Lucene search
K

11 matches found

Snyk
Snyk
added 2026/06/18 6:35 p.m.6 views

Unsafe Dependency Resolution

Overview @theia/task is a Theia - Task extension. This extension adds support for executing raw or terminal processes in the backend. Affected versions of this package are vulnerable to Unsafe Dependency Resolution in the processing of custom task definitions from workspace configuration files. A...

8.8CVSS6.3AI score0.00231EPSS
Exploits0References2
OSV
OSV
added 2021/04/25 3:15 a.m.20 views

CVE-2021-30502

The unofficial vscode-ghc-simple aka Simple Glasgow Haskell Compiler extension before 0.2.3 for Visual Studio Code allows remote code execution via a crafted workspace configuration with replCommand...

9.8CVSS7.9AI score
Exploits0References4
NVD
NVD
added 2021/04/25 3:15 a.m.15 views

CVE-2021-30502

The unofficial vscode-ghc-simple aka Simple Glasgow Haskell Compiler extension before 0.2.3 for Visual Studio Code allows remote code execution via a crafted workspace configuration with replCommand...

9.8CVSS0.02899EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/04/25 2:55 a.m.21 views

CVE-2021-30502

The unofficial vscode-ghc-simple aka Simple Glasgow Haskell Compiler extension before 0.2.3 for Visual Studio Code allows remote code execution via a crafted workspace configuration with replCommand...

9.9AI score0.02899EPSS
Exploits0References4
CVE
CVE
added 2021/04/25 2:55 a.m.42 views

CVE-2021-30502

The CVE-2021-30502 entry concerns the unofficial vscode-ghc-simple (Simple Glasgow Haskell Compiler) extension for Visual Studio Code. Affected component: the extension’s workspace configuration handling via replCommand, which allows remote code execution. Impact: high/severe due to remote code e...

9.8CVSS9.7AI score0.02899EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2021/04/22 12:0 a.m.21 views

Lex Li vscode-restructuredtext access control error vulnerability

Lex Li vscode-restructuredtext is a Lex Li open source application. This extension provides rich reStructuredText language support for Visual Studio Code.An access control error vulnerability exists in versions prior to Lex Li vscode-restructuredtext 146.0.0, which stems from the inclusion of an...

9.8CVSS3.8AI score0.0163EPSS
Exploits0References1
NVD
NVD
added 2021/04/20 1:15 p.m.26 views

CVE-2021-28793

vscode-restructuredtext before 146.0.0 contains an incorrect access control vulnerability, where a crafted project folder could execute arbitrary binaries via crafted workspace configuration...

9.8CVSS0.0163EPSS
Exploits0References4
OSV
OSV
added 2021/04/20 1:15 p.m.14 views

CVE-2021-28793

vscode-restructuredtext before 146.0.0 contains an incorrect access control vulnerability, where a crafted project folder could execute arbitrary binaries via crafted workspace configuration...

9.8CVSS7.4AI score
Exploits0References4
Cvelist
Cvelist
added 2021/04/16 3:50 a.m.18 views

CVE-2021-31414

The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration...

9.9AI score0.02414EPSS
Exploits0References2
NVD
NVD
added 2021/04/05 7:15 a.m.16 views

CVE-2021-28832

VSCodeVim before 1.19.0 allows attackers to execute arbitrary code via a crafted workspace configuration...

7.8CVSS0.01223EPSS
Exploits0References3
Prion
Prion
added 2021/04/05 7:15 a.m.14 views

Default configuration

The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration...

6.8CVSS7.9AI score0.01238EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder