Live-Hack-CVE/CVE-2022-47021 A null pointer dereference issue was discovered in functions op_get_data and op_open1 in opusfile.c in xiph opusfile 0.9 thru 0.12 allows attackers to cause denial of service or other unspecified impacts. CVE project by @Sn0wAlice Create: 2023-01-28 00:09:14 +0000 UTC Push: 2023-01-28 00:09:17 +0000 UTC |

Live-Hack-CVE/CVE-2022-47024 A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts. CVE project by @Sn0wAlice Create: 2023-01-28 00:09:10 +0000 UTC Push: 2023-01-28 00:09:13 +0000 UTC |

Live-Hack-CVE/CVE-2022-44718 An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 2 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted payload to successfully redirect to an unknown host. The attack vector is Network, and the Attack Complexity required is CVE project by @Sn0wAlice Create: 2023-01-28 00:09:06 +0000 UTC Push: 2023-01-28 00:09:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-44717 An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 1 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted payload to successfully redirect to an unknown host. The attack vector is Network, and the Attack Complexity required is CVE project by @Sn0wAlice Create: 2023-01-28 00:09:02 +0000 UTC Push: 2023-01-28 00:09:05 +0000 UTC |

Live-Hack-CVE/CVE-2022-44715 Improper File Permissions in NetScout nGeniusONE 6.3.2 build 904 allows authenticated remote users to gain permissions via a crafted payload. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:58 +0000 UTC Push: 2023-01-28 00:09:01 +0000 UTC |

Live-Hack-CVE/CVE-2022-44298 SiteServer CMS 7.1.3 is vulnerable to SQL Injection. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:54 +0000 UTC Push: 2023-01-28 00:08:57 +0000 UTC |

Live-Hack-CVE/CVE-2022-44029 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 6 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:51 +0000 UTC Push: 2023-01-28 00:08:53 +0000 UTC |

Live-Hack-CVE/CVE-2022-44028 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 5 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:46 +0000 UTC Push: 2023-01-28 00:08:49 +0000 UTC |

Live-Hack-CVE/CVE-2022-44027 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 4 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:42 +0000 UTC Push: 2023-01-28 00:08:45 +0000 UTC |

Live-Hack-CVE/CVE-2022-44026 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 3 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:39 +0000 UTC Push: 2023-01-28 00:08:41 +0000 UTC |

Live-Hack-CVE/CVE-2022-44025 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 2 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:35 +0000 UTC Push: 2023-01-28 00:08:37 +0000 UTC |

Live-Hack-CVE/CVE-2022-44024 An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting (XSS), issue 1 of 6. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:31 +0000 UTC Push: 2023-01-28 00:08:33 +0000 UTC |

Live-Hack-CVE/CVE-2023-23492 The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the 'ID' parameter of its 'lwp_forgot_password' action. CVE project by @Sn0wAlice Create: 2023-01-28 00:08:25 +0000 UTC Push: 2023-01-28 00:08:28 +0000 UTC |

ysanatomic/CVE-2022-32250-LPE Create: 2023-01-27 22:44:39 +0000 UTC Push: 2023-01-28 01:51:27 +0000 UTC |

Live-Hack-CVE/CVE-2023-0534 A vulnerability, which was classified as critical, was found in SourceCodester Online Tours & Travels Management System 1.0. This affects an unknown part of the file admin/expense_report.php. The manipulation of the argument to_date leads to sql injection. It is possible to initiate the attack remotely. The exploit has CVE project by @Sn0wAlice Create: 2023-01-27 21:57:01 +0000 UTC Push: 2023-01-27 21:57:04 +0000 UTC |

Live-Hack-CVE/CVE-2023-0533 A vulnerability, which was classified as critical, has been found in SourceCodester Online Tours & Travels Management System 1.0. Affected by this issue is some unknown functionality of the file admin/expense_report.php. The manipulation of the argument from_date leads to sql injection. The attack may be launched remot CVE project by @Sn0wAlice Create: 2023-01-27 21:56:58 +0000 UTC Push: 2023-01-27 21:57:00 +0000 UTC |

Live-Hack-CVE/CVE-2023-0532 A vulnerability classified as critical was found in SourceCodester Online Tours & Travels Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/disapprove_user.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit CVE project by @Sn0wAlice Create: 2023-01-27 21:56:54 +0000 UTC Push: 2023-01-27 21:56:56 +0000 UTC |

Live-Hack-CVE/CVE-2023-0531 A vulnerability classified as critical has been found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file admin/booking_report.php. The manipulation of the argument to_date leads to sql injection. It is possible to launch the attack remotely. The exploit has been CVE project by @Sn0wAlice Create: 2023-01-27 21:56:50 +0000 UTC Push: 2023-01-27 21:56:52 +0000 UTC |

Live-Hack-CVE/CVE-2023-0530 A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/approve_user.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been d CVE project by @Sn0wAlice Create: 2023-01-27 21:56:46 +0000 UTC Push: 2023-01-27 21:56:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-0529 A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file admin/add_payment.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been di CVE project by @Sn0wAlice Create: 2023-01-27 21:56:43 +0000 UTC Push: 2023-01-27 21:56:45 +0000 UTC |