nuget

842 tracked vulnerabilities.

CVE-2022-0609 HIGH KEV
Google Chrome <98.0.4758.102 - Use After Free
Apr 05, 2022
CVSS 8.8
EPSS 0.49
CVE-2022-24785 HIGH
Moment.js 1.0.1-2.29.1 - Path Traversal via Locale Switching
Apr 04, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-24789 HIGH
C1 CMS < 6.12 - Authenticated Server-Side Request Forgery and Denial of Service
Mar 28, 2022
CVSS 7.6
EPSS 0.00
CVE-2022-0749 HIGH
SinGooCMS.Utility - Deserialization of Untrusted Data via BinaryFormatter
Mar 17, 2022
CVSS 7.4
EPSS 0.01
CVE-2022-24512 MEDIUM
Microsoft .NET, PowerShell, and Visual Studio - Remote Code Execution
Mar 09, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-24464 HIGH
.NET 5.0-5.0.13 and .NET Core 3.1-3.1.21 - Denial of Service
Mar 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-23395 MEDIUM
jquery.cookie 1.4.1 - Prototype Pollution leading to DOM Cross-Site Scripting
Mar 02, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-21986 HIGH
.NET 5.0-5.0.13 - Denial of Service
Feb 09, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-0274 MEDIUM
NuGet OrchardCore.Application.Cms.Targets <1.2.2 - XSS
Jan 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22691 MEDIUM
Umbraco CMS < 9.2.0 - Password Reset Token Disclosure via Host Header Manipulation
Jan 18, 2022
CVSS 6.8
EPSS 0.00
CVE-2022-22690 HIGH
Umbraco CMS < 9.2.0 - Persistent URL Overwrite via UmbracoApplicationUrl Manipulation
Jan 18, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-0159 MEDIUM
OrchardCore < 1.2.1 - Cross-Site Scripting
Jan 12, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-47776 MEDIUM
Umbraco CMS 8.14.1 - Server-Side Request Forgery via Dashboard and Help Controller Endpoints
Jan 15, 2026
CVSS 5.3
EPSS 0.00
CVE-2021-22143 LOW
Elastic APM .NET Agent < 1.10.0 - Sensitive Information Exposure via HTTP Header Logging
Nov 22, 2023
CVSS 2.1
EPSS 0.00
CVE-2021-4248 MEDIUM
Kapetan DNS <7.0.0 - Insufficient Entropy
Dec 18, 2022
CVSS 5.6
EPSS 0.01
CVE-2021-42656 MEDIUM
SiteServer CMS 6.15.51 - Cross-Site Scripting
May 24, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-42655 HIGH
SiteServer CMS 6.15.51 - SQL Injection
May 24, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-33318 CRITICAL
Joel Christner .NET C# packages - Input Validation Vulnerability
May 16, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-46703 CRITICAL
Antaris RazorEngine <4.5.1-alpha001 - RCE
Mar 06, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-32841 MEDIUM
SharpZipLib <1.3.3 - Path Traversal
Jan 26, 2022
CVSS 4.0
EPSS 0.00
CVE-2021-32842 MEDIUM
SharpZipLib <1.3.3 - Path Traversal
Jan 26, 2022
CVSS 4.0
EPSS 0.00
CVE-2021-32840 HIGH
SharpZipLib <1.3.3 - Path Traversal
Jan 26, 2022
CVSS 7.3
EPSS 0.02
CVE-2021-22570 MEDIUM
Google Protobuf < 3.15.0 - Null Pointer Dereference via Proto Symbol Parsing
Jan 26, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-43045 HIGH
Apache Avro < 1.11.0 - Denial of Service via Resource Allocation
Jan 06, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-43853 HIGH
Ajax.NET Professional < 21.12.22.1 - JavaScript Object Injection via JSON Parsing
Dec 22, 2021
CVSS 8.7
EPSS 0.00
Products
Microsoft.ChakraCore 247 Magick.NET-Q16-AnyCPU 86 Magick.NET-Q16-HDRI-AnyCPU 86 Magick.NET-Q8-AnyCPU 86 Magick.NET-Q16-HDRI-x86 85 Magick.NET-Q16-x86 85 Magick.NET-Q8-x86 84 Magick.NET-Q16-HDRI-OpenMP-arm64 83 Magick.NET-Q16-HDRI-x64 83 Magick.NET-Q16-OpenMP-arm64 83 Magick.NET-Q16-OpenMP-x64 83 Magick.NET-Q16-arm64 83 Magick.NET-Q16-HDRI-arm64 82 Magick.NET-Q8-OpenMP-arm64 82 Magick.NET-Q8-arm64 82 Magick.NET-Q16-x64 79 Magick.NET-Q8-OpenMP-x64 79 Magick.NET-Q8-x64 76 Magick.NET-Q16-HDRI-OpenMP-x64 69 Magick.NET-Q16-OpenMP-x86 57 DotNetNuke.Core 35 Microsoft.AspNetCore.App.Runtime.win-x64 25 Microsoft.AspNetCore.App.Runtime.win-x86 25 Microsoft.AspNetCore.App.Runtime.win-arm 24 Microsoft.AspNetCore.App.Runtime.linux-arm 22 Microsoft.AspNetCore.App.Runtime.linux-arm64 22 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 22 Microsoft.AspNetCore.App.Runtime.linux-x64 22 Microsoft.AspNetCore.App.Runtime.osx-x64 22 Microsoft.AspNetCore.App.Runtime.win-arm64 22
Quick Filters
Critical CVEs With Exploits In CISA KEV