Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-33gv-rvgq-gpxp
  • NuGet/BTCPayServer.Client
HTML injections in BTCPayServer
  • 1.0.4.2
  • 1.0.4.3
  • 1.0.4.4
  • 1.0.4.5
  • 1.0.4.6
  • 1.0.4.7
  • 1.0.4.8
  • ...
2023-02-04T00:35:56.833580Z Fix available
GHSA-cmhx-cq75-c4mj
  • NuGet/System.Text.RegularExpressions
Regular Expression Denial of Service in System.Text.RegularExpressions
  • 4.3.0
2023-02-03T21:01:15.958669Z Fix available
GHSA-77rm-9x9h-xj3g
  • NuGet/Google.Protobuf
  • Packagist/google/protobuf
  • Maven/com.google.protobuf:protobuf-parent
  • Go/github.com/protocolbuffers/protobuf
  • PyPI/protobuf
NULL Pointer Dereference in Protocol Buffers
  • 0.0.1-test1
  • 3.0.0
  • 3.0.0-alpha4
  • 3.0.0-beta2
  • 3.0.0-beta3
  • 3.0.0-beta4
  • 3.1.0
  • ...
2023-02-03T06:03:30.309657Z Fix available
GHSA-8xc6-g8xw-h2c4
  • NuGet/Yarp.ReverseProxy
  • NuGet/Yarp.ReverseProxy
YARP Denial of Service Vulnerability
  • 1.0.0
  • 1.1.0-rc.1.22152.1
2023-02-03T06:01:29.691697Z Fix available
GHSA-5frh-8cmj-gc59
  • NuGet/System.Management.Automation
  • NuGet/System.Management.Automation
System.Management.Automation subject to bypass via script debugging
  • 6.2.0
  • 6.2.1
  • 6.1.1
  • 6.1.2
  • 6.1.3
  • 6.1.4
2023-02-03T05:57:59.196004Z Fix available
GHSA-jhx3-2w5x-x39x
  • NuGet/Microsoft.ChakraCore
Microsoft.ChakraCore vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2023-02-03T05:57:58.299072Z Fix available
GHSA-3wcj-rg8q-9cqv
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.Mvc.Core
Open redirect in ASP.NET Core
  • 2.0.0
  • 2.0.0
2023-02-03T05:57:54.641131Z Fix available
GHSA-gcx5-3p5f-f8vp
  • NuGet/jquery.cookie
Prototype Pollution in jquery.cookie
  • 1.0.0
  • 1.3.1
  • 1.4.0
  • 1.4.1
2023-02-03T05:57:48.862354Z No fix available
GHSA-5633-f33j-c6f7
  • NuGet/Microsoft.NETCore.App
Tampering vulnerability in .NET Core
  • 2.1.0
  • 2.1.1
  • 2.1.2
  • 2.1.3
  • 2.1.4
  • 2.1.5
  • 2.1.6
2023-02-03T05:57:44.793624Z Fix available
GHSA-7mfr-774f-w5r9
  • NuGet/System.Security.Cryptography.X509Certificates
  • NuGet/Microsoft.NETCore.App
Improper Certificate Validation
  • 4.1.0
  • 4.1.0-rc2-24027
  • 4.1.1
  • 1.0.0
  • 1.0.1
  • 1.0.10
  • 1.0.11
  • ...
2023-02-03T05:57:15.772013Z Fix available
GHSA-prrf-397v-83xh
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.Server.IIS
  • NuGet/Microsoft.AspNetCore.Server.HttpSys
  • NuGet/Microsoft.AspNetCore.Server.HttpSys
Open redirect in ASP.NET Core
  • 2.2.0
  • 2.2.1
  • 2.2.2
  • 2.2.3
  • 2.2.4
  • 2.2.5
  • 2.1.0
  • ...
2023-02-03T05:57:01.648223Z Fix available
GHSA-xhfc-gr8f-ffwc
  • NuGet/System.Private.Uri
Denial of service in ASP.NET Core
  • 4.3.0
  • 4.3.1
2023-02-03T05:56:51.336351Z Fix available
GHSA-mx3q-j2g2-5qxq
  • NuGet/Nancy
  • NuGet/Nancy
Deserialization of Untrusted Data in NancyFX Nancy
  • 0.10.0
  • 0.11.0
  • 0.12.0
  • 0.12.1
  • 0.13.0
  • 0.14.0
  • 0.14.1
  • ...
2023-02-03T05:56:51.110745Z Fix available
GHSA-r8hp-5m7c-jhv4
  • NuGet/OrchardCore.Application.Cms.Targets
Cross-site Scripting OrchardCore.Application.Cms.Targets
  • 1.0.0
  • 1.0.0-beta1-3383
  • 1.0.0-beta1-3667
  • 1.0.0-beta2-67531
  • 1.0.0-beta2-67581
  • 1.0.0-beta2-67846
  • 1.0.0-beta2-69590
  • ...
2023-02-03T05:56:49.396105Z Fix available
GHSA-hxrm-9w7p-39cc
  • NuGet/Microsoft.AspNetCore.Http
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.Owin
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-arm
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-musl-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.osx-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-arm
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-x86
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-arm64
Cookie parsing failure
  • 0.0.1-alpha
  • 1.0.0
  • 1.0.0-rc2-final
  • 1.0.1
  • 1.0.2
  • 1.0.3
  • 1.0.4
  • ...
2023-02-03T05:56:48.764579Z Fix available
GHSA-958r-g534-ccmr
  • NuGet/MadsKristensen.AspNetCore.Miniblog
MadsKristensen.AspNetCore.Miniblog subject to Improper Input Validation
  • 1.0.0
  • 1.0.1
  • 1.0.2
  • 1.0.3
2023-02-03T05:56:37.784822Z No fix available