Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

170 matches found

Hacker One
Hacker Oneadded 2020/01/23 9:58 p.m.85 views

GitHub Security Lab: CodeQL query to detect weak (duplicated) encryption keys for ASP.NET Telerik Upload

This bug was reported directly to GitHub Security Lab...

1.2AI score
Exploits0
Hacker One
Hacker Oneadded 2019/12/18 7:13 p.m.19 views

GitHub Security Lab: CodeQL query to detect insecure MaxLengthRequest values in ASP.NET applications

This bug was reported directly to GitHub Security Lab...

1.4AI score
Exploits0
Hacker One
Hacker Oneadded 2019/12/18 7:12 p.m.16 views

GitHub Security Lab: CodeQL query to detect pages with validationRequest disabled

This bug was reported directly to GitHub Security Lab...

1.3AI score
Exploits0
Hacker One
Hacker Oneadded 2019/12/18 7:8 p.m.12 views

GitHub Security Lab: Adds CodeQL query to check for insecure RequestValidationMode in ASP.NET

This bug was reported directly to GitHub Security Lab...

1.3AI score
Exploits0
NVD
NVDadded 2019/11/25 6:15 p.m.11 views

CVE-2019-16765

If an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension active, arbitrary code of the attacker's choosing may be executed on the user's behalf. This is fixed in version 1.0.1 of the extension. Users should upgrade to...

7.8CVSS7.5AI score0.00841EPSS
Exploits0References3
OSV
OSVadded 2019/11/25 6:15 p.m.12 views

CVE-2019-16765

If an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension active, arbitrary code of the attacker's choosing may be executed on the user's behalf. This is fixed in version 1.0.1 of the extension. Users should upgrade to...

7.8CVSS7AI score
Exploits0References3
Prion
Prionadded 2019/11/25 6:15 p.m.13 views

Design/Logic Flaw

If an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension active, arbitrary code of the attacker's choosing may be executed on the user's behalf. This is fixed in version 1.0.1 of the extension. Users should upgrade to...

6.8CVSS7.6AI score0.00841EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2019/11/25 5:41 p.m.12 views

CVE-2019-16765

If an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension active, arbitrary code of the attacker's choosing may be executed on the user's behalf. This is fixed in version 1.0.1 of the extension. Users should upgrade to...

7.4CVSS7.7AI score0.00841EPSS
Exploits0References3
CVE
CVEadded 2019/11/25 5:41 p.m.45 views

CVE-2019-16765

Vulnerability CVE-2019-16765 affects the Visual Studio Code CodeQL extension. Opening a specially prepared directory tree as a workspace while the extension is active can lead to arbitrary code execution on the user’s behalf. The issue is fixed in CodeQL extension version 1.0.1; upgrade via VS Co...

7.8CVSS7.6AI score0.00841EPSS
Exploits0References3Affected Software1
GithubExploit
GithubExploitadded 2019/11/12 1:14 a.m.12 views

Exploit for CVE-2018-11776

GitHub Security Lab This is the main git repository of GitHu...

9.8CVSS7.9AI score0.94431EPSS
Exploits51
Rows per page
Query Builder