Lucene search
K

367 matches found

CNVD
CNVD
added 2021/03/24 12:0 a.m.4 views

Unspecified vulnerability in vscode-apple-swift-format

vscode-apple-swift-format is an unofficial VS Code extension for open source. Used to format Swift code using apple / swift-format. A security vulnerability exists in versions prior to vscode-apple-swift-format 1.1.2, which can be exploited by attackers to execute arbitrary code on a system...

7.8CVSS7.8AI score0.01714EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/24 12:0 a.m.5 views

Unspecified vulnerability in vscode-swiftformat

vscode-swiftformat is open source an unofficial VS Code extension . A security vulnerability exists in versions of vscode-swiftformat prior to 1.3.7, which can be exploited by attackers to execute arbitrary code on a system...

7.8CVSS7.8AI score0.01624EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/24 12:0 a.m.7 views

Unspecified vulnerability in vscode-shellcheck

vscode-shellcheck is open source an unofficial VS Code extension . A security vulnerability exists in versions of vscode-shellcheck prior to 0.13.4, which can be exploited by an attacker to execute arbitrary code on a system...

9.8CVSS7.8AI score0.02109EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/24 12:0 a.m.7 views

Unspecified vulnerability in vscode-swiftformat (CNVD-2021-29562)

vscode-swiftformat is an open source application. Automatically organize Swift code through SwiftFormat. A security vulnerability exists in vscode-swiftformat versions prior to 2.12.1, which can be exploited by attackers to execute arbitrary code...

7.8CVSS7.6AI score0.01678EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/24 12:0 a.m.6 views

Xavier Hahn vscode-matlab 默认配置问题漏洞

Xavier Hahn vscode-matlab is an open source application by Xavier Hahn. MATLAB extension before 2.0.1 suffers from a Default Configuration Issue vulnerability that can be exploited by an attacker to execute arbitrary code via a crafted workspace...

9.8CVSS8.8AI score0.0203EPSS
Exploits0References5
OSV
OSV
added 2021/03/22 7:15 a.m.13 views

CVE-2021-28956

The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

8.8CVSS7.6AI score
Exploits0References4
NVD
NVD
added 2021/03/22 7:15 a.m.20 views

CVE-2021-28956

The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

8.8CVSS0.01539EPSS
Exploits0References4
Prion
Prion
added 2021/03/22 7:15 a.m.11 views

Code injection

UNSUPPORTED WHEN ASSIGNED The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintaine...

6.8CVSS8.8AI score0.01539EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2021/03/22 6:11 a.m.41 views

CVE-2021-28956

The CVE-2021-28956 entry covers the unofficial vscode-sass-lint extension for Visual Studio Code, vulnerable through version 1.0.7. The root issue enables an attacker to cause execution of arbitrary binaries when a user opens a crafted workspace. The affected component is the vscode-sass-lint ext...

8.8CVSS8.8AI score0.01539EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/03/22 6:11 a.m.18 views

CVE-2021-28956

The unofficial vscode-sass-lint aka Sass Lint extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

9.1AI score0.01539EPSS
Exploits0References4
CNVD
CNVD
added 2021/03/19 12:0 a.m.8 views

vscode-swiftlint code execution vulnerability

vscode-swiftlint is open source an unofficial VS Code extension . Swift styles and conventions can be implemented through SwiftLint . A code execution vulnerability exists in versions prior to vscode-swiftlint 1.4.5, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS7.9AI score0.01678EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/18 12:0 a.m.3 views

vscode-shellcheck 安全漏洞

vscode-shellcheck is open source an unofficial VS Code extension . A security vulnerability exists in versions of vscode-shellcheck prior to 0.13.4, which can be exploited by an attacker to execute arbitrary code on a system...

9.8CVSS6.3AI score0.02109EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2021/02/14 2:1 p.m.119 views

Exploit for CVE-2021-26700

RCE in NPM VSCode Extension Fixed 10th February 2021 in https...

7.8CVSS7.8AI score0.05954EPSS
Exploits2
CNVD
CNVD
added 2020/06/23 12:0 a.m.11 views

GitLab gitlab-vscode-extension injection vulnerability

GitLab gitlab-vscode-extension is a VSCode code editor extension for Gitlab from GitLab USA. A security vulnerability exists in GitLab gitlab-vscode-extension version v2.2.0. An attacker can exploit the vulnerability to execute code on a user's system...

8.6CVSS7AI score0.01201EPSS
Exploits0References1
OSV
OSV
added 2020/06/22 4:15 p.m.27 views

CVE-2020-13279

Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system...

8.6CVSS7.5AI score0.01201EPSS
Exploits0References2
NVD
NVD
added 2020/06/22 4:15 p.m.32 views

CVE-2020-13279

Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system...

8.6CVSS0.01201EPSS
Exploits0References2
Prion
Prion
added 2020/06/22 4:15 p.m.23 views

Code injection

Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system...

6.8CVSS8.8AI score0.01201EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/06/22 3:11 p.m.38 views

CVE-2020-13279

Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system...

8.6CVSS8.8AI score0.01201EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2020/04/02 12:0 a.m.6 views

@bionicmetrics/bionic (>=1.2.0 <=1.3.6), @smoosee/wakemeup (>=1.0.9 <=1.20.0) +8 more potentially affected by CVE-2020-7627 via node-key-sender (>=1.0.11 <=1.0.9)

node-key-sender NPM version =1.0.11, =1.2.0, =1.0.9, =1.5.0, =0.0.1, =1.0.0, =1.0.5, =0.9.0, =1.2.1, =1.1.0, =2.2.0 Source cves: CVE-2020-7627 Source advisory: SNYK:JS-NODEKEYSENDER-564261...

9.8CVSS7.2AI score0.04118EPSS
Exploits1
exploitpack
exploitpack
added 2020/03/17 12:0 a.m.125 views

Microsoft VSCode Python Extension - Code Execution

Microsoft VSCode Python Extension - Code Execution VSCode Python Extension Code Execution This repository contains the Proof-of-Concept of a code execution vulnerability discovered in the Visual Studio Code Python extension. TL;DR: VScode may use code from a virtualenv found in the project folder...

0.4AI score
Exploits0
Rows per page
Query Builder