nuget

901 tracked vulnerabilities.

CVE-2022-48282 MEDIUM
MongoDB C# Driver < 2.19.0 - Authenticated Remote Code Execution via Untrusted Data Deserialization
Feb 21, 2023
CVSS 6.6
EPSS 0.01
CVE-2022-41089 HIGH
.NET Framework - Remote Code Execution
Dec 13, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-23494 MEDIUM
TinyMCE < 5.10.7 and 6.0.0-6.3.1 - Cross-Site Scripting via Alert and Confirm Dialogs
Dec 08, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-41954 LOW
mpxj < 10.14.1 - Insecure Temporary File Permissions on Unix-like Systems
Nov 25, 2022
CVSS 3.3
EPSS 0.00
CVE-2022-41064 MEDIUM
.NET Framework - Information Disclosure
Nov 09, 2022
CVSS 5.8
EPSS 0.01
CVE-2022-41032 HIGH
NuGet Client - Privilege Escalation
Oct 11, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-32173 MEDIUM
OrchardCore 1.0.0-rc1-11259-1.2.2 - Authenticated HTML Injection in Dashboard
Oct 03, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-2922 MEDIUM
Dnnsoftware Dotnetnuke < 9.11.0 - Path Traversal
Sep 30, 2022
CVSS 4.9
EPSS 0.01
CVE-2022-39256 CRITICAL
Orckestra C1 CMS < 6.13 - Authenticated Remote Code Execution via Untrusted Data Deserialization
Sep 27, 2022
CVSS 9.0
EPSS 0.01
CVE-2022-38013 HIGH
.NET Core and Visual Studio - Denial of Service
Sep 13, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-33916 HIGH
OPC UA .NET Standard Reference Server 1.04.368 - Info Disclosure
Aug 23, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35909 HIGH
Jellyfin < 10.8 - Incorrect Access Control for Admin Functionality
Aug 19, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-35540 CRITICAL
AgileConfig < 1.6.8 - Use of Hard-coded Credentials
Aug 18, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-34716 MEDIUM
.NET 6.0.0-6.0.7 and .NET Core 3.1-3.1.27 - Authentication Bypass by Spoofing
Aug 09, 2022
CVSS 5.9
EPSS 0.02
CVE-2022-31160 MEDIUM
jQuery UI < 1.13.2 - Cross-Site Scripting via Checkboxradio Widget Refresh
Jul 20, 2022
CVSS 6.1
EPSS 0.02
CVE-2022-30187 MEDIUM
Azure Storage Library < 12.13.0 - Information Disclosure via Broken Cryptographic Algorithm
Jul 12, 2022
CVSS 4.7
EPSS 0.01
CVE-2022-31129 HIGH
moment 2.18.0-2.29.3 - Denial of Service via RFC2822 Date Parsing
Jul 06, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-29866 HIGH
OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Memory Resource Exhaustion
Jun 16, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-29864 HIGH
OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Message Flood
Jun 16, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-29863 HIGH
OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Crafted Message
Jun 16, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29865 HIGH
OPC UA .NET Standard Stack < 1.4.368.58 - Unauthenticated Authentication Bypass via Crafted Fake Credentials
Jun 16, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-29862 HIGH
OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Crafted Message
Jun 16, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-30184 MEDIUM
.NET and Visual Studio - Exposure of Sensitive Information
Jun 15, 2022
CVSS 5.5
EPSS 0.05
CVE-2022-30349 MEDIUM
SiteServer CMS 6.15.51 - Stored Cross-Site Scripting
Jun 02, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-29245 MEDIUM
SSH.NET 2020.0.0-2020.0.1 - Info Disclosure
May 31, 2022
CVSS 6.5
EPSS 0.01