nuget
744,963 packages · nuget.org
Moderate Security Advisories for https://github.com/umbraco/Umbraco-CMS in nuget Clear Filters
Moderate
2 months ago
Umbraco Delivery API allows for cached requests to be returned with an invalid API key
nuget
Umbraco.Cms.Api.Delivery
Moderate
4 months ago
Umbraco Vulnerable to By-Pass of Configured Allowed Extensions for File Uploads
nuget
Umbraco.Cms
Moderate
5 months ago
Umbraco Makes User Enumeration Feasible Based on Timing of Login Response
nuget
Umbraco.Cms
Moderate
7 months ago
Umbraco Allows a Restricted Editor User to Delete Media Item or Access Unauthorized Content
nuget
Umbraco.Cms.Web.Backoffice
Moderate
7 months ago
Umbraco Allows Improper API Access Control to Low-Privilege Users to Data Type Functionality
nuget
Umbraco.Cms.Api.Management
Moderate
8 months ago
Umbraco Allows User Enumeration Feasible Based On Management API Timing and Response Codes
nuget
Umbraco.Cms
Moderate
8 months ago
XSS/HTML Injection Vulnerability in Umbraco Backoffice Components
npm, nuget
@umbraco-cms/backoffice, Umbraco.Cms.StaticAssets
Moderate
11 months ago
Umbraco CMS Has Incomplete Server Termination During Explicit Sign-Out
nuget
Umbraco.CMS
Moderate
11 months ago
Umbraco has a Potential Code Execution Risk When Viewing SVG Files in Full Screen in Backoffice
nuget
Umbraco.Cms, UmbracoCms
Moderate
11 months ago
Umbraco CMS logout page displayed before session expiration
nuget
UmbracoCMS, Umbraco.CMS
Moderate
11 months ago
Umbraco CMS vulnerable to stored Cross-site Scripting in the "dictionary name" on Dictionary section
npm, nuget
@umbraco-cms/backoffice, Umbraco.Cms.StaticAssets
Moderate
about 1 year ago
Umbraco CMS vulnerable to Generation of Error Message Containing Sensitive Information
nuget
Umbraco.Cms.Api.Management
Moderate
over 1 year ago
Umbraco CMS Vulnerable to Stored XSS on Content Page Through Markdown Editor Preview Pane
nuget
UmbracoCms.Core
Moderate
over 1 year ago
Umbraco CMS Open Redirect Bypass Protection
nuget
Umbraco.Cms.Web.BackOffice, UmbracoCms.Core
Moderate
over 1 year ago
Blind SSRF Leads to Port Scan by using Webhooks
nuget
Umbraco.Cms.Web.BackOffice, Umbraco.Cms.Core
Filter by Severity
Filter by Package
DotNetNuke.Core
17
TinyMCE
11
tinymce
11
tinymce/tinymce
11
Microsoft.ChakraCore
8
Umbraco.Cms
7
org.webjars.npm:jquery-ui
7
jquery-ui
7
jQuery.UI.Combined
7
Microsoft.NETCore.App.Runtime.linux-musl-x64
5
Microsoft.NETCore.App.Runtime.linux-x64
5
Microsoft.NETCore.App.Runtime.linux-musl-arm64
5
Microsoft.NETCore.App.Runtime.linux-musl-arm
5
Microsoft.NETCore.App.Runtime.linux-arm64
5
Microsoft.NETCore.App.Runtime.linux-arm
5
bootstrap
5
jquery
5
jQuery
5
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.osx-x64
4
Microsoft.NETCore.App.Runtime.win-x64
4
bootstrap
4
SixLabors.ImageSharp
4
Microsoft.NETCore.App.Runtime.Mono.LLVM.linux-arm64
4
Microsoft.NETCore.App.Runtime.win-x86
4
UmbracoCms
4
Microsoft.NETCore.App.Runtime.Mono.linux-musl-x64
4
Microsoft.NETCore.App.Runtime.Mono.linux-x64
4
Microsoft.NETCore.App.Runtime.Mono.LLVM.osx-x64
4
Umbraco.CMS
4
org.webjars.npm:jquery
4
Microsoft.NETCore.App
4
Microsoft.AspNetCore.All
4
Microsoft.NETCore.App.Runtime.osx-x64
4
Microsoft.NETCore.App.Runtime.Mono.osx-x64
4
Microsoft.NETCore.App.Runtime.Mono.linux-arm64
4
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.linux-x64
4
Microsoft.NETCore.App.Runtime.win-arm64
4
bootstrap
4
Microsoft.NETCore.App.Runtime.win-arm
4
Piranha
4
OPCFoundation.NetStandard.Opc.Ua.Core
4
Microsoft.NETCore.App.Runtime.Mono.linux-arm
4
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.linux-arm64
4
Microsoft.NETCore.App.Runtime.Mono.LLVM.linux-x64
4
OPCFoundation.NetStandard.Opc.Ua
4
bootstrap-sass
3
Microsoft.AspNetCore.App
3
jquery-ui-rails
3
bootstrap-sass
3
jquery-rails
3
org.webjars:bootstrap
3
SSCMS
3
bootstrap.sass
3
UmbracoCms.Core
3
twbs/bootstrap
3
SharpZipLib
3
Serenity.Net.Core
3
Microsoft.AspNetCore.App.Runtime.win-arm
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.maccatalyst-x64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.iossimulator-x64
2
System.Net.Http
2
Microsoft.NetCore.App.Runtime.win-arm
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.android-arm64
2
Microsoft.AspNetCore.App.Runtime.linux-arm64
2
Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.browser-wasm
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-arm64.Msi.x64
2
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
2
Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm
2
sharpcompress
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-arm
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-x64
2
Microsoft.AspNetCore.Mvc
2
Microsoft.AspNetCore.Mvc.Abstractions
2
Microsoft.AspNetCore.Mvc.Formatters.Xml
2
Umbraco.Cms.Api.Management
2
Microsoft.AspNetCore.Server.Kestrel.Core
2
Microsoft.NetCore.App.Runtime.linux-x64
2
Microsoft.NetCore.App.Runtime.linux-musl-arm64
2
FormCMS
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-arm64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.browser-wasm
2
Snowflake.Data
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-x64.Msi.x64
2
Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x64
2
System.Net.Security
2
ServiceStack
2
Microsoft.AspNetCore.App.Runtime.linux-arm
2
DotNetNuke.Web
2
System.Net.WebSockets.Client
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.tvossimulator-x64
2
Microsoft.AspNetCore.Mvc.DataAnnotations
2
Azure.Identity
2
Microsoft.AspNetCore.App.Runtime.win-x64
2
OrchardCore
2
Microsoft.NETCore.App.Runtime.rhel.6-x64
2
IdentityServer4
2
NuGet.Commands
2
Microsoft.AspNetCore.App.Runtime.win-x86
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.ios-arm64
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-x86
2
MessagePack
2
Microsoft.NETCore.App.Runtime.browser-wasm
2
BouncyCastle.Cryptography
2
Microsoft.AspNetCore.Mvc.Cors
2
OPCFoundation.NetStandard.Opc.Ua.Server
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.android-arm
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.tvossimulator-arm64
2
Microsoft.AspNetCore.App.Runtime.osx-arm64
2
Umbraco.Cms.StaticAssets
2
Microsoft.NetCore.App.Runtime.osx-x64
2
Microsoft.NetCore.App.Runtime.linux-musl-x64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.iossimulator-arm64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.android-x64
2
Microsoft.AspNetCore.Mvc.Localization
2
Microsoft.AspNetCore.Mvc.Formatters.Json
2
Microsoft.NetCore.App.Runtime.win-x64
2
Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x86
2
Microsoft.AspNetCore.Mvc.Core
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.tvos-arm64
2
Microsoft.NETCore.App.Runtime.AOT.win-x64.Cross.android-arm.Msi.x64
2
System.Text.Encodings.Web
2
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
2
Microsoft.NetCore.App.Runtime.linux-musl-arm
2
Microsoft.AspNetCore.Mvc.ApiExplorer
2
Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.ios-arm
2
Microsoft.NetCore.App.Runtime.win-x86
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.android-x86
2
Microsoft.NetCore.App.Runtime.linux-arm64
2
DNN.PLATFORM
2
BouncyCastle
2
Microsoft.NetCore.App.Runtime.win-arm64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.maccatalyst-arm64
2
Microsoft.NetCore.App.Runtime.linux-arm
2
Microsoft.AspNetCore.App.Runtime.win-arm64
2
Microsoft.AspNetCore.App.Runtime.osx-x64
2
Microsoft.AspNetCore.App.Runtime.linux-x64
2
Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.iossimulator-x86
2
System.Net.Http.WinHttpHandler
2
Bootstrap.Less
2
Microsoft.NetCore.App.Runtime.osx-arm64
2
@umbraco-cms/backoffice
2
Umbraco.Cms.Web.BackOffice
2
Microsoft.AspNetCore.App.Runtime.linux-musl-arm
2
OWASP.AntiSamy
1
log4net
1
ZKEACMS.Publisher
1
CouchbaseNetClient
1
Magick.NET-Q8-x86
1
Magick.NET-Q16-AnyCPU
1
mongodb.driver
1
django
1
net.sf.mpxj
1
Microsoft.PowerBI.JavaScript
1
Umbraco.Cms.Api.Delivery
1
Umbraco.Cms.Web.Backoffice
1
@serenity-is/corelib
1
com.azure:azure-identity
1
CefSharp.Wpf.HwndHost
1
Magick.NET-Q16-HDRI-x86
1
org.bouncycastle:bctls-jdk15to18
1
Microsoft.NETCore.App.Runtime.ios-x64
1
Magick.NET-Q16-x64
1
Microsoft.Rest.ClientRuntime
1
HtmlSanitizer
1
Microsoft.NETCore.App.Runtime.ios-arm
1
pubnub
1
CuteEditor
1
Microsoft.NETCore.App.Host.linux-arm
1
Serilog.Enrichers.ClientInfo
1
System.ServiceModel.Primitives
1
Magick.NET-Q16-HDRI-x64
1
Magick.NET-Q16-OpenMP-arm64
1
System.IdentityModel.Tokens.Jwt
1
Microsoft.NETCore.App.Runtime.Mono.android-arm
1
commondatamodel-objectmodel
1
Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv
1
org.bouncycastle:bctls-jdk18on
1
ICG.AspNetCore.Utilities.CloudStorage
1
Serenity.Net.Web
1
Microsoft.NETCore.App.Runtime.android-arm
1
tshock
1
Microsoft.NETCore.App.Host.linux-x64
1
Magick.NET-Q8-x64
1
Microsoft.AspNetCore.Server.IIS
1
FullStackHero.WebAPI.Boilerplate
1
Microsoft.NETCore.App.Host.rhel.6-x64
1
MPXJ.Net
1
@azure/identity
1
compu-brotli-sys
1
org.bouncycastle:bcprov-jdk18on
1
Magick.NET-Q16-HDRI-AnyCPU
1
Magick.NET-Q16-HDRI-OpenMP-arm64
1
net.sf.mpxj-for-csharp
1
Microsoft.AspNetCore.Mvc.ViewFeatures
1
azure-storage-blob
1
Microsoft.AspNetCore.Mvc.WebApiCompatShim
1
umbraco
1
Bunkum
1
Microsoft.NETCore.App.Host.linux-musl-arm64
1
Filter by Repository
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/tinymce/tinymce
11
https://github.com/dnnsoftware/Dnn.Platform
9
https://github.com/dotnet/runtime
8
https://github.com/chakra-core/ChakraCore
7
https://github.com/jquery/jquery
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/github/advisory-database
6
https://github.com/jquery/jquery-ui
6
https://github.com/PiranhaCMS/piranha.core
4
https://github.com/SixLabors/ImageSharp
4
https://github.com/dotnet/aspnetcore
3
https://github.com/twbs/bootstrap
3
https://github.com/icsharpcode/SharpZipLib
3
https://github.com/open-telemetry/opentelemetry-dotnet
2
https://github.com/snowflakedb/snowflake-connector-net
2
https://github.com/orchardcms/orchardcore
2
https://github.com/FormCms/FormCms
2
https://github.com/bcgit/bc-csharp
2
https://github.com/adamhathcock/sharpcompress
2
https://github.com/serenity-is/Serenity
2
https://github.com/ServiceStack/ServiceStack
2
https://github.com/DuendeSoftware/IdentityServer
2
https://github.com/Azure/azure-sdk-for-net
2
https://github.com/siteserver/cms
2
https://github.com/microsoft/DirectXTex
1
https://github.com/DuendeSoftware/Duende.AccessTokenManagement
1
https://github.com/SeriaWei/ZKEACMS
1
https://github.com/dnnsoftware/dnn.platform
1
https://github.com/spassarop/antisamy-dotnet
1
https://github.com/umbraco/Umbraco.Forms.Issues
1
https://github.com/restsharp/RestSharp
1
https://github.com/dotnet/corefx
1
https://github.com/neuecc/MessagePack-CSharp
1
https://github.com/umbraco/Umbraco.Workflow.Issues
1
https://github.com/mongodb/mongo-csharp-driver
1
https://github.com/umbraco/Umbraco.Commerce.Issues
1
https://github.com/couchbase/couchbase-net-client
1
https://github.com/joniles/mpxj
1
https://github.com/mganss/HtmlSanitizer
1
https://github.com/AzureAD/microsoft-identity-web
1
https://github.com/pentesttoolscom/vulnerability-research
1
https://github.com/LittleBigRefresh/Bunkum
1
https://github.com/Sustainsys/Saml2
1
https://github.com/oqtane/oqtane.framework
1
https://github.com/haf/DotNetZip.Semverd
1
https://github.com/MessagePack-CSharp/MessagePack-CSharp
1
https://github.com/DuendeSoftware/foss
1
https://github.com/ImageMagick/ImageMagick
1
https://github.com/michaelschwarz/Ajax.NET-Professional
1
https://github.com/OrchardCMS/OrchardCore
1
https://github.com/Devolutions/XTS.NET
1
https://github.com/MichaelGrafnetter/DSInternals
1
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet
1
https://github.com/NuGet/Home
1
https://github.com/Pryaxis/TShock
1
https://github.com/dub-flow/vulnerability-research
1
https://github.com/akkadotnet/akka.net
1
https://github.com/google/brotli
1
https://github.com/cefsharp/CefSharp
1
https://github.com/pubnub/javascript
1
https://github.com/apache/logging-log4net
1
https://github.com/PowerShell/PowerShell
1
https://github.com/Aiko-IT-Systems/DisCatSharp
1
https://github.com/SeppPenner/WindowsHello
1
https://github.com/sshnet/NET
1
https://github.com/serilog-contrib/serilog-enrichers-clientinfo
1
https://gitlab.com/eLeN3Re/cve-2020-9472
1
https://github.com/OPCFoundation/UA-.NET-Legacy
1
https://github.com/NuGet/NuGet.Client
1
https://github.com/Azure/azure-sdk-for-go
1
https://github.com/kubernetes/kubernetes
1
https://github.com/IowaComputerGurus/aspnetcore.utilities.cloudstorage
1
https://github.com/snapappointments/bootstrap-select
1