PT-2021-14493 · Unknown · Vscode-Stripe

Name of the Vulnerable Software and Affected Versions: vscode-stripe affected versions not specified Description: A vulnerability exists in the Stripe for Visual Studio Code extension when it loads an untrusted source-code repository containing malicious settings. This could allow an attacker to...

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

Design/Logic Flaw

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

CVE-2021-29658

The CVE-2021-29658 entry concerns the vscode-rufo extension for Visual Studio Code, specifically versions before 0.0.4. The vulnerability allows an attacker to execute arbitrary binaries/code when a user opens a crafted workspace folder. Concrete details across connected documents consistently de...

CVE-2021-29658

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder...

vscode-rufo 安全漏洞

vscode-rufo is a Visual Studio code through Rufo provides formatting extensions to the application. A code execution vulnerability exists in vscode-rufo in versions prior to 0.0.4, which can be exploited by an attacker to execute arbitrary code on a system...

Jonathan Carter gistpad 安全漏洞

Jonathan Carter gistpad is an application open-sourced by Jonathan Carter. A Visual Studio Code extension that makes it easy to edit GitHub Gist and repositories from your favorite editor. A security vulnerability exists in GistPad before 0.2.7 that allows a crafted workspace folder to change the...

The vulnerability of the Microsoft Visual Studio Code ESLint Extension lies in the lack of protection for service data, allowing a malicious actor to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio Code ESLint Extension lies in the lack of protection for service data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of Visual Studio Code’s source editor, related to deficiencies in access control, allows attackers to execute arbitrary code.

The vulnerability of Visual Studio Code’s source editor is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Microsoft Visual Studio Code Code Injection Vulnerability

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code injection vulnerability in Microsoft Visual Studio Code unofficial C/C++ Advanced Lint extension prior to version 1.9.0 can be exploited by an attacker to execute arbitrary binaries when a user opens a carefully...

CVE-2021-28967

The unofficial MATLAB extension before 2.0.1 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings...

CVE-2021-28967

The unofficial MATLAB extension before 2.0.1 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings...

CVE-2021-28967

The CVE concerns the unofficial MATLAB extension for Visual Studio Code prior to version 2.0.1. The underlying issue is in lint configuration settings that allow an attacker to execute arbitrary code via a crafted workspace. Reported impact in the sources indicates remote code execution with high...

CVE-2021-28967

The unofficial MATLAB extension before 2.0.1 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings...

PT-2021-18005 · Unknown · Matlab Extension For Visual Studio Code

Name of the Vulnerable Software and Affected Versions: MATLAB extension for Visual Studio Code versions prior to 2.0.1 Description: The issue allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings. This is due to a problem in the unofficial MATLA...

Code injection

UNSUPPORTED WHEN ASSIGNED The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintaine...

CVE-2021-28956

The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

Microsoft Visual Studio Code 安全漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft Corporation USA. A security vulnerability in Microsoft Visual Studio Code vscode-sass-lint 1.0.7 allows an attacker to execute arbitrary binaries when a user opens a crafted workspace...

CVE-2021-28953

The unofficial C/C++ Advanced Lint extension before 1.9.0 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted repository...