Filtered by vendor Inedo
Subscriptions
Filtered by product Proget
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-47244 | 1 Inedo | 1 Proget | 2025-05-05 | 7.3 High |
| Inedo ProGet through 2024.22 allows remote attackers to reach restricted functionality through the C# reflection layer, as demonstrated by causing a denial of service (when an attacker executes a loop calling RestartWeb) or obtaining potentially sensitive information. Exploitation can occur if Anonymous access is enabled, or if there is a successful CSRF attack. | ||||
| CVE-2017-14944 | 1 Inedo | 1 Proget | 2025-04-20 | N/A |
| Inedo ProGet before 4.7.14 does not properly address dangerous package IDs during package addition, aka PG-1060. | ||||
| CVE-2017-15608 | 1 Inedo | 1 Proget | 2024-11-21 | N/A |
| Inedo ProGet before 5.0 Beta5 has CSRF, allowing an attacker to change advanced settings. | ||||
Page 1 of 1.