nuget

901 tracked vulnerabilities.

CVE-2021-34532 MEDIUM
ASP.NET Core 2.1-2.1.1 and Visual Studio 2019 < 16.10 - Information Disclosure
Aug 12, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-34485 MEDIUM
.NET 5.0 < 5.0.8 and .NET Core 2.1 < 2.1.28 - Information Disclosure
Aug 12, 2021
CVSS 5.0
EPSS 0.01
CVE-2021-26423 HIGH
.NET 5.0 < 5.0.8 and .NET Core 2.1 < 2.1.28 - Denial of Service
Aug 12, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-23415 HIGH
elFinder.AspNet < 1.1.1 - Path Traversal via Unsanitized File Name
Jul 28, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-23407 HIGH
elFinder.Net.Core < 1.2.4 - Path Traversal via Unsanitized File Name
Jul 14, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-27293 HIGH
RestSharp < 106.11.8-alpha.0.13 - DoS
Jul 12, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-31957 MEDIUM
.NET 5.0 < 5.0.6 and .NET Core 3.1 < 3.1.15 - Denial of Service
Jun 08, 2021
CVSS 5.9
EPSS 0.05
CVE-2021-20331 MEDIUM
MongoDB C# Driver - Info Disclosure
May 13, 2021
CVSS 4.2
EPSS 0.01
CVE-2021-29508 CRITICAL
asynkron Wire - Deserialization of Untrusted Data via Surrogate Type Handling
May 11, 2021
CVSS 9.1
EPSS 0.02
CVE-2021-26701 HIGH
.NET Core 2.1 < 2.1.28 and .NET 5.0 < 5.0.4 - Remote Code Execution
Feb 25, 2021
CVSS 8.1
EPSS 0.30
CVE-2021-24112 HIGH
Microsoft .NET System.Drawing.Common - Remote Code Execution
Feb 25, 2021
CVSS 8.1
EPSS 0.03
CVE-2021-1721 MEDIUM
.NET 5.0 < 5.0.2 and .NET Core 2.1 < 2.1.24 - Denial of Service
Feb 25, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-21252 MEDIUM
jQuery Validation Plugin <1.19.3 - DoS
Jan 13, 2021
CVSS 5.3
EPSS 0.04
CVE-2021-1723 HIGH
ASP.NET Core 3.1-3.1.10 - Denial of Service
Jan 12, 2021
CVSS 7.5
EPSS 0.05
CVE-2020-36620 LOW
Brondahl EnumStringValues <4.0.0 - DoS
Dec 21, 2022
CVSS 3.5
EPSS 0.01
CVE-2020-15522 MEDIUM
Bouncycastle Bc-csharp < 1.8.7 - Race Condition
May 20, 2021
CVSS 5.9
EPSS 0.02
CVE-2020-29457 MEDIUM
OPC UA .NET Standard Stack <1.4.363.107 - Privilege Escalation
Feb 16, 2021
CVSS 4.4
EPSS 0.00
CVE-2020-16017 CRITICAL KEV
Google Chrome < 86.0.4240.198 - Use-After-Free in Site Isolation
Jan 08, 2021
CVSS 9.6
EPSS 0.03
CVE-2020-16013 HIGH KEV
Google Chrome < 86.0.4240.198 - Out-of-bounds Write via Crafted HTML Page
Jan 08, 2021
CVSS 8.8
EPSS 0.03
CVE-2020-26293 MEDIUM
HtmlSanitizer < 5.0.372 - Cross-Site Scripting Bypass via Style Tag
Jan 04, 2021
CVSS 6.1
EPSS 0.01
CVE-2020-5811 MEDIUM
Umbraco CMS <=8.9.1 - Path Traversal
Dec 30, 2020
CVSS 6.5
EPSS 0.09
CVE-2020-5809 MEDIUM
Umbraco CMS <= 8.9.1 - Authenticated Stored Cross-Site Scripting via TinyMCE Iframe Injection
Dec 30, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-20136 CRITICAL
QuantConnect Lean 2.3.0.0-2.4.0.1 - Deserialization of Untrusted Data via Json.NET TypeNameHandling Misconfiguration
Dec 14, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-7791 HIGH
i18n <2.1.15 - Info Disclosure
Dec 11, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-17131 MEDIUM
Chakra Scripting Engine - Memory Corruption
Dec 10, 2020
CVSS 4.2
EPSS 0.02