Live-Hack-CVE/CVE-2015-10030 A vulnerability has been found in SUKOHI Surpass and classified as critical. This vulnerability affects unknown code of the file src/Sukohi/Surpass/Surpass.php. The manipulation of the argument dir leads to pathname traversal. Upgrading to version 1.0.0 is able to address this issue. The name of the patch is d22337d453 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:43 +0000 UTC Push: 2023-01-08 19:46:45 +0000 UTC |

Live-Hack-CVE/CVE-2014-125067 A vulnerability classified as critical was found in corincerami curiosity. Affected by this vulnerability is an unknown functionality of the file app/controllers/image_controller.rb. The manipulation of the argument sol leads to sql injection. The name of the patch is d64fddd74ca72714e73f4efe24259ca05c8190eb. It is rec CVE project by @Sn0wAlice Create: 2023-01-08 19:46:38 +0000 UTC Push: 2023-01-08 19:46:41 +0000 UTC |

Live-Hack-CVE/CVE-2007-10002 A vulnerability, which was classified as critical, has been found in web-cyradm. Affected by this issue is some unknown functionality of the file auth.inc.php. The manipulation of the argument login/login_password/LANG leads to sql injection. The attack may be launched remotely. The name of the patch is 2bcbead3bdb5f11 CVE project by @Sn0wAlice Create: 2023-01-08 19:46:34 +0000 UTC Push: 2023-01-08 19:46:37 +0000 UTC |

Falkenburggg/Nft-Grabber-Stealer-Exploit-Cve-2022-Steal-BlockHain-Hack-Nft Create: 2023-01-08 18:45:12 +0000 UTC Push: 2023-01-08 18:45:13 +0000 UTC |

Falkenburggg/Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2022 Create: 2023-01-08 18:35:53 +0000 UTC Push: 2023-01-08 18:35:54 +0000 UTC |

Falkenburggg/Discord-Image-Token-Password-Grabber-Exploit-Cve-2022 Create: 2023-01-08 18:35:29 +0000 UTC Push: 2023-01-08 18:35:29 +0000 UTC |

Live-Hack-CVE/CVE-2022-2666 A vulnerability has been found in SourceCodester Loan Management System and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may CVE project by @Sn0wAlice Create: 2023-01-08 07:47:42 +0000 UTC Push: 2023-01-08 07:47:45 +0000 UTC |

Live-Hack-CVE/CVE-2022-1102 A vulnerability classified as problematic has been found in SourceCodester Royale Event Management System 1.0. Affected is an unknown function of the file /royal_event/companyprofile.php. The manipulation of the argument companyname/regno/companyaddress/companyemail leads to cross site scripting. It is possible to laun CVE project by @Sn0wAlice Create: 2023-01-08 07:47:38 +0000 UTC Push: 2023-01-08 07:47:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-1101 A vulnerability was found in SourceCodester Royale Event Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /royal_event/userregister.php. The manipulation leads to improper authentication. The attack may be initiated remotely. The identifier VDB-195785 was assi CVE project by @Sn0wAlice Create: 2023-01-08 07:47:34 +0000 UTC Push: 2023-01-08 07:47:37 +0000 UTC |

Live-Hack-CVE/CVE-2021-4301 A vulnerability was found in slackero phpwcms up to 1.9.26 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument $phpwcms['db_prepend'] leads to sql injection. The attack may be launched remotely. Upgrading to version 1.9.27 is able to address this issue. The CVE project by @Sn0wAlice Create: 2023-01-08 07:47:30 +0000 UTC Push: 2023-01-08 07:47:33 +0000 UTC |

Live-Hack-CVE/CVE-2014-125029 A vulnerability was found in ttskch PaginationServiceProvider up to 0.x. It has been declared as critical. This vulnerability affects unknown code of the file demo/index.php of the component demo. The manipulation of the argument sort/id leads to sql injection. Upgrading to version 1.0.0 is able to address this issue. CVE project by @Sn0wAlice Create: 2023-01-08 07:47:26 +0000 UTC Push: 2023-01-08 07:47:29 +0000 UTC |

Live-Hack-CVE/CVE-2015-10028 A vulnerability has been found in ss15-this-is-sparta and classified as problematic. This vulnerability affects unknown code of the file js/roomElement.js of the component Main Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The name of the patch is ba2f71ad3a46e5949ee0c510b5 CVE project by @Sn0wAlice Create: 2023-01-08 05:37:31 +0000 UTC Push: 2023-01-08 05:37:33 +0000 UTC |

Live-Hack-CVE/CVE-2014-125063 A vulnerability was found in ada-l0velace Bid and classified as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is abd71140b8219fa8741d0d8a57ab27d5bfd34222. It is recommended to apply a patch to fix this issue. The identifier VDB-217625 was assigned t CVE project by @Sn0wAlice Create: 2023-01-08 05:37:27 +0000 UTC Push: 2023-01-08 05:37:29 +0000 UTC |

Live-Hack-CVE/CVE-2020-36645 A vulnerability, which was classified as critical, was found in square squalor. This affects an unknown part. The manipulation leads to sql injection. Upgrading to version v0.0.0 is able to address this issue. The name of the patch is f6f0a47cc344711042eb0970cb423e6950ba3f93. It is recommended to upgrade the affected c CVE project by @Sn0wAlice Create: 2023-01-08 05:37:23 +0000 UTC Push: 2023-01-08 05:37:25 +0000 UTC |

Live-Hack-CVE/CVE-2014-125065 A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is CVE project by @Sn0wAlice Create: 2023-01-08 05:37:19 +0000 UTC Push: 2023-01-08 05:37:21 +0000 UTC |

Live-Hack-CVE/CVE-2021-4307 A vulnerability was found in Yomguithereal Baobab up to 2.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). The attack can be launched remotely. Upgrading CVE project by @Sn0wAlice Create: 2023-01-08 05:37:15 +0000 UTC Push: 2023-01-08 05:37:17 +0000 UTC |

Live-Hack-CVE/CVE-2020-36646 A vulnerability classified as problematic has been found in MediaArea ZenLib up to 0.4.38. This affects the function Ztring::Date_From_Seconds_1970_Local of the file Source/ZenLib/Ztring.cpp. The manipulation of the argument Value leads to unchecked return value to null pointer dereference. Upgrading to version 0.4.39 CVE project by @Sn0wAlice Create: 2023-01-08 05:37:11 +0000 UTC Push: 2023-01-08 05:37:14 +0000 UTC |

Live-Hack-CVE/CVE-2017-20164 A vulnerability was found in Symbiote Seed up to 6.0.2. It has been classified as critical. Affected is the function onBeforeSecurityLogin of the file code/extensions/SecurityLoginExtension.php of the component Login. The manipulation of the argument URL leads to open redirect. It is possible to launch the attack remot CVE project by @Sn0wAlice Create: 2023-01-08 05:37:07 +0000 UTC Push: 2023-01-08 05:37:10 +0000 UTC |

Live-Hack-CVE/CVE-2016-15014 A vulnerability has been found in CESNET theme-cesnet up to 1.x and classified as problematic. Affected by this vulnerability is an unknown functionality of the file cesnet/core/lostpassword/templates/resetpassword.php. The manipulation leads to insufficiently protected credentials. Attacking locally is a requirement. CVE project by @Sn0wAlice Create: 2023-01-08 05:37:04 +0000 UTC Push: 2023-01-08 05:37:06 +0000 UTC |

Live-Hack-CVE/CVE-2016-15013 A vulnerability was found in ForumHulp searchresults. It has been rated as critical. Affected by this issue is the function list_keywords of the file event/listener.php. The manipulation of the argument word leads to sql injection. The name of the patch is dd8a312bb285ad9735a8e1da58e9e955837b7322. It is recommended to CVE project by @Sn0wAlice Create: 2023-01-08 05:36:59 +0000 UTC Push: 2023-01-08 05:37:02 +0000 UTC |