unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2021-26319
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-17 19:32:13 +0000 UTC Push: 2023-01-17 19:32:15 +0000 UTC |
Live-Hack-CVE/CVE-2021-26358
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-17 19:32:08 +0000 UTC Push: 2023-01-17 19:32:11 +0000 UTC |
Live-Hack-CVE/CVE-2021-26357
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. CVE project by @Sn0wAlice
Create: 2023-01-17 19:32:04 +0000 UTC Push: 2023-01-17 19:32:07 +0000 UTC |
Live-Hack-CVE/CVE-2023-23589
The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:59 +0000 UTC Push: 2023-01-17 19:32:02 +0000 UTC |
Live-Hack-CVE/CVE-2023-0332
A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file admin/manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:55 +0000 UTC Push: 2023-01-17 19:31:58 +0000 UTC |
Live-Hack-CVE/CVE-2022-46891
An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through r40p0. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:50 +0000 UTC Push: 2023-01-17 19:31:54 +0000 UTC |
Live-Hack-CVE/CVE-2010-10008
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in simplesamlphp simplesamlphp-module-openidprovider up to 0.8.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file templates/trust.tpl.php. The manipulation of the argumen CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:45 +0000 UTC Push: 2023-01-17 19:31:48 +0000 UTC |
Live-Hack-CVE/CVE-2023-22366
CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having a user to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:40 +0000 UTC Push: 2023-01-17 19:31:43 +0000 UTC |
Live-Hack-CVE/CVE-2023-22357
Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:36 +0000 UTC Push: 2023-01-17 19:31:39 +0000 UTC |
Live-Hack-CVE/CVE-2023-22316
Hidden functionality vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker to access the product via undocumented Telnet or SSH services. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:32 +0000 UTC Push: 2023-01-17 19:31:35 +0000 UTC |
Live-Hack-CVE/CVE-2023-22304
OS command injection vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker who can access product settings to execute an arbitrary OS command. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:27 +0000 UTC Push: 2023-01-17 19:31:30 +0000 UTC |
Live-Hack-CVE/CVE-2023-22303
TP-Link SG105PE firmware prior to 'TL-SG105PE(UN) 1.0_1.0.0 Build 20221208' contains an authentication bypass vulnerability. Under the certain conditions, an attacker may impersonate an administrator of the product. As a result, information may be obtained and/or the product's settings may be altered with the privilege CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:22 +0000 UTC Push: 2023-01-17 19:31:25 +0000 UTC |
Live-Hack-CVE/CVE-2023-22280
MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:17 +0000 UTC Push: 2023-01-17 19:31:20 +0000 UTC |
Live-Hack-CVE/CVE-2023-22298
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:13 +0000 UTC Push: 2023-01-17 19:31:16 +0000 UTC |
Live-Hack-CVE/CVE-2023-22296
Reflected cross-site scripting vulnerability in MAHO-PBX NetDevancer series MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to inject an arb CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:08 +0000 UTC Push: 2023-01-17 19:31:11 +0000 UTC |
Live-Hack-CVE/CVE-2023-22286
Cross-site request forgery (CSRF) vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user authentication and con CVE project by @Sn0wAlice
Create: 2023-01-17 19:31:03 +0000 UTC Push: 2023-01-17 19:31:06 +0000 UTC |
Live-Hack-CVE/CVE-2022-47318
ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-46648. CVE project by @Sn0wAlice
Create: 2023-01-17 19:30:59 +0000 UTC Push: 2023-01-17 19:31:02 +0000 UTC |
Live-Hack-CVE/CVE-2023-22279
MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command. CVE project by @Sn0wAlice
Create: 2023-01-17 19:30:55 +0000 UTC Push: 2023-01-17 19:30:58 +0000 UTC |
Live-Hack-CVE/CVE-2022-46648
ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-47318. CVE project by @Sn0wAlice
Create: 2023-01-17 19:30:51 +0000 UTC Push: 2023-01-17 19:30:54 +0000 UTC |
Live-Hack-CVE/CVE-2023-22278
m-FILTER prior to Ver.5.70R01 (Ver.5 Series) and m-FILTER prior to Ver.4.87R04 (Ver.4 Series) allows a remote unauthenticated attacker to bypass authentication and send users' unintended email when email is being sent under the certain conditions. The attacks exploiting this vulnerability have been observed. CVE project by @Sn0wAlice
Create: 2023-01-17 19:30:47 +0000 UTC Push: 2023-01-17 19:30:50 +0000 UTC |
Previous
498
499
500
501
502
503
504
505
Next