nuget

901 tracked vulnerabilities.

CVE-2022-29362 MEDIUM
ZKEACMS v3.5.2 - Cross-Site Scripting via ParentID Parameter
May 25, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-29145 HIGH
.NET and Visual Studio - Denial of Service
May 10, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-29117 HIGH
.NET and Visual Studio - Denial of Service
May 10, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-23267 HIGH
.NET and Visual Studio - Denial of Service
May 10, 2022
CVSS 7.5
EPSS 0.05
CVE-2022-21167 HIGH
Masuit.Tools.Core - Arbitrary Code Execution via BinaryFormatter Payload
May 01, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-26924 HIGH
YARP Reverse Proxy - Denial of Service
Apr 15, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-26907 MEDIUM
Azure SDK for .NET - Info Disclosure
Apr 15, 2022
CVSS 5.3
EPSS 0.02
CVE-2022-26788 HIGH
PowerShell 7.0-7.0.9 - Elevation of Privilege
Apr 15, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24849 MEDIUM
DisCatSharp 9.8.5-9.9.0 - Unauthenticated Exposure of Sensitive Information via Developer Attribute
Apr 14, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-0609 HIGH KEV
Google Chrome <98.0.4758.102 - Use After Free
Apr 05, 2022
CVSS 8.8
EPSS 0.24
CVE-2022-24785 HIGH
Moment.js 1.0.1-2.29.1 - Path Traversal via Locale Switching
Apr 04, 2022
CVSS 7.5
EPSS 0.06
CVE-2022-24789 HIGH
C1 CMS < 6.12 - Authenticated Server-Side Request Forgery and Denial of Service
Mar 28, 2022
CVSS 7.6
EPSS 0.01
CVE-2022-0749 HIGH
SinGooCMS.Utility - Deserialization of Untrusted Data via BinaryFormatter
Mar 17, 2022
CVSS 7.4
EPSS 0.02
CVE-2022-24512 MEDIUM
Microsoft .NET, PowerShell, and Visual Studio - Remote Code Execution
Mar 09, 2022
CVSS 6.3
EPSS 0.02
CVE-2022-24464 HIGH
.NET 5.0-5.0.13 and .NET Core 3.1-3.1.21 - Denial of Service
Mar 09, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-23395 MEDIUM
jquery.cookie 1.4.1 - Prototype Pollution leading to DOM Cross-Site Scripting
Mar 02, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-21986 HIGH
.NET 5.0-5.0.13 - Denial of Service
Feb 09, 2022
CVSS 7.5
EPSS 0.04
CVE-2022-0274 MEDIUM
NuGet OrchardCore.Application.Cms.Targets <1.2.2 - XSS
Jan 19, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-22691 MEDIUM
Umbraco CMS < 9.2.0 - Password Reset Token Disclosure via Host Header Manipulation
Jan 18, 2022
CVSS 6.8
EPSS 0.01
CVE-2022-22690 HIGH
Umbraco CMS < 9.2.0 - Persistent URL Overwrite via UmbracoApplicationUrl Manipulation
Jan 18, 2022
CVSS 8.6
EPSS 0.01
CVE-2022-0159 MEDIUM
OrchardCore < 1.2.1 - Cross-Site Scripting
Jan 12, 2022
CVSS 5.4
EPSS 0.01
CVE-2021-47776 MEDIUM
Umbraco CMS 8.14.1 - Server-Side Request Forgery via Dashboard and Help Controller Endpoints
Jan 15, 2026
CVSS 5.3
EPSS 0.00
CVE-2021-22143 LOW
Elastic APM .NET Agent < 1.10.0 - Sensitive Information Exposure via HTTP Header Logging
Nov 22, 2023
CVSS 2.1
EPSS 0.01
CVE-2021-4248 MEDIUM
Kapetan DNS <7.0.0 - Insufficient Entropy
Dec 18, 2022
CVSS 5.6
EPSS 0.01
CVE-2021-42656 MEDIUM
SiteServer CMS 6.15.51 - Cross-Site Scripting
May 24, 2022
CVSS 5.4
EPSS 0.01