Live-Hack-CVE/CVE-2023-0114 A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The id CVE project by @Sn0wAlice Create: 2023-01-07 19:49:53 +0000 UTC Push: 2023-01-07 19:49:56 +0000 UTC |

Live-Hack-CVE/CVE-2023-0113 A vulnerability was found in Netis Netcore Router. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to information disclosure. The attack can be launched remotely. The associated identifier CVE project by @Sn0wAlice Create: 2023-01-07 19:49:49 +0000 UTC Push: 2023-01-07 19:49:51 +0000 UTC |

Live-Hack-CVE/CVE-2018-25069 A vulnerability classified as critical has been found in Netis Netcore Router. This affects an unknown part. The manipulation leads to use of hard-coded password. It is possible to initiate the attack remotely. The identifier VDB-217593 was assigned to this vulnerability. CVE project by @Sn0wAlice Create: 2023-01-07 19:49:44 +0000 UTC Push: 2023-01-07 19:49:47 +0000 UTC |

Live-Hack-CVE/CVE-2015-10019 A vulnerability, which was classified as problematic, has been found in foxoverflow MySimplifiedSQL. This issue affects some unknown processing of the file MySimplifiedSQL_Examples.php. The manipulation of the argument FirstName/LastName leads to cross site scripting. The attack may be initiated remotely. The name of t CVE project by @Sn0wAlice Create: 2023-01-07 19:49:40 +0000 UTC Push: 2023-01-07 19:49:43 +0000 UTC |

Live-Hack-CVE/CVE-2014-125055 A vulnerability, which was classified as problematic, was found in agnivade easy-scrypt. Affected is the function VerifyPassphrase of the file scrypt.go. The manipulation leads to observable timing discrepancy. Upgrading to version 1.0.0 is able to address this issue. The name of the patch is 477c10cf3b144ddf96526aa09f CVE project by @Sn0wAlice Create: 2023-01-07 19:49:36 +0000 UTC Push: 2023-01-07 19:49:39 +0000 UTC |

Live-Hack-CVE/CVE-2014-125054 A vulnerability classified as critical was found in koroket RedditOnRails. This vulnerability affects unknown code of the component Vote Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The name of the patch is 7f3c7407d95d532fcc342b00d68d0ea09ca71030. It is recommended CVE project by @Sn0wAlice Create: 2023-01-07 19:49:32 +0000 UTC Push: 2023-01-07 19:49:35 +0000 UTC |

Live-Hack-CVE/CVE-2020-36644 A vulnerability has been found in jamesmartin Inline SVG up to 1.7.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file lib/inline_svg/action_view/helpers.rb of the component URL Parameter Handler. The manipulation of the argument filename leads to cross site scripting CVE project by @Sn0wAlice Create: 2023-01-07 19:49:28 +0000 UTC Push: 2023-01-07 19:49:31 +0000 UTC |

Live-Hack-CVE/CVE-2014-125057 A vulnerability was found in mrobit robitailletheknot. It has been classified as problematic. This affects an unknown part of the file app/filters.php of the component CSRF Token Handler. The manipulation of the argument _token leads to incorrect comparison. It is possible to initiate the attack remotely. The name of t CVE project by @Sn0wAlice Create: 2023-01-07 19:49:24 +0000 UTC Push: 2023-01-07 19:49:27 +0000 UTC |

Live-Hack-CVE/CVE-2014-125056 A vulnerability was found in Pylons horus and classified as problematic. Affected by this issue is some unknown functionality of the file horus/flows/local/services.py. The manipulation leads to observable timing discrepancy. The name of the patch is fd56ccb62ce3cbdab0484fe4f9c25c4eda6c57ec. It is recommended to apply CVE project by @Sn0wAlice Create: 2023-01-07 19:49:21 +0000 UTC Push: 2023-01-07 19:49:23 +0000 UTC |

demetrius-ford/CVE-2018-7600 Create: 2023-01-07 19:08:28 +0000 UTC Push: 2023-01-07 19:08:28 +0000 UTC |

Live-Hack-CVE/CVE-2023-0112 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:23:07 +0000 UTC Push: 2023-01-07 14:23:10 +0000 UTC |

Live-Hack-CVE/CVE-2023-0111 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:23:03 +0000 UTC Push: 2023-01-07 14:23:04 +0000 UTC |

Live-Hack-CVE/CVE-2023-0110 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:58 +0000 UTC Push: 2023-01-07 14:23:01 +0000 UTC |

Live-Hack-CVE/CVE-2023-0108 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:54 +0000 UTC Push: 2023-01-07 14:22:57 +0000 UTC |

Live-Hack-CVE/CVE-2023-0107 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:50 +0000 UTC Push: 2023-01-07 14:22:53 +0000 UTC |

Live-Hack-CVE/CVE-2023-0106 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0. CVE project by @Sn0wAlice Create: 2023-01-07 14:22:46 +0000 UTC Push: 2023-01-07 14:22:49 +0000 UTC |

SpiralBL0CK/Chrome-V8-RCE-CVE-2021-38003 CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224 Create: 2023-01-07 14:09:14 +0000 UTC Push: 2023-01-07 14:09:38 +0000 UTC |

nanabingies/CVE-2018-19321 CVE-2018-19321 Create: 2023-01-07 10:45:30 +0000 UTC Push: 2023-01-07 10:45:51 +0000 UTC |

nanabingies/CVE-2021-21551 Dell Driver EoP (CVE-2021-21551) Create: 2023-01-07 10:42:59 +0000 UTC Push: 2023-01-07 10:42:59 +0000 UTC |

Live-Hack-CVE/CVE-2022-45913 An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur via one of attributes in webmail URLs to execute arbitrary JavaScript code, leading to information disclosure. CVE project by @Sn0wAlice Create: 2023-01-07 09:51:48 +0000 UTC Push: 2023-01-07 09:51:51 +0000 UTC |