Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1364 matches found

BDU FSTEC
BDU FSTECadded 2021/04/06 12:0 a.m.2 views

The vulnerability of the Microsoft Visual Studio Code Python Extension, related to improper code generation management, allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Microsoft Visual Studio Code Python Extension is related to improper code generation management. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

9CVSS7.2AI score0.00584EPSS
Exploits0References2
OSV
OSVadded 2021/04/05 7:15 a.m.11 views

CVE-2021-29261

The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration...

7.8CVSS7.9AI score
Exploits0References5
NVD
NVDadded 2021/04/05 7:15 a.m.13 views

CVE-2021-29261

The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration...

7.8CVSS0.01238EPSS
Exploits0References5
Prion
Prionadded 2021/04/05 7:15 a.m.12 views

Default configuration

The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration...

6.8CVSS7.9AI score0.01238EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2021/04/05 6:15 a.m.21 views

CVE-2021-29261

The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration...

8.1AI score0.01238EPSS
Exploits0References5
CVE
CVEadded 2021/04/05 6:15 a.m.36 views

CVE-2021-29261

The CVE-2021-29261 entry concerns the unofficial Svelte extension for Visual Studio Code, with versions before 104.8.0 vulnerable to arbitrary code execution via a crafted workspace configuration. The affected component is the Svelte language-tools extension used in VS Code; the root cause is not...

7.8CVSS7.9AI score0.01238EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2021/04/01 10:15 p.m.12 views

CVE-2021-21420

vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings. An attacker who successfully exploited the vulnerability could run arbitrary code in the context...

7.8CVSS7.3AI score
Exploits0References1
NVD
NVDadded 2021/04/01 10:15 p.m.9 views

CVE-2021-21420

vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings. An attacker who successfully exploited the vulnerability could run arbitrary code in the context...

7.8CVSS0.00565EPSS
Exploits0References1
Prion
Prionadded 2021/04/01 10:15 p.m.14 views

Code injection

vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings. An attacker who successfully exploited the vulnerability could run arbitrary code in the context...

6.8CVSS7.7AI score0.00565EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2021/04/01 9:40 p.m.13 views

CVE-2021-21420 Vulnerability in Stripe for Visual Studio Code < 1.7.3

vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings. An attacker who successfully exploited the vulnerability could run arbitrary code in the context...

7.5CVSS8AI score0.00565EPSS
Exploits0References1
CNNVD
CNNVDadded 2021/04/01 12:0 a.m.4 views

vscode-stripe 注入漏洞

gracegoo-stripe vscode-stripe is an open source application plugin for gracegoo-stripe.Stripe's extensions to Visual Studio Code make it easy to generate sample code, view API request logs, forward events to your application, and use Stripe in the editor. vscode-stripe has an injection...

7.8CVSS7.7AI score0.00565EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2021/04/01 12:0 a.m.2 views

PT-2021-14493 · Unknown · Vscode-Stripe

Name of the Vulnerable Software and Affected Versions: vscode-stripe affected versions not specified Description: A vulnerability exists in the Stripe for Visual Studio Code extension when it loads an untrusted source-code repository containing malicious settings. This could allow an attacker to...

7.8CVSS7.5AI score0.00565EPSS
Exploits0References4
OSV
OSVadded 2021/03/31 5:15 p.m.10 views

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

8.8CVSS7.6AI score
Exploits0References3
NVD
NVDadded 2021/03/31 5:15 p.m.14 views

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

8.8CVSS0.01243EPSS
Exploits0References3
Prion
Prionadded 2021/03/31 5:15 p.m.10 views

Design/Logic Flaw

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

6.8CVSS8.8AI score0.01243EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2021/03/31 4:58 p.m.19 views

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

9.1AI score0.01243EPSS
Exploits0References3
CVE
CVEadded 2021/03/31 4:58 p.m.40 views

CVE-2021-29658

The CVE-2021-29658 entry concerns the vscode-rufo extension for Visual Studio Code, specifically versions before 0.0.4. The vulnerability allows an attacker to execute arbitrary binaries/code when a user opens a crafted workspace folder. Concrete details across connected documents consistently de...

8.8CVSS8.8AI score0.01243EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2021/03/31 12:0 a.m.2 views

vscode-rufo 安全漏洞

vscode-rufo is a Visual Studio code through Rufo provides formatting extensions to the application. A code execution vulnerability exists in vscode-rufo in versions prior to 0.0.4, which can be exploited by an attacker to execute arbitrary code on a system...

8.8CVSS6.7AI score0.01243EPSS
Exploits0References4
BDU FSTEC
BDU FSTECadded 2021/03/30 12:0 a.m.5 views

The vulnerability of Visual Studio Code’s source editor, related to deficiencies in access control, allows attackers to execute arbitrary code.

The vulnerability of Visual Studio Code’s source editor is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.02911EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTECadded 2021/03/30 12:0 a.m.2 views

The vulnerability of the Microsoft Visual Studio Code ESLint Extension lies in the lack of protection for service data, allowing a malicious actor to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio Code ESLint Extension lies in the lack of protection for service data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.03629EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder