OByte wallet remote code execution through chat message

Zsh recursive command expansion vulnerability

S3Scanner path traversal via malicious object

Cross-site Scripting Vulnerability in GraphQL Playground (distributed by Apollo Server)

GraphiQL introspection schema template injection attack

Mercari (Merpay) improper handling of Intent

Deno Standard Modules code injection in encoding/yaml

XSS Hunter Express authentication bypass

Geyser user impersonation due to incorrect handling of the login JWT

Minecraft arbitrary JSON file deletion via path traversal

delta arbitrary programs execution from current directory

bat arbitrary programs execution from current directory

Keras arbitrary file overwrite via path traversal in "keras.utils.get_file"

Narou.rb remote code execution via crafted novel information

Qiita::Markdown cross-site scripting via crafted gist link

ripgrep arbitrary programs execution from current directory

The Fuck arbitrary file deletion via path traversal

Refined GitHub cross-site scripting via links in documents

BdLib (Minecraft Mod) deserialization of untrusted data in network stack

RebornCore (Minecraft Mod) deserialization of untrusted data in network stack

transfer.sh arbitrary file deletion via path traversal

transfer.sh cross-site scripting via inline view

Terraria Insecure Deserialization

Visual Studio Code Remote Code Execution Vulnerability

Git for Cygwin remote code execution via malicious repository

Simple GHC (Haskell) Integration for VSCode remote code execution via crafted workspace configuration

reStructuredText Language Support for Visual Studio Code remote code execution via crafted workspace configuration

RPM Specfile support in VSCode remote code execution via crafted workspace configuration

Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability

Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability

isomorphic-git path traversal via malicious repository

GLSL Linting for Visual Studio Code remote code execution via crafted workspace configuration

Hugo arbitrary code execution on Windows

VSCode PHP Mess Detector remote code execution via crafted workspace configuration

APKLeaks remote code execution via crafted package name in apk file

Visual Studio Code Prisma Extension remote code execution via crafted workspace configuration

Go remote code execution via malicious package

Git-LFS remote code execution via malicious repository

remark42 cross-site scripting via locator.URL

git-bug arbitrary code execution via malicious repository

bit arbitrary code execution via malicious repository

C/C++ Advanced Lint for VS Code remote code execution via crafted workspace configuration

Qiita::Markdown cross-site scripting via crafted iframe

Swift Development Environment for VS Code remote code execution via crafted workspace configuration

SwiftFormat for VS Code remote code execution via crafted workspace configuration

SwiftLint for VS Code remote code execution via crafted workspace configuration

apple/swift-format for VS Code remote code execution via crafted workspace configuration

ShellCheck for Visual Studio Code remote code execution via crafted workspace configuration

VSCodeVim remote code execution via crafted workspace configuration

vscode-rufo remote code execution via crafted workspace configuration

GistPad GitHub access token leakage via crafted workspace configuration

node-netmask incorrectly parses an IP address that has octal integer with invalid character

gitjacker path traversal to remote code execution via crafted .git directory

bluemonday cross-site scripting via uppercase Cyrillic i

Svelte for VS Code remote code execution via crafted workspace configuration

MATLAB for Visual Studio Code remote code execution via crafted workspace configuration

vscode-sass-lint (aka Sass Lint) remote code execution via crafted workspace configuration

Title	CVE ID
OByte wallet remote code execution through chat message	CVE-2022-25642
Zsh recursive command expansion vulnerability	CVE-2021-45444
S3Scanner path traversal via malicious object	CVE-2021-32061
Cross-site Scripting Vulnerability in GraphQL Playground (distributed by Apollo Server)	CVE-2021-41249
GraphiQL introspection schema template injection attack	CVE-2021-41248