Live-Hack-CVE/CVE-2022-4037 An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A race condition can lead to verified email forgery and takeover of third-party accounts when using GitLab as an OAuth provider. CVE project by @Sn0wAlice Create: 2023-01-12 15:05:17 +0000 UTC Push: 2023-01-12 15:05:20 +0000 UTC |

Live-Hack-CVE/CVE-2022-3870 An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. GitLab allows unauthenticated users to download user avatars using the victim's user ID, on private instances that restrict CVE project by @Sn0wAlice Create: 2023-01-12 15:05:12 +0000 UTC Push: 2023-01-12 15:05:16 +0000 UTC |

Live-Hack-CVE/CVE-2022-3613 An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A crafted Prometheus Server query can cause high resource consumption and may lead to Denial of Service. CVE project by @Sn0wAlice Create: 2023-01-12 15:05:08 +0000 UTC Push: 2023-01-12 15:05:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-3573 An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. Due to the improper filtering of query parameters in the wiki changes page, an attacker can execute arbitrary JavaScript on CVE project by @Sn0wAlice Create: 2023-01-12 15:05:04 +0000 UTC Push: 2023-01-12 15:05:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-3514 An issue has been discovered in GitLab CE/EE affecting all versions starting from 6.6 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. An attacker may cause Denial of Service on a GitLab instance by exploiting a regex issue in the submodule URL parser. CVE project by @Sn0wAlice Create: 2023-01-12 15:04:59 +0000 UTC Push: 2023-01-12 15:05:02 +0000 UTC |

Live-Hack-CVE/CVE-2022-24913 Versions of the package com.fasterxml.util:java-merge-sort before 1.1.0 are vulnerable to Insecure Temporary File in the StdTempFileProvider() function in StdTempFileProvider.java, which uses the permissive File.createTempFile() function, exposing temporary file contents. CVE project by @Sn0wAlice Create: 2023-01-12 15:04:55 +0000 UTC Push: 2023-01-12 15:04:58 +0000 UTC |

Live-Hack-CVE/CVE-2022-4344 Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file CVE project by @Sn0wAlice Create: 2023-01-12 09:32:33 +0000 UTC Push: 2023-01-12 09:32:37 +0000 UTC |

Live-Hack-CVE/CVE-2017-14454 Multiple exploitable buffer overflow vulnerabilities exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service can cause buffer overflows on a global section overwriting arbitrary data. An attacker should imper CVE project by @Sn0wAlice Create: 2023-01-12 09:32:29 +0000 UTC Push: 2023-01-12 09:32:32 +0000 UTC |

Live-Hack-CVE/CVE-2017-16309 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:19:21 +0000 UTC Push: 2023-01-12 07:19:23 +0000 UTC |

Live-Hack-CVE/CVE-2017-16289 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:19:17 +0000 UTC Push: 2023-01-12 07:19:19 +0000 UTC |

Live-Hack-CVE/CVE-2017-16303 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:19:12 +0000 UTC Push: 2023-01-12 07:19:15 +0000 UTC |

Live-Hack-CVE/CVE-2017-16279 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:19:08 +0000 UTC Push: 2023-01-12 07:19:11 +0000 UTC |

Live-Hack-CVE/CVE-2017-16302 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:19:03 +0000 UTC Push: 2023-01-12 07:19:06 +0000 UTC |

Live-Hack-CVE/CVE-2017-16286 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:58 +0000 UTC Push: 2023-01-12 07:19:01 +0000 UTC |

Live-Hack-CVE/CVE-2017-16301 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:54 +0000 UTC Push: 2023-01-12 07:18:57 +0000 UTC |

Live-Hack-CVE/CVE-2017-16276 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:49 +0000 UTC Push: 2023-01-12 07:18:53 +0000 UTC |

Live-Hack-CVE/CVE-2017-16300 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:44 +0000 UTC Push: 2023-01-12 07:18:48 +0000 UTC |

Live-Hack-CVE/CVE-2017-16273 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:40 +0000 UTC Push: 2023-01-12 07:18:43 +0000 UTC |

Live-Hack-CVE/CVE-2017-16271 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:33 +0000 UTC Push: 2023-01-12 07:18:38 +0000 UTC |

Live-Hack-CVE/CVE-2017-16280 Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authentica CVE project by @Sn0wAlice Create: 2023-01-12 07:18:28 +0000 UTC Push: 2023-01-12 07:18:31 +0000 UTC |