Live-Hack-CVE/CVE-2023-0057 Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33. CVE project by @Sn0wAlice Create: 2023-01-12 01:48:51 +0000 UTC Push: 2023-01-12 01:48:54 +0000 UTC |

Live-Hack-CVE/CVE-2022-43521 Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and modify s CVE project by @Sn0wAlice Create: 2023-01-12 01:48:46 +0000 UTC Push: 2023-01-12 01:48:49 +0000 UTC |

Live-Hack-CVE/CVE-2023-22464 ViewVC is a browser interface for CVS and Subversion version control repositories. Versions prior to 1.2.3 and 1.1.30 are vulnerable to cross-site scripting. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a Subversion repository exposed by an otherwise trusted Vie CVE project by @Sn0wAlice Create: 2023-01-12 01:48:40 +0000 UTC Push: 2023-01-12 01:48:43 +0000 UTC |

Live-Hack-CVE/CVE-2022-43528 Under certain configurations, an attacker can login to Aruba EdgeConnect Enterprise Orchestrator without supplying a multi-factor authentication code. Successful exploitation allows an attacker to login using only a username and password and successfully bypass MFA requirements in Aruba EdgeConnect Enterprise Orchestra CVE project by @Sn0wAlice Create: 2023-01-12 01:48:36 +0000 UTC Push: 2023-01-12 01:48:39 +0000 UTC |

Live-Hack-CVE/CVE-2022-43535 A vulnerability in the ClearPass OnGuard Windows agent could allow malicious users on a Windows instance to elevate their user privileges. A successful exploit could allow these users to execute arbitrary code with NT AUTHORITY\SYSTEM level privileges on the Windows instance in Aruba ClearPass Policy Manager version(s) CVE project by @Sn0wAlice Create: 2023-01-12 01:48:31 +0000 UTC Push: 2023-01-12 01:48:34 +0000 UTC |

Live-Hack-CVE/CVE-2022-43536 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploits could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in CVE project by @Sn0wAlice Create: 2023-01-12 01:48:27 +0000 UTC Push: 2023-01-12 01:48:29 +0000 UTC |

Live-Hack-CVE/CVE-2013-10010 A vulnerability classified as problematic has been found in zerochplus. This affects the function PrintResList of the file test/mordor/thread.res.pl. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The name of the patch is 9ddf9ecca8565341d8d26a3b2f64540bde4fa273. It is r CVE project by @Sn0wAlice Create: 2023-01-12 01:48:22 +0000 UTC Push: 2023-01-12 01:48:25 +0000 UTC |

Live-Hack-CVE/CVE-2022-46174 efs-utils is a set of Utilities for Amazon Elastic File System (EFS). A potential race condition issue exists within the Amazon EFS mount helper in efs-utils versions v1.34.3 and below. When using TLS to mount file systems, the mount helper allocates a local port for stunnel to receive NFS connections prior to applying CVE project by @Sn0wAlice Create: 2023-01-12 01:48:18 +0000 UTC Push: 2023-01-12 01:48:21 +0000 UTC |

Live-Hack-CVE/CVE-2022-43537 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploits could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in CVE project by @Sn0wAlice Create: 2023-01-12 01:48:12 +0000 UTC Push: 2023-01-12 01:48:15 +0000 UTC |

Live-Hack-CVE/CVE-2022-43539 A vulnerability exists in the ClearPass Policy Manager cluster communications that allow for an attacker in a privileged network position to potentially obtain sensitive information. A successful exploit could allow an attacker to retrieve information that allows for unauthorized actions as a privileged user on the Cle CVE project by @Sn0wAlice Create: 2023-01-12 01:48:08 +0000 UTC Push: 2023-01-12 01:48:11 +0000 UTC |

Live-Hack-CVE/CVE-2022-43540 A vulnerability exists in the ClearPass OnGuard macOS agent that allows for an attacker with local macOS instance access to potentially obtain sensitive information. A successful exploit could allow an attacker to retrieve information that is of a sensitive nature in Aruba ClearPass Policy Manager version(s): ClearPass CVE project by @Sn0wAlice Create: 2023-01-12 01:48:03 +0000 UTC Push: 2023-01-12 01:48:07 +0000 UTC |

Live-Hack-CVE/CVE-2022-43538 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploits could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in CVE project by @Sn0wAlice Create: 2023-01-12 01:47:59 +0000 UTC Push: 2023-01-12 01:48:02 +0000 UTC |

Live-Hack-CVE/CVE-2021-41073 loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation. CVE project by @Sn0wAlice Create: 2023-01-12 01:47:54 +0000 UTC Push: 2023-01-12 01:47:57 +0000 UTC |

PoyomiFox/Nft-Grabber-Stealer-Exploit-Cve-2022-Steal-BlockHain-Hack-Nft Create: 2023-01-12 01:35:47 +0000 UTC Push: 2023-01-12 01:35:48 +0000 UTC |

PoyomiFox/Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2022 Create: 2023-01-12 01:25:42 +0000 UTC Push: 2023-01-12 01:25:43 +0000 UTC |

NumRcs/Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2022 We have collectively determined that these vulnerabilities are available to individuals other than the person(s) who discovered them. An unknowable number of people having access to these vulnerabilities makes this a critical issue for everyone using this software.About CVE CVE was launched in 1999 when most information security tools used their ow Create: 2023-01-12 01:25:42 +0000 UTC Push: 2023-01-12 01:27:17 +0000 UTC |

PoyomiFox/Discord-Image-Token-Password-Grabber-Exploit-Cve-2022 Create: 2023-01-12 01:24:51 +0000 UTC Push: 2023-01-12 01:24:52 +0000 UTC |

HAMRCS/Discord-Image-Token-Password-Grabber-Exploit-Cve-2022 Features No local caching Transfers via Discord webhook Searches for authorization tokens in multiple directories (Discord, Discord PTB, Discord Canary, Google chrome, Opera, Brave and Yandex) No external Python modules required [todo] Cross-platform support Create: 2023-01-12 01:24:51 +0000 UTC Push: 2023-01-12 01:26:09 +0000 UTC |

Live-Hack-CVE/CVE-2022-4696 There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag, which signals that the operation won't use current->nsproxy, so its reference counter is not increased. This assumption is not always true as cal CVE project by @Sn0wAlice Create: 2023-01-11 23:37:32 +0000 UTC Push: 2023-01-11 23:37:35 +0000 UTC |

Live-Hack-CVE/CVE-2022-42967 Caret is vulnerable to an XSS attack when the user opens a crafted Markdown file when preview mode is enabled. This directly leads to client-side code execution. CVE project by @Sn0wAlice Create: 2023-01-11 23:37:27 +0000 UTC Push: 2023-01-11 23:37:31 +0000 UTC |