Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-cgpw-2gph-2r9g
  • NuGet/Microsoft.AspNetCore.Server.Kestrel.Core
  • NuGet/Microsoft.AspNetCore.All
  • NuGet/Microsoft.AspNetCore.App
  • NuGet/Microsoft.AspNetCore.Server.Kestrel.Core
  • NuGet/Microsoft.AspNetCore.All
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.App, and Microsoft.AspNetCore.Server.Kestrel.Core
  • 2.0.0
  • 2.0.1
  • 2.0.2
  • 2.0.3
  • 2.0.0
  • 2.0.3
  • 2.0.5
  • ...
2022-06-10T02:17:33.231733Z Fix available
GHSA-mvvp-gwgc-5hrp
  • NuGet/elFinder.Net.Core
Path Traversal in elFinder.Net.Core
  • 1.0.0
  • 1.0.1
  • 1.0.2
  • 1.0.3
  • 1.0.4
  • 1.1.0
  • 1.1.1
  • ...
2022-06-10T02:17:32.998062Z Fix available
GHSA-ph3v-2hq5-5qfq
  • NuGet/RazorEngine
Code injection in RazorEngine
  • 2.1.0
  • 3.0.0
  • 3.0.3
  • 3.0.4
  • 3.0.5
  • 3.0.6
  • 3.0.7
  • ...
2022-06-10T02:17:26.409636Z No fix available
GHSA-6973-94v8-5mgw
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:24.679299Z Fix available
GHSA-35hc-x2cw-2j4v
  • NuGet/System.Security.Cryptography.Xml
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents
  • 4.4.0
  • 4.4.0-preview1-25305-02
  • 4.4.0-preview2-25405-01
  • 4.4.1
2022-06-10T02:17:24.320781Z Fix available
GHSA-3w9q-c44j-37jj
  • NuGet/Microsoft.ChakraCore
High severity vulnerability that affects Microsoft.ChakraCore
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:21.755229Z Fix available
GHSA-m22m-h4rf-pwq3
  • NuGet/SharpZipLib
Path Traversal in SharpZipLib
  • 0.86.0
  • 1.0.0
  • 1.0.0-alpha1
  • 1.0.0-alpha2
  • 1.0.0-rc1
  • 1.0.0-rc2
  • 1.1.0
  • ...
2022-06-10T02:17:17.761929Z Fix available
GHSA-q99r-j969-6jwr
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.10
  • 1.11.11
  • ...
2022-06-10T02:17:16.739244Z Fix available
GHSA-x2rg-fmcv-crq5
  • NuGet/DotNetNuke.Core
DNN (aka DotNetNuke) has Remote Code Execution via a cookie
  • 6.0.0
  • 7.0.0
  • 7.0.6.121
  • 7.1.0
  • 7.1.2
  • 7.2.0.613
  • 7.3.0.499
  • ...
2022-06-10T02:17:15.447594Z Fix available
GHSA-9824-rp6m-xx9w
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:12.604125Z Fix available
GHSA-5xr5-v2h7-2w7w
  • NuGet/SSCMS
SQL injection in SiteServer CMS
  • 1.0.0-preview4
  • 7.0.0
  • 7.0.1
  • 7.0.10
  • 7.0.12
  • 7.0.2
  • 7.0.3
  • ...
2022-06-10T02:17:12.418346Z No fix available
GHSA-grvw-q343-58wh
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.10
  • 1.11.11
  • ...
2022-06-10T02:17:11.797023Z Fix available
GHSA-c9cg-q8r2-xvjq
  • NuGet/Auth0.AuthenticationApi
Improper Authentication in Auth0.AuthenticationApi
  • 5.10.0
  • 5.11.0
  • 5.8.0
  • 5.9.0
  • 6.0.0
  • 6.1.0
  • 6.2.0
  • ...
2022-06-10T02:17:11.629848Z Fix available
GHSA-4vp3-vfww-8648
  • NuGet/UmbracoCms
Incorrect permission enforcement in UmbracoCms
  • 4.10.0
  • 4.10.0-beta
  • 4.10.0-rc
  • 4.10.1
  • 4.10.1.1
  • 4.11.0
  • 4.11.1
  • ...
2022-06-10T02:17:09.264442Z Fix available
GHSA-prxj-c66c-4gcf
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.2
  • 1.11.3
  • ...
2022-06-10T02:17:04.313060Z Fix available
GHSA-2qgv-2cv4-g4cg
  • NuGet/Microsoft.ChakraCore
Out-of-bounds write in ChakraCore
  • 1.10.0
  • 1.10.1
  • 1.10.2
  • 1.11.0
  • 1.11.1
  • 1.11.10
  • 1.11.11
  • ...
2022-06-10T02:17:00.210871Z Fix available