Live-Hack-CVE/CVE-2008-2956 ** DISPUTED ** Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption) via malformed XML documents. NOTE: this issue has been disputed by the upstream vendor, who states: "I was never able to identify a scenario under which a problem occurred a CVE project by @Sn0wAlice Create: 2023-02-13 06:00:20 +0000 UTC Push: 2023-02-13 06:00:22 +0000 UTC |

Live-Hack-CVE/CVE-2012-2657 ** DISPUTED ** Buffer overflow in the SQLDriverConnect function in unixODBC 2.0.10, 2.3.1, and earlier allows local users to cause a denial of service (crash) via a long string in the FILEDSN option. NOTE: this issue might not be a vulnerability, since the ability to set this option typically implies that the attacker CVE project by @Sn0wAlice Create: 2023-02-13 06:00:17 +0000 UTC Push: 2023-02-13 06:00:19 +0000 UTC |

Live-Hack-CVE/CVE-2012-2128 ** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in doku.php in DokuWiki 2012-01-25 Angua allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users. NOTE: this issue has been disputed by the vendor, who states that it is resultant from CVE-2012-2129: "the CVE project by @Sn0wAlice Create: 2023-02-13 06:00:14 +0000 UTC Push: 2023-02-13 06:00:16 +0000 UTC |

Live-Hack-CVE/CVE-2009-3559 ** DISPUTED ** main/streams/plain_wrapper.c in PHP 5.3.x before 5.3.1 does not recognize the safe_mode_include_dir directive, which allows context-dependent attackers to have an unknown impact by triggering the failure of PHP scripts that perform include or require operations, as demonstrated by a script that attempts CVE project by @Sn0wAlice Create: 2023-02-13 06:00:10 +0000 UTC Push: 2023-02-13 06:00:12 +0000 UTC |

Live-Hack-CVE/CVE-2010-2532 ** DISPUTED ** lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action. NOTE: there is no general a CVE project by @Sn0wAlice Create: 2023-02-13 06:00:07 +0000 UTC Push: 2023-02-13 06:00:09 +0000 UTC |

Live-Hack-CVE/CVE-2011-3640 ** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as used in Google Chrome before 17 on Windows and Mac OS X, might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directory. NOTE: the vendor's response was "Strange behavior, but we're CVE project by @Sn0wAlice Create: 2023-02-13 06:00:03 +0000 UTC Push: 2023-02-13 06:00:06 +0000 UTC |

Live-Hack-CVE/CVE-2012-5613 ** DISPUTED ** MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and possibly other versions, when configured to assign the FILE privilege to users who should not have administrative privileges, allows remote authenticated users to gain privileges by leveraging the FILE privilege to create files as the MySQ CVE project by @Sn0wAlice Create: 2023-02-13 05:59:59 +0000 UTC Push: 2023-02-13 06:00:02 +0000 UTC |

Live-Hack-CVE/CVE-2019-25103 A vulnerability has been found in simple-markdown 0.5.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file simple-markdown.js. The manipulation leads to inefficient regular expression complexity. The attack can be launched remotely. Upgrading to version 0.5.2 is able t CVE project by @Sn0wAlice Create: 2023-02-13 01:36:24 +0000 UTC Push: 2023-02-13 01:36:26 +0000 UTC |

ireshchaminda1/Android-Privilege-Escalation-Remote-Access-Vulnerability-CVE-2015-1805-May-2022- AndroRAT is a capability that can be used to inject a root exploit as a silent installation to perform a malicious task on the device. This AndroRAT is designed to exploit CVE-2015-1805, a vulnerability that was discovered and made public in 2016. Create: 2023-02-12 23:59:12 +0000 UTC Push: 2023-02-12 23:59:13 +0000 UTC |

Live-Hack-CVE/CVE-2023-0794 Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:23 +0000 UTC Push: 2023-02-12 23:26:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-0793 Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:19 +0000 UTC Push: 2023-02-12 23:26:22 +0000 UTC |

Live-Hack-CVE/CVE-2023-0792 Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:16 +0000 UTC Push: 2023-02-12 23:26:17 +0000 UTC |

Live-Hack-CVE/CVE-2023-0791 Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:12 +0000 UTC Push: 2023-02-12 23:26:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-0790 Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:09 +0000 UTC Push: 2023-02-12 23:26:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-0789 Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:06 +0000 UTC Push: 2023-02-12 23:26:08 +0000 UTC |

Live-Hack-CVE/CVE-2023-0788 Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:26:02 +0000 UTC Push: 2023-02-12 23:26:04 +0000 UTC |

Live-Hack-CVE/CVE-2023-0787 Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:25:59 +0000 UTC Push: 2023-02-12 23:26:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-0786 Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.11. CVE project by @Sn0wAlice Create: 2023-02-12 23:25:56 +0000 UTC Push: 2023-02-12 23:25:58 +0000 UTC |

Live-Hack-CVE/CVE-2019-25102 A vulnerability, which was classified as problematic, was found in simple-markdown 0.6.0. Affected is an unknown function of the file simple-markdown.js. The manipulation with the input <<<<<<<<<<:/:/:/:/:/:/:/:/:/:/ leads to inefficient regular expression complexity. It is possible to launch the attack remotely. The e CVE project by @Sn0wAlice Create: 2023-02-12 23:25:52 +0000 UTC Push: 2023-02-12 23:25:54 +0000 UTC |

Live-Hack-CVE/CVE-2015-10078 A vulnerability, which was classified as problematic, has been found in atwellpub Resend Welcome Email Plugin 1.0.1. This issue affects the function send_welcome_email_url of the file resend-welcome-email.php. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0 CVE project by @Sn0wAlice Create: 2023-02-12 23:25:49 +0000 UTC Push: 2023-02-12 23:25:51 +0000 UTC |