nuget

901 tracked vulnerabilities.

CVE-2025-6965 HIGH
SQLite < 3.50.2 - Memory Corruption via Aggregate Terms Overflow
Jul 15, 2025
CVSS 7.7
EPSS 0.73
CVE-2025-53101 HIGH
ImageMagick <7.1.2-0, <6.9.13-26 - Buffer Overflow
Jul 14, 2025
CVSS 7.4
EPSS 0.01
CVE-2025-53019 LOW
ImageMagick < 6.9.13-26 - Out-of-bounds Read via Filename Template Format Specifiers
Jul 14, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-53015 HIGH
ImageMagick 7.1.1-7 - Denial of Service via Infinite Loop in XMP File Conversion
Jul 14, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-53014 LOW
ImageMagick < 6.9.13-26 - Out-of-bounds Read in InterpretImageFilename
Jul 14, 2025
CVSS 3.7
EPSS 0.01
CVE-2025-49147 MEDIUM
Umbraco <10.8.10, <13.9.1 - Info Disclosure
Jun 24, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-52488 HIGH NUCLEI
Dnnsoftware Dotnetnuke < 10.0.1 - Information Disclosure
Jun 21, 2025
CVSS 8.6
EPSS 0.31
CVE-2025-52487 HIGH
Dnnsoftware Dotnetnuke < 10.0.1 - Incorrect Authorization
Jun 21, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-52486 MEDIUM
Dnnsoftware Dotnetnuke < 10.0.1 - XSS
Jun 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-52485 MEDIUM
Dnnsoftware Dotnetnuke < 10.0.1 - XSS
Jun 21, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-49015 MEDIUM
Couchbase .NET SDK <3.7.1 - SSL/TLS Info Disclosure
Jun 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-30399 HIGH
.NET & Visual Studio - Code Injection
Jun 13, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-48953 MEDIUM
Umbraco <15.4.2,16.0.0 - File Upload
Jun 03, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-48378 MEDIUM
DNN <9.13.9 - Cross-Site Scripting
May 23, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-48377 MEDIUM
DNN <9.13.9 - Cross-Site Scripting
May 23, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-48376 LOW
DNN < 9.13.9 Site Export - SuperUser External URL Import
May 23, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-26646 HIGH
Microsoft .NET, Visual Studio, and Build Tools - Path Spoofing via External Control of File Name or Path
May 13, 2025
CVSS 8.0
EPSS 0.01
CVE-2025-47280 MEDIUM
Umbraco Forms <13.4.2-15.1.2 - Info Disclosure
May 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-46736 MEDIUM
Umbraco <10.8.10, <13.8.1 - Info Disclosure
May 06, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-46326 LOW
Snowflake Connector <4.4.1 - Info Disclosure
Apr 28, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-43858 CRITICAL
YoutubeDLSharp 1.0.0-beta4-1.1.1 - Command Injection via Windows Encoding Workaround
Apr 24, 2025
CVSS 9.2
EPSS 0.00
CVE-2025-3857 HIGH
Amazon.IonDotnet < 1.3.1 - Denial of Service via RawBinaryReader Binary Deserialization
Apr 21, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-29953 CRITICAL
Apache ActiveMQ NMS OpenWire Client <2.1.1 - Deserialization
Apr 18, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-32372 MEDIUM
Dnnsoftware Dotnetnuke < 9.13.8 - SSRF
Apr 09, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-32016 MEDIUM
Microsoft.Identity.Web 3.2.0-3.8.1 - Sensitive Information Exposure in Service Logs
Apr 09, 2025
CVSS 4.7
EPSS 0.00