Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-qvhc-9v3j-5rfw
  • NuGet/System.Security.Cryptography.Cose
 Microsoft Security Advisory CVE-2026-21218 | .NET Security Feature Bypass Vulnerability 5 hours ago
  • Fix available
GHSA-2ww3-72rp-wpp4
  • NuGet/Microsoft.SemanticKernel.Core
  • PyPI/semantic-kernel
 Semantic Kernel has Arbitrary File Write via AI Agent Function Calling in .NET SDK 4 days ago
  • Fix available
  • Severity - 9.9 (Critical)
GHSA-j92c-7v7g-gj3f
  • NuGet/HtmlSanitizer
 HtmlSanitizer has a bypass via template tag 03 Feb
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-hm5p-82g6-m3xh
  • NuGet/Umbraco.Forms
 Umbraco.Forms has Path Traversal and File Enumeration Vulnerabilities in Linux/Mac 30 Jan
  • Fix available
  • Severity - 6.0 (Medium)
GHSA-w9pf-h6m6-v89h
  • NuGet/DotNetNuke.Core
 DotNetNuke.Core Vulnerable to Stored XSS via Module Title 28 Jan
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-vm5q-8qww-h238
  • NuGet/DotNetNuke.Core
 DotNetNuke.Core Vulnerable to Stored XSS in Module Deletion Confirmation Modal 28 Jan
  • Fix available
  • Severity - 7.6 (High)
GHSA-2g5g-hcgh-q3rp
  • NuGet/DotNetNuke.Core
 DotNetNuke.Core Vulnerable to Stored XSS in Scheduler LogNotes 28 Jan
  • Fix available
  • Severity - 7.6 (High)
GHSA-jjwg-4948-6wxp
  • NuGet/DotNetNuke.Core
 DotNetNuke.Core has a potential XSS vulnerability in modules' header and footer 28 Jan
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-7jxj-rpx7-ph2c
  • NuGet/Umbraco.Forms
 Umbraco.Forms CDN may cache sensitive form uploads when processed by ImageSharp 22 Jan
  • Fix available
  • Severity - 3.1 (Low)
GHSA-5vx3-wx4q-6cj8
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 14 more
 ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load 21 Jan
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-qp59-x883-77qv
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 14 more
 ImageMagick has a Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML 21 Jan
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-9vj4-wc7r-p844
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
 ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript 21 Jan
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-39h3-g67r-7g3c
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 14 more
 ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails 20 Jan
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-h66j-xm43-47pp
  • NuGet/UmbracoCms
 Umbraco CMS contains a server-side request forgery vulnerability 15 Jan
  • No fix available
  • Severity - 6.9 (Medium)
GHSA-vrgw-pc9c-qrrc
  • NuGet/UmbracoForms
 UmbracoForms Vulnerable to Remote Code Execution via Untrusted WSDL Compilation in Dynamic SOAP Client Generation 13 Jan
  • No fix available
  • Severity - 9.9 (Critical)
GHSA-9cvc-h2w8-phrp
  • NuGet/AWSSDK.Core
 AWS SDK for .NET V4 adopted defense in depth enhancement for region parameter value 09 Jan
  • Fix available
  • Severity - 3.7 (Low)
Load more...