312bb285ad9735a8e1da58e9e955837b7322. It is recommended to CVE project by @Sn0wAlice Create: 2023-01-08 05:36:59 +0000 UTC Push: 2023-01-08 05:37:02 +0000 UTC |

Live-Hack-CVE/CVE-2015-10029 A vulnerability classified as problematic was found in kelvinmo simplexrd up to 3.1.0. This vulnerability affects unknown code of the file simplexrd/simplexrd.class.php. The manipulation leads to xml external entity reference. Upgrading to version 3.1.1 is able to address this issue. The name of the patch is 4c9f2e0285 CVE project by @Sn0wAlice Create: 2023-01-08 05:36:56 +0000 UTC Push: 2023-01-08 05:36:58 +0000 UTC |

Live-Hack-CVE/CVE-2014-125064 A vulnerability, which was classified as critical, has been found in elgs gosqljson. This issue affects the function QueryDbToArray/QueryDbToMap/ExecDb of the file gosqljson.go. The manipulation of the argument sqlStatement leads to sql injection. The name of the patch is 2740b331546cb88eb61771df4c07d389e9f0363a. It is CVE project by @Sn0wAlice Create: 2023-01-08 05:36:52 +0000 UTC Push: 2023-01-08 05:36:54 +0000 UTC |

Live-Hack-CVE/CVE-2013-10009 A vulnerability was found in DrAzraelTod pyChao and classified as critical. Affected by this issue is the function klauen/lesen of the file mod_fun/__init__.py. The manipulation leads to sql injection. The name of the patch is 9d8adbc07c384ba51c2583ce0819c9abb77dc648. It is recommended to apply a patch to fix this issu CVE project by @Sn0wAlice Create: 2023-01-08 05:36:48 +0000 UTC Push: 2023-01-08 05:36:50 +0000 UTC |

v0lp3/CVE-2022-39073 Proof of concept for the command injection vulnerability affecting the ZTE MF286R router, including an RCE exploit. Create: 2023-01-08 04:46:20 +0000 UTC Push: 2023-01-08 04:46:38 +0000 UTC |

Live-Hack-CVE/CVE-2021-4306 A vulnerability classified as problematic has been found in cronvel terminal-kit up to 2.1.7. Affected is an unknown function. The manipulation leads to inefficient regular expression complexity. Upgrading to version 2.1.8 is able to address this issue. The name of the patch is a2e446cc3927b559d0281683feb9b821e83b758c. CVE project by @Sn0wAlice Create: 2023-01-08 03:26:40 +0000 UTC Push: 2023-01-08 03:26:44 +0000 UTC |

Live-Hack-CVE/CVE-2015-10027 A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP. Affected by this issue is some unknown functionality of the component Username Handler. The manipulation leads to ldap injection. Upgrading to version 2.0b1 is able to address this issue. The name of the patch is a7f7a5a82d CVE project by @Sn0wAlice Create: 2023-01-08 03:26:36 +0000 UTC Push: 2023-01-08 03:26:39 +0000 UTC |

Live-Hack-CVE/CVE-2014-125062 A vulnerability classified as critical was found in ananich bitstorm. Affected by this vulnerability is an unknown functionality of the file announce.php. The manipulation of the argument event leads to sql injection. The name of the patch is ea8da92f94cdb78ee7831e1f7af6258473ab396a. It is recommended to apply a patch CVE project by @Sn0wAlice Create: 2023-01-08 03:26:32 +0000 UTC Push: 2023-01-08 03:26:35 +0000 UTC |

Live-Hack-CVE/CVE-2022-4880 A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is able to address this iss CVE project by @Sn0wAlice Create: 2023-01-08 00:11:27 +0000 UTC Push: 2023-01-08 00:11:30 +0000 UTC |

Live-Hack-CVE/CVE-2016-15012 ** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in forcedotcom SalesforceMobileSDK-Windows up to 4.x. It has been rated as critical. This issue affects the function ComputeCountSql of the file SalesforceSDK/SmartStore/Store/QuerySpec.cs. The manipulation leads to sql injection. CVE project by @Sn0wAlice Create: 2023-01-08 00:11:23 +0000 UTC Push: 2023-01-08 00:11:25 +0000 UTC |

Live-Hack-CVE/CVE-2015-10026 A vulnerability was found in tiredtyrant flairbot. It has been declared as critical. This vulnerability affects unknown code of the file flair.py. The manipulation leads to sql injection. The name of the patch is 5e112b68c6faad1d4699d02c1ebbb7daf48ef8fb. It is recommended to apply a patch to fix this issue. VDB-217618 CVE project by @Sn0wAlice Create: 2023-01-08 00:11:17 +0000 UTC Push: 2023-01-08 00:11:21 +0000 UTC |

Live-Hack-CVE/CVE-2015-10025 A vulnerability has been found in luelista miniConf up to 1.7.6 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file miniConf/MessageView.cs of the component URL Scanning. The manipulation leads to denial of service. Upgrading to version 1.7.7 and 1.8.0 is able to addres CVE project by @Sn0wAlice Create: 2023-01-08 00:11:13 +0000 UTC Push: 2023-01-08 00:11:15 +0000 UTC |

Live-Hack-CVE/CVE-2015-10024 A vulnerability classified as critical was found in hoffie larasync. This vulnerability affects unknown code of the file repository/content/file_storage.go. The manipulation leads to path traversal. The name of the patch is 776bad422f4bd4930d09491711246bbeb1be9ba5. It is recommended to apply a patch to fix this issue. CVE project by @Sn0wAlice Create: 2023-01-08 00:11:08 +0000 UTC Push: 2023-01-08 00:11:11 +0000 UTC |