Proget Security Vulnerabilities and Issues — Proget CVE List

Lucene search

InedoProget

3 matches found

CVE•added 2025/05/03 11:15 p.m.•50 views

CVE-2025-47244

Inedo ProGet through 2024.22 allows remote attackers to reach restricted functionality through the C# reflection layer, as demonstrated by causing a denial of service (when an attacker executes a loop calling RestartWeb) or obtaining potentially sensitive information. Exploitation can occur if Anon...

7.3CVSS7.2AI score0.00135EPSS

CVE•added 2018/09/26 9:29 p.m.•35 views

CVE-2017-15608

Inedo ProGet before 5.0 Beta5 has CSRF, allowing an attacker to change advanced settings.

6.5CVSS6.4AI score0.00104EPSS

CVE•added 2017/09/30 1:29 a.m.•32 views

CVE-2017-14944

Inedo ProGet before 4.7.14 does not properly address dangerous package IDs during package addition, aka PG-1060.

7.5CVSS7.5AI score0.00241EPSS