nuget
901 tracked vulnerabilities.
CVE-2024-26318
MEDIUM
Serenity < 6.8.0 - Cross-Site Scripting via Email Link Return URL
Feb 19, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21386
HIGH
.NET 6.0.0-6.0.26 - Denial of Service
Feb 13, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-24810
HIGH
WiX toolset <4.0.4 - Privilege Escalation
Feb 07, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-23838
HIGH
TrueLayer.NET < 1.6.0 - Server-Side Request Forgery via HttpClient URL Control
Jan 30, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21643
HIGH
Microsoft IdentityModel Extensions < 6.34.0 - Remote Code Execution via SignedHttpRequest Protocol
Jan 10, 2024
CVSS 7.1
EPSS 0.02
CVE-2024-21319
MEDIUM
.NET 6.0.0-6.0.25 and IdentityModel 5.0.0-5.6.9 - Denial of Service
Jan 09, 2024
CVSS 6.8
EPSS 0.03
CVE-2024-0057
CRITICAL
PowerShell 7.2-7.2.17 - Security Feature Bypass via Improper Input Validation
Jan 09, 2024
CVSS 9.1
EPSS 0.03
CVE-2024-0056
HIGH
Microsoft.Data.SqlClient 2.1-2.1.7 and System.Data.SqlClient <4.8.6 - Cleartext Transmission of Sensitive Information
Jan 09, 2024
CVSS 8.7
EPSS 0.01
CVE-2024-21911
MEDIUM
TinyMCE < 5.6.0 - Unauthenticated Stored Cross-Site Scripting
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21910
MEDIUM
TinyMCE < 5.10.0 - Unauthenticated Stored Cross-Site Scripting via Crafted Image or Link URLs
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21909
HIGH
PeterO.Cbor 4.0.0-4.5.0 - Denial of Service via Crafted DecodeFromBytes Input
Jan 03, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21908
MEDIUM
TinyMCE < 5.9.0 - Unauthenticated Stored Cross-Site Scripting
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21907
HIGH
Newtonsoft.Json < 13.0.1 - Denial of Service via JsonConvert.DeserializeObject
Jan 03, 2024
CVSS 7.5
EPSS 0.33
CVE-2023-27321
HIGH
Opcfoundation Ua-.netstandard < 1.4.371.86 - Denial of Service
May 07, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-51652
MEDIUM
OWASP AntiSamy .NET < 1.2.0 - Mutation Cross-Site Scripting via Comment Tag Parsing
Jan 02, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-51662
MEDIUM
Snowflake .NET <2.1.4 - Info Disclosure
Dec 22, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-49279
LOW
Umbraco <7.15.11, <8.18.9, <10.7.0, <11.5.0, <12.2.0 - XSS
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49278
MEDIUM
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-49274
LOW
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49273
MEDIUM
Umbraco <8.0.0-8.18.10-10.8.1-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-49089
HIGH
Umbraco <8.18.10-12.3.0 - Path Traversal
Dec 12, 2023
CVSS 7.7
EPSS 0.01
CVE-2023-48313
MEDIUM
Umbraco CMS 10.0.0-10.8.0 - Stored Cross-Site Scripting
Dec 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-48227
MEDIUM
Umbraco CMS 8.0.0-8.18.9 - Incorrect Authorization
Dec 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-38694
LOW
Umbraco <8.18.10, 10.7.0, 12.1.0 - Code Injection
Dec 12, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-31048
MEDIUM
OPC UA .NET Standard Reference Server <1.4.371.86 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.01
Products
Microsoft.ChakraCore 247
Magick.NET-Q16-AnyCPU 114
Magick.NET-Q16-HDRI-AnyCPU 114
Magick.NET-Q8-AnyCPU 114
Magick.NET-Q16-HDRI-x86 113
Magick.NET-Q16-x86 113
Magick.NET-Q8-x86 112
Magick.NET-Q16-HDRI-OpenMP-arm64 111
Magick.NET-Q16-HDRI-x64 111
Magick.NET-Q16-OpenMP-arm64 111
Magick.NET-Q16-OpenMP-x64 111
Magick.NET-Q16-arm64 111
Magick.NET-Q16-HDRI-arm64 110
Magick.NET-Q8-OpenMP-arm64 110
Magick.NET-Q8-arm64 110
Magick.NET-Q16-x64 107
Magick.NET-Q8-OpenMP-x64 107
Magick.NET-Q8-x64 104
Magick.NET-Q16-HDRI-OpenMP-x64 83
Magick.NET-Q16-OpenMP-x86 58
DotNetNuke.Core 35
Microsoft.AspNetCore.App.Runtime.win-x64 26
Microsoft.AspNetCore.App.Runtime.win-x86 25
Microsoft.AspNetCore.App.Runtime.win-arm 24
Microsoft.AspNetCore.App.Runtime.linux-x64 23
Microsoft.AspNetCore.App.Runtime.linux-arm 22
Microsoft.AspNetCore.App.Runtime.linux-arm64 22
Microsoft.AspNetCore.App.Runtime.linux-musl-x64 22
Microsoft.AspNetCore.App.Runtime.osx-x64 22
Microsoft.AspNetCore.App.Runtime.win-arm64 22
Quick Filters