nuget

842 tracked vulnerabilities.

CVE-2024-21910 MEDIUM
TinyMCE < 5.10.0 - Unauthenticated Stored Cross-Site Scripting via Crafted Image or Link URLs
Jan 03, 2024
CVSS 6.1
EPSS 0.04
CVE-2024-21909 HIGH
PeterO.Cbor 4.0.0-4.5.0 - Denial of Service via Crafted DecodeFromBytes Input
Jan 03, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-21908 MEDIUM
TinyMCE < 5.9.0 - Unauthenticated Stored Cross-Site Scripting
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21907 HIGH
Newtonsoft.Json < 13.0.1 - Denial of Service via JsonConvert.DeserializeObject
Jan 03, 2024
CVSS 7.5
EPSS 0.02
CVE-2023-27321 HIGH
Opcfoundation Ua-.netstandard < 1.4.371.86 - Denial of Service
May 07, 2024
CVSS 7.5
EPSS 0.03
CVE-2023-51652 MEDIUM
OWASP AntiSamy .NET < 1.2.0 - Mutation Cross-Site Scripting via Comment Tag Parsing
Jan 02, 2024
CVSS 6.1
EPSS 0.01
CVE-2023-51662 MEDIUM
Snowflake .NET <2.1.4 - Info Disclosure
Dec 22, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-49279 LOW
Umbraco <7.15.11, <8.18.9, <10.7.0, <11.5.0, <12.2.0 - XSS
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49278 MEDIUM
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-49274 LOW
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49273 MEDIUM
Umbraco <8.0.0-8.18.10-10.8.1-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-49089 HIGH
Umbraco <8.18.10-12.3.0 - Path Traversal
Dec 12, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-48313 MEDIUM
Umbraco CMS 10.0.0-10.8.0 - Stored Cross-Site Scripting
Dec 12, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-48227 MEDIUM
Umbraco CMS 8.0.0-8.18.9 - Incorrect Authorization
Dec 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-38694 LOW
Umbraco <8.18.10, 10.7.0, 12.1.0 - Code Injection
Dec 12, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-31048 MEDIUM
OPC UA .NET Standard Reference Server <1.4.371.86 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-26154 MEDIUM
PubNub <7.4.0, <6.19.0, <7.3.0, <6.1.0, <5.3.0, <0.4.0 - Path Trave...
Dec 06, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-49289 MEDIUM
Ajax.NET Professional < 21.12.22.1 - Cross-Site Scripting
Dec 05, 2023
CVSS 6.3
EPSS 0.00
CVE-2023-48219 MEDIUM
TinyMCE < 5.10.9 - Mutation Cross-Site Scripting via Undo/Redo Functionality
Nov 15, 2023
CVSS 6.1
EPSS 0.02
CVE-2023-36558 MEDIUM
.NET 6.0.0-6.0.24 and ASP.NET Core 6.0.0-6.0.24 - Security Feature Bypass
Nov 14, 2023
CVSS 6.2
EPSS 0.00
CVE-2023-36049 HIGH
Microsoft .NET and .NET Framework - Elevation of Privilege
Nov 14, 2023
CVSS 7.6
EPSS 0.02
CVE-2023-45819 MEDIUM
TinyMCE < 5.10.8 and 6.0.0-6.7.1 - Cross-Site Scripting via Notification Manager API
Oct 19, 2023
CVSS 6.1
EPSS 0.02
CVE-2023-45818 MEDIUM
TinyMCE < 5.10.8 and 6.0.0-6.7.1 - Stored Cross-Site Scripting via Undo/Redo HTML Mutation
Oct 19, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-45814 MEDIUM
Bunkum 4.0-4.2.0 - Use-After-Free in AuthenticationService Token Caching
Oct 18, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-38171 HIGH
.NET >=7.0.0 <7.0.12 - Denial of Service via QUIC NULL Pointer Dereference
Oct 10, 2023
CVSS 7.5
EPSS 0.08
Products
Microsoft.ChakraCore 247 Magick.NET-Q16-AnyCPU 86 Magick.NET-Q16-HDRI-AnyCPU 86 Magick.NET-Q8-AnyCPU 86 Magick.NET-Q16-HDRI-x86 85 Magick.NET-Q16-x86 85 Magick.NET-Q8-x86 84 Magick.NET-Q16-HDRI-OpenMP-arm64 83 Magick.NET-Q16-HDRI-x64 83 Magick.NET-Q16-OpenMP-arm64 83 Magick.NET-Q16-OpenMP-x64 83 Magick.NET-Q16-arm64 83 Magick.NET-Q16-HDRI-arm64 82 Magick.NET-Q8-OpenMP-arm64 82 Magick.NET-Q8-arm64 82 Magick.NET-Q16-x64 79 Magick.NET-Q8-OpenMP-x64 79 Magick.NET-Q8-x64 76 Magick.NET-Q16-HDRI-OpenMP-x64 69 Magick.NET-Q16-OpenMP-x86 57 DotNetNuke.Core 35 Microsoft.AspNetCore.App.Runtime.win-x64 25 Microsoft.AspNetCore.App.Runtime.win-x86 25 Microsoft.AspNetCore.App.Runtime.win-arm 24 Microsoft.AspNetCore.App.Runtime.linux-arm 22 Microsoft.AspNetCore.App.Runtime.linux-arm64 22 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 22 Microsoft.AspNetCore.App.Runtime.linux-x64 22 Microsoft.AspNetCore.App.Runtime.osx-x64 22 Microsoft.AspNetCore.App.Runtime.win-arm64 22
Quick Filters
Critical CVEs With Exploits In CISA KEV