nuget

901 tracked vulnerabilities.

CVE-2024-26318 MEDIUM
Serenity < 6.8.0 - Cross-Site Scripting via Email Link Return URL
Feb 19, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-21386 HIGH
.NET 6.0.0-6.0.26 - Denial of Service
Feb 13, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-24810 HIGH
WiX toolset <4.0.4 - Privilege Escalation
Feb 07, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-23838 HIGH
TrueLayer.NET < 1.6.0 - Server-Side Request Forgery via HttpClient URL Control
Jan 30, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21643 HIGH
Microsoft IdentityModel Extensions < 6.34.0 - Remote Code Execution via SignedHttpRequest Protocol
Jan 10, 2024
CVSS 7.1
EPSS 0.02
CVE-2024-21319 MEDIUM
.NET 6.0.0-6.0.25 and IdentityModel 5.0.0-5.6.9 - Denial of Service
Jan 09, 2024
CVSS 6.8
EPSS 0.03
CVE-2024-0057 CRITICAL
PowerShell 7.2-7.2.17 - Security Feature Bypass via Improper Input Validation
Jan 09, 2024
CVSS 9.1
EPSS 0.03
CVE-2024-0056 HIGH
Microsoft.Data.SqlClient 2.1-2.1.7 and System.Data.SqlClient <4.8.6 - Cleartext Transmission of Sensitive Information
Jan 09, 2024
CVSS 8.7
EPSS 0.01
CVE-2024-21911 MEDIUM
TinyMCE < 5.6.0 - Unauthenticated Stored Cross-Site Scripting
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21910 MEDIUM
TinyMCE < 5.10.0 - Unauthenticated Stored Cross-Site Scripting via Crafted Image or Link URLs
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21909 HIGH
PeterO.Cbor 4.0.0-4.5.0 - Denial of Service via Crafted DecodeFromBytes Input
Jan 03, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21908 MEDIUM
TinyMCE < 5.9.0 - Unauthenticated Stored Cross-Site Scripting
Jan 03, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-21907 HIGH
Newtonsoft.Json < 13.0.1 - Denial of Service via JsonConvert.DeserializeObject
Jan 03, 2024
CVSS 7.5
EPSS 0.33
CVE-2023-27321 HIGH
Opcfoundation Ua-.netstandard < 1.4.371.86 - Denial of Service
May 07, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-51652 MEDIUM
OWASP AntiSamy .NET < 1.2.0 - Mutation Cross-Site Scripting via Comment Tag Parsing
Jan 02, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-51662 MEDIUM
Snowflake .NET <2.1.4 - Info Disclosure
Dec 22, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-49279 LOW
Umbraco <7.15.11, <8.18.9, <10.7.0, <11.5.0, <12.2.0 - XSS
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49278 MEDIUM
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-49274 LOW
Umbraco <8.0.0-8.18.10-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-49273 MEDIUM
Umbraco <8.0.0-8.18.10-10.8.1-12.3.4 - Info Disclosure
Dec 12, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-49089 HIGH
Umbraco <8.18.10-12.3.0 - Path Traversal
Dec 12, 2023
CVSS 7.7
EPSS 0.01
CVE-2023-48313 MEDIUM
Umbraco CMS 10.0.0-10.8.0 - Stored Cross-Site Scripting
Dec 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-48227 MEDIUM
Umbraco CMS 8.0.0-8.18.9 - Incorrect Authorization
Dec 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-38694 LOW
Umbraco <8.18.10, 10.7.0, 12.1.0 - Code Injection
Dec 12, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-31048 MEDIUM
OPC UA .NET Standard Reference Server <1.4.371.86 - Info Disclosure
Dec 12, 2023
CVSS 5.3
EPSS 0.01