cube-soft / cube.net Goto Github PK
View Code? Open in Web Editor NEWCubeRSS Reader and network utilities for Cube projects
Home Page: https://www.cube-soft.jp/cuberssreader/
License: Apache License 2.0
CubeRSS Reader and network utilities for Cube projects
Home Page: https://www.cube-soft.jp/cuberssreader/
License: Apache License 2.0
Internal implementation package not meant for direct consumption. Please do not reference directly....
Library home page: https://api.nuget.org/packages/system.private.uri.4.3.0.nupkg
Path to vulnerable library: /packages/system.private.uri/4.3.0/system.private.uri.4.3.0.nupkg
Dependency Hierarchy:
Found in HEAD commit: 3b779dff33329123519e7803eacab63fe19606d1
A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'.
Publish Date: 2019-03-05
URL: CVE-2019-0657
Base Score Metrics:
Type: Upgrade version
Origin: https://github.com/dotnet/corefx/issues/35265
Release Date: 2018-11-26
Fix Resolution: Microsoft.NETCore.App.nupkg - 2.1.8,2.2.2;System.Private.Uri.nupkg - 4.3.1
Step up your Open Source Security Game with WhiteSource here
An open source code coverage tool (branch and sequence point) for all .NET Frameworks 2 and above. A...
Library home page: https://api.nuget.org/packages/opencover.4.7.922.nupkg
Path to dependency file: /tmp/ws-scm/Cube.Net/Libraries/Tests/Cube.Net.Tests.csproj
Path to vulnerable library: /Cube.Net/Libraries/Tests/Cube.Net.Tests.csproj,/Cube.Net/Applications/Rss/Tests/Cube.Net.Rss.Tests.csproj
Dependency Hierarchy:
Found in HEAD commit: 4f39b4d65d4a8fa22353ba81f4ac1fd44113e3b4
Apache log4net before 2.0.8 does not disable XML external entities when parsing log4net configuration files. This could allow for XXE-based attacks in applications that accept arbitrary configuration files from users.
Publish Date: 2020-05-11
URL: CVE-2018-1285
Base Score Metrics:
Type: Upgrade version
Origin: https://issues.apache.org/jira/browse/LOG4NET-575
Release Date: 2020-05-11
Fix Resolution: log4net - 2.1.0
Step up your Open Source Security Game with WhiteSource here
Internal implementation package not meant for direct consumption. Please do not reference directly....
Library home page: https://api.nuget.org/packages/system.private.uri.4.3.0.nupkg
Path to vulnerable library: /packages/system.private.uri/4.3.0/system.private.uri.4.3.0.nupkg
Dependency Hierarchy:
Found in HEAD commit: 3b779dff33329123519e7803eacab63fe19606d1
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Publish Date: 2019-05-16
URL: CVE-2019-0980
Base Score Metrics:
Type: Upgrade version
Origin: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
Release Date: 2019-05-16
Fix Resolution: 4.3.2
Step up your Open Source Security Game with WhiteSource here
Provides the System.Text.RegularExpressions.Regex class, an implementation of a regular expression e...
Library home page: https://api.nuget.org/packages/system.text.regularexpressions.4.1.0.nupkg
Path to dependency file: Cube.Net/Tests/Core/Cube.Net.Tests.csproj
Path to vulnerable library: /usr/share/dotnet/sdk/NuGetFallbackFolder/system.text.regularexpressions/4.1.0/system.text.regularexpressions.4.1.0.nupkg
Dependency Hierarchy:
Found in HEAD commit: 3b779dff33329123519e7803eacab63fe19606d1
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.
Publish Date: 2019-05-16
URL: CVE-2019-0820
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-cmhx-cq75-c4mj
Release Date: 2020-08-24
Fix Resolution: System.Text.RegularExpressions - 4.3.1
Step up your Open Source Security Game with WhiteSource here
Internal implementation package not meant for direct consumption. Please do not reference directly....
Library home page: https://api.nuget.org/packages/system.private.uri.4.3.0.nupkg
Path to vulnerable library: /packages/system.private.uri/4.3.0/system.private.uri.4.3.0.nupkg
Dependency Hierarchy:
Found in HEAD commit: 3b779dff33329123519e7803eacab63fe19606d1
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.
Publish Date: 2019-05-16
URL: CVE-2019-0981
Base Score Metrics:
Type: Upgrade version
Origin: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981
Release Date: 2019-05-16
Fix Resolution: 4.3.2
Step up your Open Source Security Game with WhiteSource here
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.