brookeses69/CVE-2014-5460 CVE-2014-5460 Create: 2023-01-17 20:35:56 +0000 UTC Push: 2023-01-17 20:35:57 +0000 UTC |

Live-Hack-CVE/CVE-2021-26385 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice Create: 2023-01-17 19:32:17 +0000 UTC Push: 2023-01-17 19:32:19 +0000 UTC |

Live-Hack-CVE/CVE-2021-26319 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice Create: 2023-01-17 19:32:13 +0000 UTC Push: 2023-01-17 19:32:15 +0000 UTC |

Live-Hack-CVE/CVE-2021-26358 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice Create: 2023-01-17 19:32:08 +0000 UTC Push: 2023-01-17 19:32:11 +0000 UTC |

Live-Hack-CVE/CVE-2021-26357 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice Create: 2023-01-17 19:32:04 +0000 UTC Push: 2023-01-17 19:32:07 +0000 UTC |

Live-Hack-CVE/CVE-2023-23589 The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:59 +0000 UTC Push: 2023-01-17 19:32:02 +0000 UTC |

Live-Hack-CVE/CVE-2023-0332 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file admin/manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to CVE project by @Sn0wAlice Create: 2023-01-17 19:31:55 +0000 UTC Push: 2023-01-17 19:31:58 +0000 UTC |

Live-Hack-CVE/CVE-2022-46891 An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through r40p0. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:50 +0000 UTC Push: 2023-01-17 19:31:54 +0000 UTC |

Live-Hack-CVE/CVE-2010-10008 ** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in simplesamlphp simplesamlphp-module-openidprovider up to 0.8.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file templates/trust.tpl.php. The manipulation of the argumen CVE project by @Sn0wAlice Create: 2023-01-17 19:31:45 +0000 UTC Push: 2023-01-17 19:31:48 +0000 UTC |

Live-Hack-CVE/CVE-2023-22366 CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having a user to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:40 +0000 UTC Push: 2023-01-17 19:31:43 +0000 UTC |

Live-Hack-CVE/CVE-2023-22357 Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of CVE project by @Sn0wAlice Create: 2023-01-17 19:31:36 +0000 UTC Push: 2023-01-17 19:31:39 +0000 UTC |

Live-Hack-CVE/CVE-2023-22316 Hidden functionality vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker to access the product via undocumented Telnet or SSH services. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:32 +0000 UTC Push: 2023-01-17 19:31:35 +0000 UTC |

Live-Hack-CVE/CVE-2023-22304 OS command injection vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker who can access product settings to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:27 +0000 UTC Push: 2023-01-17 19:31:30 +0000 UTC |

Live-Hack-CVE/CVE-2023-22303 TP-Link SG105PE firmware prior to 'TL-SG105PE(UN) 1.0_1.0.0 Build 20221208' contains an authentication bypass vulnerability. Under the certain conditions, an attacker may impersonate an administrator of the product. As a result, information may be obtained and/or the product's settings may be altered with the privilege CVE project by @Sn0wAlice Create: 2023-01-17 19:31:22 +0000 UTC Push: 2023-01-17 19:31:25 +0000 UTC |

Live-Hack-CVE/CVE-2023-22280 MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:17 +0000 UTC Push: 2023-01-17 19:31:20 +0000 UTC |

Live-Hack-CVE/CVE-2023-22298 Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. CVE project by @Sn0wAlice Create: 2023-01-17 19:31:13 +0000 UTC Push: 2023-01-17 19:31:16 +0000 UTC |

Live-Hack-CVE/CVE-2023-22296 Reflected cross-site scripting vulnerability in MAHO-PBX NetDevancer series MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to inject an arb CVE project by @Sn0wAlice Create: 2023-01-17 19:31:08 +0000 UTC Push: 2023-01-17 19:31:11 +0000 UTC |

Live-Hack-CVE/CVE-2023-22286 Cross-site request forgery (CSRF) vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user authentication and con CVE project by @Sn0wAlice Create: 2023-01-17 19:31:03 +0000 UTC Push: 2023-01-17 19:31:06 +0000 UTC |

Live-Hack-CVE/CVE-2022-47318 ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-46648. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:59 +0000 UTC Push: 2023-01-17 19:31:02 +0000 UTC |

Live-Hack-CVE/CVE-2023-22279 MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command. CVE project by @Sn0wAlice Create: 2023-01-17 19:30:55 +0000 UTC Push: 2023-01-17 19:30:58 +0000 UTC |