nuget
751,396 packages · nuget.org
Critical Security Advisories in nuget Clear Filters
Critical
5 days ago
DNN Insufficient Access Control - Image Upload allows for Site Content Overwrite
nuget
DNN.PLATFORM
Critical
18 days ago
Apache ActiveMQ NMS AMQP Client has a Deserialization of Untrusted Data vulnerability
nuget
Apache.NMS.AMQP
Critical
20 days ago
Microsoft Security Advisory CVE-2025-55315: .NET Security Feature Bypass Vulnerability
nuget
Microsoft.AspNetCore.App.Runtime.linux-musl-arm, Microsoft.AspNetCore.App.Runtime.linux-arm64, Microsoft.AspNetCore.App.Runtime.linux-arm, Microsoft.AspNetCore.App.Runtime.win-x86, Microsoft.AspNetCore.App.Runtime.win-x64, Microsoft.AspNetCore.App.Runtime.win-arm64, Microsoft.AspNetCore.App.Runtime.win-arm, Microsoft.AspNetCore.App.Runtime.osx-x64, Microsoft.AspNetCore.App.Runtime.osx-arm64, Microsoft.AspNetCore.App.Runtime.linux-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
Critical
27 days ago
Akka.Remote TLS did not properly implement certificate-based authentication
nuget
Akka.Cluster, Akka.Remote
Critical
about 1 month ago
DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module
nuget
DotNetNuke.Core
Critical
6 months ago
YoutubeDLSharp allows command injection on windows system due to non sanitized arguments
nuget
YoutubeDLSharp
Critical
7 months ago
Apache ActiveMQ NMS OpenWire Client Deserialization of Untrusted Data vulnerability
nuget
Apache.NMS.ActiveMQ
Critical
9 months ago
AspNetCore Remote Authenticator for CIE3.0 Allows SAML Response Signature Verification Bypass
nuget
CIE.AspNetCore.Authentication
Critical
9 months ago
The AspNetCore Remote Authenticator for SPID Allows SAML Response Signature Verification Bypass
nuget
SPID.AspNetCore.Authentication
Critical
12 months ago
CRLF injection in Refit's [Header], [HeaderCollection] and [Authorize] attributes
nuget
Refit
Critical
over 1 year ago
Microsoft Security Advisory CVE-2024-35264 | .NET Remote Code Execution Vulnerability
nuget
Microsoft.AspNetCore.App.Runtime.win-x86, Microsoft.AspNetCore.App.Runtime.win-x64, Microsoft.AspNetCore.App.Runtime.win-arm64, Microsoft.AspNetCore.App.Runtime.win-arm, Microsoft.AspNetCore.App.Runtime.osx-x64, Microsoft.AspNetCore.App.Runtime.osx-arm64, Microsoft.AspNetCore.App.Runtime.linux-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm, Microsoft.AspNetCore.App.Runtime.linux-arm64, Microsoft.AspNetCore.App.Runtime.linux-arm
Critical
over 1 year ago
NuGet Client Security Feature Bypass Vulnerability
nuget
NuGet.Packaging, NuGet.CommandLine
Critical
over 1 year ago
Microsoft Security Advisory CVE-2024-21386: .NET Denial of Service Vulnerability
nuget
Microsoft.AspNetCore.App.Runtime.win-x86, Microsoft.AspNetCore.App.Runtime.win-x64, Microsoft.AspNetCore.App.Runtime.win-arm64, Microsoft.AspNetCore.App.Runtime.win-arm, Microsoft.AspNetCore.App.Runtime.osx-x64, Microsoft.AspNetCore.App.Runtime.osx-arm64, Microsoft.AspNetCore.App.Runtime.linux-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm, Microsoft.AspNetCore.App.Runtime.linux-arm64, Microsoft.AspNetCore.App.Runtime.linux-arm
Critical
about 2 years ago
CefSharp affected by heap buffer overflow in WebP
nuget
CefSharp.Common.NETCore, CefSharp.Common
Critical
over 2 years ago
Dynamic Linq vulnerable to remote code execution
nuget
System.Linq.Dynamic.Core
Critical
about 3 years ago
Orckestra C1 CMS's deserialization of untrusted data allows for arbitrary code execution.
nuget
CompositeC1.Core
Critical
about 3 years ago
Use of Hard-coded Credentials in AgileConfig.Client
nuget
AgileConfig.Client
Critical
over 3 years ago
QuantConnect Lean vulnerable to insecure deserialization
nuget
QuantConnect.Common
Critical
over 3 years ago
Jasig Java CAS Client, .NET CAS Client, and phpCAS contain URL parameter injection vulnerability
packagist, maven, nuget
jasig/phpcas, org.jasig.cas:cas-client, DotNetCasClient
Critical
over 3 years ago
Deserialization of Untrusted Data in SinGooCMS.Utility
nuget
SinGooCMS.Utility
Critical
almost 4 years ago
Improper Verification of Cryptographic Signature in starkbank-ecdsa
nuget
starkbank-ecdsa
Critical
over 4 years ago
.NET Core Remote Code Execution Vulnerability
nuget
System.Text.Encodings.Web
Critical
over 6 years ago
MadsKristensen.AspNetCore.Miniblog subject to Improper Input Validation
nuget
MadsKristensen.AspNetCore.Miniblog
Critical
over 6 years ago
Critical severity vulnerability that affects Auth0-WCF-Service-JWT
nuget
Auth0-WCF-Service-JWT
Critical
about 7 years ago
The installation wizard in DotNetNuke (DNN) allows privilege escalation
nuget
DotNetNuke.Core
Critical
about 7 years ago
Critical severity vulnerability that affects recurly-api-client
nuget
recurly-api-client
Filter by Severity
Filter by Package
Microsoft.ChakraCore
5
Microsoft.AspNetCore.App.Runtime.linux-arm
3
Microsoft.AspNetCore.App.Runtime.linux-x64
3
Microsoft.AspNetCore.App.Runtime.osx-x64
3
Microsoft.AspNetCore.App.Runtime.osx-arm64
3
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
3
Microsoft.AspNetCore.App.Runtime.win-arm64
3
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
3
Microsoft.AspNetCore.App.Runtime.win-x64
3
Microsoft.AspNetCore.App.Runtime.win-x86
3
Microsoft.AspNetCore.App.Runtime.linux-arm64
3
Microsoft.AspNetCore.App.Runtime.linux-musl-arm
3
Microsoft.AspNetCore.App.Runtime.win-arm
3
AjaxNetProfessional
2
DotNetNuke.Core
2
IpMatcher
1
YoutubeDLSharp
1
Halibut
1
System.Text.Encodings.Web
1
log4net
1
Blogifier.Core
1
SinGooCMS.Utility
1
CIE.AspNetCore.Authentication
1
CompositeC1.Core
1
Apache.NMS.ActiveMQ
1
DNS
1
Autoupdater.NET.Official
1
adplug
1
Csla
1
recurly-api-client
1
NuGet.Packaging
1
QuantConnect.Common
1
LiteDB
1
Akka.Cluster
1
MadsKristensen.AspNetCore.Miniblog
1
RazorEngine
1
elFinder.NetCore
1
jasig/phpcas
1
SPID.AspNetCore.Authentication
1
DNN.PLATFORM
1
Nancy
1
System.Linq.Dynamic.Core
1
starkbank-ecdsa
1
Akka.Remote
1
DotNetCasClient
1
org.jasig.cas:cas-client
1
Refit
1
curl
1
Wire
1
FastReport.OpenSource
1
Apache.NMS.AMQP
1
Auth0-WCF-Service-JWT
1
CefSharp.Common.NETCore
1
NuGet.CommandLine
1
System.Drawing.Common
1
CefSharp.Common
1
System.Formats.Nrbf
1
NewRelic.Agent
1
AgileConfig.Client
1
Filter by Repository
https://github.com/chakra-core/ChakraCore
3
https://github.com/dotnet/aspnetcore
3
https://github.com/michaelschwarz/Ajax.NET-Professional
2
https://github.com/Microsoft/ChakraCore
2
https://github.com/dnnsoftware/Dnn.Platform
2
https://github.com/cefsharp/CefSharp
1
https://github.com/FastReports/FastReport
1
https://github.com/Jasig/phpCAS
1
https://github.com/blogifierdotnet/Blogifier
1
https://github.com/NancyFx/Nancy
1
https://github.com/italia/cie-aspnetcore
1
https://github.com/adplug/adplug
1
https://github.com/SinGooCMS/SinGooCMSUtility
1
https://github.com/akkadotnet/akka.net
1
https://github.com/kapetan/dns
1
https://github.com/zzzprojects/System.Linq.Dynamic.Core
1
https://github.com/QuantConnect/Lean
1
https://github.com/gordon-matt/elFinder.NetCore
1
https://github.com/dotnet/runtime
1
https://github.com/jchristn/IpMatcher
1
https://github.com/mbdavid/LiteDB
1
https://github.com/Orckestra/C1-CMS-Foundation
1
https://github.com/recurly/recurly-client-net
1
https://github.com/italia/spid-aspnetcore
1
https://github.com/apache/activemq-nms-openwire
1
https://github.com/MarimerLLC/csla
1
https://github.com/ravibpatel/AutoUpdater.NET
1
https://github.com/Bluegrams/YoutubeDLSharp
1
https://github.com/Antaris/RazorEngine
1
https://github.com/reactiveui/refit
1
https://github.com/NuGet/NuGet.Client
1
https://github.com/dotnetcore/AgileConfig
1
https://github.com/starkbank/ecdsa-dotnet
1
https://github.com/AsynkronIT/Wire
1
https://github.com/madskristensen/Miniblog.Core
1