Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-6c3j-c64m-qhgq
  • npm/jquery
  • RubyGems/jquery-rails
  • NuGet/jQuery
XSS in jQuery as used in Drupal, Backdrop CMS, and other products
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.2
  • 0.2.1
  • 0.2.2
  • 0.2.3
  • ...
2023-05-30T18:34:13.860966Z Fix available
GHSA-q4m3-2j7h-f7xw
  • npm/jquery
  • NuGet/jQuery
Cross-Site Scripting in jquery
  • 1.4.1
  • 1.4.2
  • 1.4.3
  • 1.4.4
  • 1.5.0
  • 1.5.1
  • 1.5.2
  • ...
2023-05-30T18:34:12.844910Z Fix available
GHSA-93h6-wx7r-mgfp
  • NuGet/Serenity.Net.Core
  • NuGet/Serenity.Net.Services
Cross Site Scripting (XSS) in Serenity
  • 5.0.0
  • 5.0.1
  • 5.0.10
  • 5.0.11
  • 5.0.12
  • 5.0.13
  • 5.0.17
  • ...
2023-05-30T07:19:02.570956Z Fix available
GHSA-2hp9-3xfr-r9w2
  • NuGet/Serenity.Net.Core
  • NuGet/Serenity.Net.Web
Insufficient token expiration in Serenity
  • 5.0.0
  • 5.0.1
  • 5.0.10
  • 5.0.11
  • 5.0.12
  • 5.0.13
  • 5.0.17
  • ...
2023-05-30T06:50:46.204065Z Fix available
GHSA-w7jm-9x4m-8qc3
  • NuGet/Serenity.Net.Core
  • NuGet/Serenity.Net.Web
User account enumeration in Serenity
  • 5.0.0
  • 5.0.1
  • 5.0.10
  • 5.0.11
  • 5.0.12
  • 5.0.13
  • 5.0.17
  • ...
2023-05-30T06:50:26.242207Z Fix available
GHSA-63c6-w556-3h7q
  • NuGet/SSCMS
SSCMS vulnerable to Cross Site Scripting
  • 1.0.0-preview4
  • 7.0.0
  • 7.0.1
  • 7.0.10
  • 7.0.12
  • 7.0.2
  • 7.0.3
  • ...
2023-05-24T17:59:03.908362Z No fix available
GHSA-mmhr-3jr7-qj2p
  • NuGet/Auth0-ASPNET-Owin
  • NuGet/auth0-aspnet
Auth0-ASPNET and Auth0-ASPNET-Owin vulnerable to Cross-Site Request Forgery
  • 0.4.1
  • 0.4.2
  • 0.4.3
  • 0.4.4
  • 0.4.5
  • 0.4.6
  • 0.4.7
  • ...
2023-05-24T15:00:54.890378Z No fix available
GHSA-2c7v-qcjp-4mg2
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x64
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x86
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-arm64
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x64
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x86
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-arm64
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x86
  • NuGet/Microsoft.WindowsDesktop.App.Runtime.win-x64
.NET Remote Code Execution Vulnerability
  • 3.1.0
  • 3.1.1
  • 3.1.10
  • 3.1.11
  • 3.1.12
  • 3.1.13
  • 3.1.14
  • ...
2023-05-22T16:16:26.875586Z Fix available
GHSA-64x4-9hc6-r2h6
  • NuGet/Azure.Storage.Queues
  • NuGet/Azure.Storage.Blobs
Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library
  • 12.0.0
  • 12.1.0
  • 12.1.1
  • 12.10.0
  • 12.2.0
  • 12.3.0
  • 12.3.1
  • ...
2023-05-17T18:45:57.727972Z Fix available
GHSA-9p5f-5x8v-x65m
  • NuGet/Jellyfin.Controller
Directory traversal + file write causing arbitrary code execution
  • 10.8.0
  • 10.8.1
  • 10.8.2
  • 10.8.3
  • 10.8.4
2023-05-09T16:33:05.302159Z Fix available
GHSA-5pm2-9mr2-3frq
  • NuGet/Oracle.ManagedDataAccess
  • NuGet/Oracle.ManagedDataAccess.Core
  • NuGet/Oracle.ManagedDataAccess
  • NuGet/Oracle.ManagedDataAccess.Core
Component takeover in Oracle Data Provider for .NET
  • 21.3.0
  • 21.4.0
  • 21.5.0
  • 21.6.1
  • 21.7.0
  • 21.8.0
  • 3.21.1
  • ...
2023-05-05T21:54:58.031753Z Fix available
GHSA-5q7q-qqw2-hjq7
  • NuGet/AjaxNetProfessional
AjaxNetProfessional deserializes arbitrary JavaScript objects
  • 21.10.30
  • 21.11.22
  • 21.11.29
  • 21.12.21.1
  • 21.12.8.1
2023-05-05T21:48:19.368734Z Fix available
GHSA-4cvp-hr63-822j
  • NuGet/OPCFoundation.NetStandard.Opc.Ua.Core
  • NuGet/OPCFoundation.NetStandard.Opc.Ua.Server
Exposure of Sensitive Information in OPC UA .NET Standard Reference Server
  • 0.0.3
  • 0.0.6
  • 0.0.7
  • 0.0.8
  • 0.0.9
  • 0.1.0
  • 0.1.1
  • ...
2023-05-05T02:33:17.898930Z Fix available
GHSA-vpf7-r2fv-75m9
  • NuGet/OPCFoundation.NetStandard.Opc.Ua.Server
Uncontrolled Resource Consumption in OPC UA .NET Standard Reference Server
  • 1.4.363.104-preview
  • 1.4.363.107
  • 1.4.364.40
  • 1.4.365-gfc341ee8c5
  • 1.4.365.1-preview
  • 1.4.365.10
  • 1.4.365.2
  • ...
2023-05-05T02:31:03.402411Z Fix available
GHSA-8f7f-vqg5-jrv9
  • NuGet/Microsoft.NetCore.App.Runtime.linux-arm
  • NuGet/Microsoft.NetCore.App.Runtime.linux-arm64
  • NuGet/Microsoft.NetCore.App.Runtime.linux-musl-arm
  • NuGet/Microsoft.NetCore.App.Runtime.linux-musl-arm64
  • NuGet/Microsoft.NetCore.App.Runtime.linux-musl-x64
  • NuGet/Microsoft.NetCore.App.Runtime.linux-x64
  • NuGet/Microsoft.NetCore.App.Runtime.osx-arm64
  • NuGet/Microsoft.NetCore.App.Runtime.osx-x64
  • NuGet/Microsoft.NetCore.App.Runtime.win-arm
  • NuGet/Microsoft.NetCore.App.Runtime.win-arm64
  • NuGet/Microsoft.NetCore.App.Runtime.win-x64
  • NuGet/Microsoft.NetCore.App.Runtime.win-x86
.NET Denial of Service Vulnerability
  • 6.0.0
  • 6.0.1
  • 6.0.10
  • 6.0.11
  • 6.0.12
  • 6.0.2
  • 6.0.3
  • ...
2023-04-27T21:48:07.249655Z Fix available
GHSA-868x-rg4c-cjqg
  • NuGet/Apache.Avro
Allocation of Resources Without Limits or Throttling in Apache Avro
  • 1.10.0
  • 1.10.0-alpha001
  • 1.10.1
  • 1.10.2
  • 1.7.7
  • 1.7.7.1
  • 1.7.7.2
  • ...
2023-04-24T19:31:36.807500Z Fix available