Live-Hack-CVE/CVE-2022-40518 Information disclosure due to buffer overread in Core CVE project by @Sn0wAlice Create: 2023-01-13 05:21:11 +0000 UTC Push: 2023-01-13 05:21:14 +0000 UTC |

Live-Hack-CVE/CVE-2022-40517 Memory corruption in core due to stack-based buffer overflow CVE project by @Sn0wAlice Create: 2023-01-13 05:21:07 +0000 UTC Push: 2023-01-13 05:21:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-40516 Memory corruption in Core due to stack-based buffer overflow. CVE project by @Sn0wAlice Create: 2023-01-13 05:21:02 +0000 UTC Push: 2023-01-13 05:21:05 +0000 UTC |

Live-Hack-CVE/CVE-2022-40519 Information disclosure due to buffer overread in Core CVE project by @Sn0wAlice Create: 2023-01-13 05:20:57 +0000 UTC Push: 2023-01-13 05:21:00 +0000 UTC |

Live-Hack-CVE/CVE-2022-33300 Memory corruption in Automotive Android OS due to improper input validation. CVE project by @Sn0wAlice Create: 2023-01-13 05:20:51 +0000 UTC Push: 2023-01-13 05:20:54 +0000 UTC |

Live-Hack-CVE/CVE-2022-35281 IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, 7.6.1.3 and the IBM Maximo Manage 8.3, 8.4 application in IBM Maximo Application Suite are vulnerable to CSV injection. IBM X-Force ID: 2306335. CVE project by @Sn0wAlice Create: 2023-01-13 05:20:43 +0000 UTC Push: 2023-01-13 05:20:49 +0000 UTC |

Live-Hack-CVE/CVE-2022-37933 A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be exploited to allow local unauthorized data injection. HPE has made the following software updates to resolve the vulnerability in HPE Superdome Flex firmware 3.60.50 and below and Supe CVE project by @Sn0wAlice Create: 2023-01-13 04:15:53 +0000 UTC Push: 2023-01-13 04:15:56 +0000 UTC |

Live-Hack-CVE/CVE-2022-46761 The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons. CVE project by @Sn0wAlice Create: 2023-01-13 04:15:48 +0000 UTC Push: 2023-01-13 04:15:52 +0000 UTC |

Live-Hack-CVE/CVE-2022-46762 The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. CVE project by @Sn0wAlice Create: 2023-01-13 04:15:45 +0000 UTC Push: 2023-01-13 04:15:47 +0000 UTC |

Live-Hack-CVE/CVE-2023-0247 Uncontrolled Search Path Element in GitHub repository bits-and-blooms/bloom prior to 3.3.1. CVE project by @Sn0wAlice Create: 2023-01-13 04:15:40 +0000 UTC Push: 2023-01-13 04:15:43 +0000 UTC |

Live-Hack-CVE/CVE-2022-43591 A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an out-of-bounds memory access, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability. CVE project by @Sn0wAlice Create: 2023-01-13 04:15:36 +0000 UTC Push: 2023-01-13 04:15:39 +0000 UTC |

Live-Hack-CVE/CVE-2022-40983 An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an integer overflow during memory allocation, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerab CVE project by @Sn0wAlice Create: 2023-01-13 04:15:31 +0000 UTC Push: 2023-01-13 04:15:34 +0000 UTC |

Live-Hack-CVE/CVE-2023-0254 The Simple Membership WP user Import plugin for WordPress is vulnerable to SQL Injection via the ‘orderby’ parameter in versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter. This makes it possible for authenticated attackers with administrative privileges to append additional S CVE project by @Sn0wAlice Create: 2023-01-13 04:15:14 +0000 UTC Push: 2023-01-13 04:15:18 +0000 UTC |

Live-Hack-CVE/CVE-2022-39185 EXFO - BV-10 Performance Endpoint Unit Undocumented privileged user. Unit has an undocumented hard-coded privileged user. CVE project by @Sn0wAlice Create: 2023-01-13 02:01:56 +0000 UTC Push: 2023-01-13 02:01:58 +0000 UTC |

Live-Hack-CVE/CVE-2022-39184 EXFO - BV-10 Performance Endpoint Unit authentication bypass User can manually manipulate access enabling authentication bypass. CVE project by @Sn0wAlice Create: 2023-01-13 02:01:52 +0000 UTC Push: 2023-01-13 02:01:54 +0000 UTC |

Live-Hack-CVE/CVE-2022-39183 Moodle Plugin - SAML Auth may allow Open Redirect through unspecified vectors. CVE project by @Sn0wAlice Create: 2023-01-13 02:01:47 +0000 UTC Push: 2023-01-13 02:01:50 +0000 UTC |

Live-Hack-CVE/CVE-2022-39182 H C Mingham-Smith Ltd - Tardis 2000 Privilege escalation.Version 1.6 is vulnerable to privilege escalation which may allow a malicious actor to gain system privileges. CVE project by @Sn0wAlice Create: 2023-01-13 02:01:42 +0000 UTC Push: 2023-01-13 02:01:46 +0000 UTC |

Live-Hack-CVE/CVE-2013-10011 A vulnerability was found in aeharding classroom-engagement-system and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to sql injection. The attack may be launched remotely. The name of the patch is 096de5815c7b414e7339f3439522a446098fb73a. It is recommended to apply CVE project by @Sn0wAlice Create: 2023-01-13 02:01:38 +0000 UTC Push: 2023-01-13 02:01:41 +0000 UTC |

Live-Hack-CVE/CVE-2012-10005 A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.php of the component Textarea Handler. The manipulation of the argument value leads to cross site scripting. The attack ca CVE project by @Sn0wAlice Create: 2023-01-13 02:01:34 +0000 UTC Push: 2023-01-13 02:01:36 +0000 UTC |

Live-Hack-CVE/CVE-2022-47974 The Bluetooth AVRCP module has a vulnerability that can lead to DoS attacks.Successful exploitation of this vulnerability may cause the Bluetooth process to restart. CVE project by @Sn0wAlice Create: 2023-01-13 02:01:28 +0000 UTC Push: 2023-01-13 02:01:31 +0000 UTC |