Live-Hack-CVE/CVE-2022-46947 Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_category. CVE project by @Sn0wAlice Create: 2023-01-14 05:37:05 +0000 UTC Push: 2023-01-14 05:37:08 +0000 UTC |

Live-Hack-CVE/CVE-2022-46946 Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_brand. CVE project by @Sn0wAlice Create: 2023-01-14 05:37:01 +0000 UTC Push: 2023-01-14 05:37:04 +0000 UTC |

Live-Hack-CVE/CVE-2015-10041 ** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Dovgalyuk AIBattle. Affected is the function sendComments of the file site/procedures.php. The manipulation of the argument text leads to sql injection. The name of the patch is e3aa4d0900167641d41cb CVE project by @Sn0wAlice Create: 2023-01-14 05:36:57 +0000 UTC Push: 2023-01-14 05:36:59 +0000 UTC |

Live-Hack-CVE/CVE-2015-10040 A vulnerability was found in gitlearn. It has been declared as problematic. This vulnerability affects the function getGrade/getOutOf of the file scripts/config.sh of the component Escape Sequence Handler. The manipulation leads to injection. The attack can be initiated remotely. The name of the patch is 3faa5deaa50901 CVE project by @Sn0wAlice Create: 2023-01-14 05:36:53 +0000 UTC Push: 2023-01-14 05:36:55 +0000 UTC |

Live-Hack-CVE/CVE-2022-38491 An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against brute-force attacks. CVE project by @Sn0wAlice Create: 2023-01-14 05:36:48 +0000 UTC Push: 2023-01-14 05:36:51 +0000 UTC |

Live-Hack-CVE/CVE-2022-38492 An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03 before 2022.1.110.1.02. One parameter allows SQL injection. CVE project by @Sn0wAlice Create: 2023-01-14 05:36:42 +0000 UTC Push: 2023-01-14 05:36:45 +0000 UTC |

Live-Hack-CVE/CVE-2022-38489 An issue was discovered in EasyVista 2020.2.125.3 before 2022.1.110.1.02. It is prone to stored Cross-site Scripting (XSS). CVE project by @Sn0wAlice Create: 2023-01-14 05:36:38 +0000 UTC Push: 2023-01-14 05:36:41 +0000 UTC |

halsey51013/UpdateWindowsRE-CVE-2022-41099 Script to update Windows Recovery Environment to patch against CVE-2022-41099 Create: 2023-01-14 05:27:03 +0000 UTC Push: 2023-01-14 05:27:04 +0000 UTC |

Live-Hack-CVE/CVE-2021-4312 ** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in Th3-822 Rapidleech. This affects the function zip_go of the file classes/options/zip.php. The manipulation of the argument archive leads to cross site scripting. It is possible to initiate the att CVE project by @Sn0wAlice Create: 2023-01-14 03:26:20 +0000 UTC Push: 2023-01-14 03:26:23 +0000 UTC |

Live-Hack-CVE/CVE-2009-10002 A vulnerability, which was classified as problematic, has been found in dpup fittr-flickr. This issue affects some unknown processing of the file fittr-flickr/features/easy-exif.js of the component EXIF Preview Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of th CVE project by @Sn0wAlice Create: 2023-01-14 03:26:16 +0000 UTC Push: 2023-01-14 03:26:19 +0000 UTC |

Live-Hack-CVE/CVE-2009-10001 A vulnerability classified as problematic was found in jianlinwei cool-php-captcha up to 0.2. This vulnerability affects unknown code of the file example-form.php. The manipulation of the argument captcha with the input %3Cscript%3Ealert(1)%3C/script%3E leads to cross site scripting. The attack can be initiated remotel CVE project by @Sn0wAlice Create: 2023-01-14 03:26:12 +0000 UTC Push: 2023-01-14 03:26:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-36930 Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain to escalate their privileges to the SYSTEM user. CVE project by @Sn0wAlice Create: 2023-01-14 03:26:03 +0000 UTC Push: 2023-01-14 03:26:06 +0000 UTC |

Live-Hack-CVE/CVE-2021-39260 A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:58 +0000 UTC Push: 2023-01-14 03:26:01 +0000 UTC |

Live-Hack-CVE/CVE-2021-39261 A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:54 +0000 UTC Push: 2023-01-14 03:25:56 +0000 UTC |

Live-Hack-CVE/CVE-2021-39259 A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:49 +0000 UTC Push: 2023-01-14 03:25:52 +0000 UTC |

Live-Hack-CVE/CVE-2021-39263 A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value, in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:45 +0000 UTC Push: 2023-01-14 03:25:48 +0000 UTC |

Live-Hack-CVE/CVE-2021-39262 A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22. CVE project by @Sn0wAlice Create: 2023-01-14 03:25:40 +0000 UTC Push: 2023-01-14 03:25:44 +0000 UTC |

Live-Hack-CVE/CVE-2023-22494 a12nserver is an open source lightweight OAuth2 server. Users of a12nserver that use MySQL might be vulnerable to SQL injection bugs. If you use a12nserver and MySQL, update as soon as possible. This SQL injection bug might let an attacker obtain OAuth2 Access Tokens for users unrelated to those that permitted OAuth2 c CVE project by @Sn0wAlice Create: 2023-01-14 01:15:44 +0000 UTC Push: 2023-01-14 01:15:45 +0000 UTC |

Live-Hack-CVE/CVE-2023-0289 Cross-site Scripting (XSS) - Stored in GitHub repository craigk5n/webcalendar prior to master. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:39 +0000 UTC Push: 2023-01-14 01:15:42 +0000 UTC |

Live-Hack-CVE/CVE-2023-0288 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. CVE project by @Sn0wAlice Create: 2023-01-14 01:15:35 +0000 UTC Push: 2023-01-14 01:15:38 +0000 UTC |