Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Nugetgallery
(Microsoft)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 2 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2020-06-09 | CVE-2020-1340 | A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'. | Nugetgallery | 5.4 | ||
2024-10-01 | CVE-2024-47604 | NuGet Gallery is a package repository that powers nuget.org. The NuGetGallery has a security vulnerability in its handling of HTML element attributes, which allows an attacker to execute arbitrary HTML or Javascript code in a victim's browser. | Nugetgallery | 6.1 |