Live-Hack-CVE/CVE-2015-10019 A vulnerability, which was classified as problematic, has been found in foxoverflow MySimplifiedSQL. This issue affects some unknown processing of the file MySimplifiedSQL_Examples.php. The manipulation of the argument FirstName/LastName leads to cross site scripting. The attack may be initiated remotely. The name of t CVE project by @Sn0wAlice Create: 2023-01-07 19:49:40 +0000 UTC Push: 2023-01-07 19:49:43 +0000 UTC |

Live-Hack-CVE/CVE-2014-125055 A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. Upgrading to version 1.0.0 is able to address this issue. The name of the patch is 477c10cf3b144ddf96526aa09f CVE project by @Sn0wAlice Create: 2023-01-07 19:49:36 +0000 UTC Push: 2023-01-07 19:49:39 +0000 UTC |

Live-Hack-CVE/CVE-2014-125054 A vulnerability classified as critical was found in koroket RedditOnRails. This vulnerability affects unknown code of the component Vote Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The name of the patch is 7f3c7407d95d532fcc342b00d68d0ea09ca71030. It is recommended CVE project by @Sn0wAlice Create: 2023-01-07 19:49:32 +0000 UTC Push: 2023-01-07 19:49:35 +0000 UTC |

Live-Hack-CVE/CVE-2020-36644 A vulnerability has been found in jamesmartin Inline SVG up to 1.7.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file lib/inline_svg/action_view/helpers.rb of the component URL Parameter Handler. The manipulation of the argument filename leads to cross site scripting CVE project by @Sn0wAlice Create: 2023-01-07 19:49:28 +0000 UTC Push: 2023-01-07 19:49:31 +0000 UTC |

Live-Hack-CVE/CVE-2014-125057 A vulnerability was found in mrobit robitailletheknot. It has been classified as problematic. This affects an unknown part of the file app/filters.php of the component CSRF Token Handler. The manipulation of the argument _token leads to incorrect comparison. It is possible to initiate the attack remotely. The name of t CVE project by @Sn0wAlice Create: 2023-01-07 19:49:24 +0000 UTC Push: 2023-01-07 19:49:27 +0000 UTC |

Live-Hack-CVE/CVE-2014-125056 A vulnerability was found in Pylons horus and classified as problematic. Affected by this issue is some unknown functionality of the file horus/flows/local/services.py. The manipulation leads to observable timing discrepancy. The name of the patch is fd56ccb62ce3cbdab0484fe4f9c25c4eda6c57ec. It is recommended to apply CVE project by @Sn0wAlice Create: 2023-01-07 19:49:21 +0000 UTC Push: 2023-01-07 19:49:23 +0000 UTC |

demetrius-ford/CVE-2018-7600 Create: 2023-01-07 19:08:28 +0000 UTC Push: 2023-01-07 19:08:28 +0000 UTC |

Live-Hack-CVE/CVE-2023-0112 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:23:07 +0000 UTC Push: 2023-01-07 14:23:10 +0000 UTC |

Live-Hack-CVE/CVE-2023-0111 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:23:03 +0000 UTC Push: 2023-01-07 14:23:04 +0000 UTC |

Live-Hack-CVE/CVE-2023-0110 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:58 +0000 UTC Push: 2023-01-07 14:23:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-0108 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:54 +0000 UTC Push: 2023-01-07 14:22:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-0107 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:50 +0000 UTC Push: 2023-01-07 14:22:53 +0000 UTC |

Live-Hack-CVE/CVE-2023-0106 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:46 +0000 UTC Push: 2023-01-07 14:22:49 +0000 UTC |

SpiralBL0CK/Chrome-V8-RCE-CVE-2021-38003 CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224 Create: 2023-01-07 14:09:14 +0000 UTC Push: 2023-01-07 14:09:38 +0000 UTC |

nanabingies/CVE-2018-19321 CVE-2018-19321 Create: 2023-01-07 10:45:30 +0000 UTC Push: 2023-01-07 10:45:51 +0000 UTC |

nanabingies/CVE-2021-21551 Dell Driver EoP (CVE-2021-21551) Create: 2023-01-07 10:42:59 +0000 UTC Push: 2023-01-07 10:42:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-45913 An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur via one of attributes in webmail URLs to execute arbitrary JavaScript code, leading to information disclosure. CVE project by @Sn0wAlice Create: 2023-01-07 09:51:48 +0000 UTC Push: 2023-01-07 09:51:51 +0000 UTC |

Live-Hack-CVE/CVE-2022-45911 An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur on the Classic UI login page by injecting arbitrary JavaScript code in the username field. This occurs before the user logs into the system, which means that even if the attacker executes arbitrary JavaScript, they will not get any sensitive infor CVE project by @Sn0wAlice Create: 2023-01-07 09:51:44 +0000 UTC Push: 2023-01-07 09:51:47 +0000 UTC |

Live-Hack-CVE/CVE-2014-125053 A vulnerability was found in Piwigo-Guest-Book up to 1.3.0. It has been declared as critical. This vulnerability affects unknown code of the file include/guestbook.inc.php of the component Navigation Bar. The manipulation of the argument start leads to sql injection. Upgrading to version 1.3.1 is able to address this i CVE project by @Sn0wAlice Create: 2023-01-07 09:51:36 +0000 UTC Push: 2023-01-07 09:51:39 +0000 UTC |

Live-Hack-CVE/CVE-2022-34683 NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a null-pointer dereference occurs, which may lead to denial of service. CVE project by @Sn0wAlice Create: 2023-01-07 07:41:32 +0000 UTC Push: 2023-01-07 07:41:35 +0000 UTC |