Live-Hack-CVE/CVE-2023-22339 Improper access control vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to bypass access restriction and obtain the server certificate including the private key of the product. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:18 +0000 UTC Push: 2023-01-20 14:56:21 +0000 UTC |

Live-Hack-CVE/CVE-2023-22334 Use of password hash instead of password for authentication vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote authenticated attacker to obtain user credentials information via a man-in-the-middle attack. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:14 +0000 UTC Push: 2023-01-20 14:56:17 +0000 UTC |

Live-Hack-CVE/CVE-2023-22331 Use of default credentials vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to alter user credentials information. CVE project by @Sn0wAlice Create: 2023-01-20 14:56:11 +0000 UTC Push: 2023-01-20 14:56:13 +0000 UTC |

nidhi7598/linux-3.0.35_CVE-2022-45934 Create: 2023-01-20 12:46:42 +0000 UTC Push: 2023-01-20 12:46:42 +0000 UTC |

Live-Hack-CVE/CVE-2023-22745 tpm2-tss is an open source software implementation of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2 Software Stack (TSS2). In affected versions `Tss2_RC_SetHandler` and `Tss2_RC_Decode` both index into `layer_handler` with an 8 bit layer number, but the array only has `TPM2_ERROR_TSS2_RC_LAYER_COUNT CVE project by @Sn0wAlice Create: 2023-01-20 09:20:24 +0000 UTC Push: 2023-01-20 09:20:26 +0000 UTC |

Live-Hack-CVE/CVE-2022-46476 D-Link DIR-859 A1 1.05 was discovered to contain a command injection vulnerability via the service= variable in the soapcgi_main function. CVE project by @Sn0wAlice Create: 2023-01-20 09:20:20 +0000 UTC Push: 2023-01-20 09:20:22 +0000 UTC |

Live-Hack-CVE/CVE-2022-31901 Buffer overflow in function Notepad_plus::addHotSpot in Notepad++ v8.4.3 and earlier allows attackers to crash the application via two crafted files. CVE project by @Sn0wAlice Create: 2023-01-20 09:20:17 +0000 UTC Push: 2023-01-20 09:20:19 +0000 UTC |

Live-Hack-CVE/CVE-2017-16259 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 09:20:13 +0000 UTC Push: 2023-01-20 09:20:15 +0000 UTC |

Live-Hack-CVE/CVE-2017-16314 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:31 +0000 UTC Push: 2023-01-20 08:15:34 +0000 UTC |

Live-Hack-CVE/CVE-2017-16313 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:28 +0000 UTC Push: 2023-01-20 08:15:30 +0000 UTC |

Live-Hack-CVE/CVE-2017-16316 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:24 +0000 UTC Push: 2023-01-20 08:15:26 +0000 UTC |

Live-Hack-CVE/CVE-2017-16315 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:20 +0000 UTC Push: 2023-01-20 08:15:22 +0000 UTC |

Live-Hack-CVE/CVE-2017-16317 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:16 +0000 UTC Push: 2023-01-20 08:15:19 +0000 UTC |

Live-Hack-CVE/CVE-2017-16319 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:12 +0000 UTC Push: 2023-01-20 08:15:15 +0000 UTC |

Live-Hack-CVE/CVE-2017-16318 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:09 +0000 UTC Push: 2023-01-20 08:15:11 +0000 UTC |

Live-Hack-CVE/CVE-2017-16320 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-20 08:15:05 +0000 UTC Push: 2023-01-20 08:15:07 +0000 UTC |

Live-Hack-CVE/CVE-2023-0126 Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory. CVE project by @Sn0wAlice Create: 2023-01-20 08:14:51 +0000 UTC Push: 2023-01-20 08:14:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-47766 PopojiCMS v2.0.1 backend plugin function has a file upload vulnerability. CVE project by @Sn0wAlice Create: 2023-01-20 08:14:48 +0000 UTC Push: 2023-01-20 08:14:50 +0000 UTC |

Live-Hack-CVE/CVE-2022-46890 Weak access control in NexusPHP before 1.7.33 allows a remote authenticated user to edit any post in the forum (this is caused by a lack of checks performed by the /forums.php?action=post page). CVE project by @Sn0wAlice Create: 2023-01-20 08:14:44 +0000 UTC Push: 2023-01-20 08:14:46 +0000 UTC |

Live-Hack-CVE/CVE-2022-46889 A persistent cross-site scripting (XSS) vulnerability in NexusPHP before 1.7.33 allows remote authenticated attackers to permanently inject arbitrary web script or HTML via the title parameter used in /subtitles.php. CVE project by @Sn0wAlice Create: 2023-01-20 08:14:40 +0000 UTC Push: 2023-01-20 08:14:42 +0000 UTC |