Live-Hack-CVE/CVE-2022-34387 Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. A local authenticated malicious user could potentially exploit this vulnerability to elevate privileges and gain total control of the system. CVE project by @Sn0wAlice Create: 2023-02-11 21:12:45 +0000 UTC Push: 2023-02-11 21:12:47 +0000 UTC |

Live-Hack-CVE/CVE-2022-34386 Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. CVE project by @Sn0wAlice Create: 2023-02-11 21:12:42 +0000 UTC Push: 2023-02-11 21:12:44 +0000 UTC |

Live-Hack-CVE/CVE-2022-34385 SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. An authenticated non-admin user could potentially exploit the issue and obtain sensitive information. CVE project by @Sn0wAlice Create: 2023-02-11 21:12:38 +0000 UTC Push: 2023-02-11 21:12:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-34384 Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user may pot CVE project by @Sn0wAlice Create: 2023-02-11 21:12:35 +0000 UTC Push: 2023-02-11 21:12:37 +0000 UTC |

Live-Hack-CVE/CVE-2020-3299 Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulne CVE project by @Sn0wAlice Create: 2023-02-11 21:12:31 +0000 UTC Push: 2023-02-11 21:12:33 +0000 UTC |

Live-Hack-CVE/CVE-2021-1236 Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by s CVE project by @Sn0wAlice Create: 2023-02-11 21:12:27 +0000 UTC Push: 2023-02-11 21:12:29 +0000 UTC |

Live-Hack-CVE/CVE-2021-1224 Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contain CVE project by @Sn0wAlice Create: 2023-02-11 21:12:24 +0000 UTC Push: 2023-02-11 21:12:26 +0000 UTC |

Live-Hack-CVE/CVE-2021-1223 Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted CVE project by @Sn0wAlice Create: 2023-02-11 21:12:20 +0000 UTC Push: 2023-02-11 21:12:22 +0000 UTC |

Live-Hack-CVE/CVE-2021-34749 A vulnerability in Server Name Identification (SNI) request filtering of Cisco Web Security Appliance (WSA), Cisco Firepower Threat Defense (FTD), and the Snort detection engine could allow an unauthenticated, remote attacker to bypass filtering technology on an affected device and exfiltrate data from a compromised ho CVE project by @Sn0wAlice Create: 2023-02-11 21:12:15 +0000 UTC Push: 2023-02-11 21:12:18 +0000 UTC |

Live-Hack-CVE/CVE-2021-40114 Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort de CVE project by @Sn0wAlice Create: 2023-02-11 21:12:12 +0000 UTC Push: 2023-02-11 21:12:14 +0000 UTC |

Live-Hack-CVE/CVE-2023-0780 Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev. CVE project by @Sn0wAlice Create: 2023-02-11 21:12:09 +0000 UTC Push: 2023-02-11 21:12:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-4321 The PDF Generator for WordPress plugin before 1.1.2 includes a vendored dompdf example file which is susceptible to Reflected Cross-Site Scripting and could be used against high privilege users such as admin CVE project by @Sn0wAlice Create: 2023-02-11 21:12:03 +0000 UTC Push: 2023-02-11 21:12:05 +0000 UTC |

Athishpranav2003/CVE-2022-44118 PoC Exploit for RCE vulnerability in DedeCMS v6.1.9 Create: 2023-02-11 15:29:08 +0000 UTC Push: 2023-02-11 15:29:08 +0000 UTC |

Athishpranav2003/CVE-2022-44118-Exploit PoC Exploit for RCE vulnerability in DedeCMS v6.1.9 Create: 2023-02-11 15:29:08 +0000 UTC Push: 2023-02-11 15:30:08 +0000 UTC |

KodyMike/CVE-2019-89242- CVE-2019-89242 with imagefile that actually works, Create: 2023-02-11 06:36:01 +0000 UTC Push: 2023-02-11 06:36:01 +0000 UTC |

Live-Hack-CVE/CVE-2022-46650 Acemanager in ALEOS before version 4.16 allows a user with valid credentials to reconfigure the device to expose the ACEManager credentials on the pre-login status page. CVE project by @Sn0wAlice Create: 2023-02-11 03:49:38 +0000 UTC Push: 2023-02-11 03:49:40 +0000 UTC |

Live-Hack-CVE/CVE-2022-46649 Acemanager in ALEOS before version 4.16 allows a user with valid credentials to manipulate the IP logging operation to execute arbitrary shell commands on the device. CVE project by @Sn0wAlice Create: 2023-02-11 03:49:35 +0000 UTC Push: 2023-02-11 03:49:37 +0000 UTC |

Live-Hack-CVE/CVE-2022-26174 A remote code execution (RCE) vulnerability in Beekeeper Studio v3.2.0 allows attackers to execute arbitrary code via a crafted payload injected into the display fields. CVE project by @Sn0wAlice Create: 2023-02-11 03:49:31 +0000 UTC Push: 2023-02-11 03:49:33 +0000 UTC |

Live-Hack-CVE/CVE-2016-9675 openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code. CVE project by @Sn0wAlice Create: 2023-02-11 03:49:27 +0000 UTC Push: 2023-02-11 03:49:29 +0000 UTC |

Live-Hack-CVE/CVE-2019-6601 In BIG-IP 13.0.0, 12.1.0-12.1.3.7, 11.6.1-11.6.3.2, or 11.5.1-11.5.8, the Application Acceleration Manager (AAM) wamd process used in processing of images and PDFs fails to drop group permissions when executing helper scripts. CVE project by @Sn0wAlice Create: 2023-02-11 03:49:23 +0000 UTC Push: 2023-02-11 03:49:26 +0000 UTC |