CVSS: 8.1EPSS: 1%CPEs: 1EXPL: 0CVE-2025-6445 – ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-6445
23 Jun 2025 — ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation of the FindType method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations... • https://docs.servicestack.net/releases/v8_06#reported-vulnerabilities • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2025-6444 – ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability
https://notcve.org/view.php?id=CVE-2025-6444
23 Jun 2025 — ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation of the GetErrorResponse method. The issue results from the lack of proper validation of user-supplied data, which can result in a type... • https://www.zerodayinitiative.com/advisories/ZDI-25-415 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 18%CPEs: 1EXPL: 3CVE-2020-28042
https://notcve.org/view.php?id=CVE-2020-28042
01 Nov 2020 — ServiceStack before 5.9.2 mishandles JWT signature verification unless an application has a custom ValidateToken function that establishes a valid minimum length for a signature. ServiceStack versiones anteriores a 5.9.2, manejan inapropiadamente la verificación de la firma JWT a menos que una aplicación tenga una función ValidateToken personalizado que establezca una longitud mínima válida para una firma • https://github.com/z-bool/Venom-JWT • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-1010199
https://notcve.org/view.php?id=CVE-2019-1010199
23 Jul 2019 — ServiceStack ServiceStack Framework 4.5.14 is affected by: Cross Site Scripting (XSS). The impact is: JavaScrpit is reflected in the server response, hence executed by the browser. The component is: the query used in the GET request is prone. The attack vector is: Since there is no server-side validation and If Browser encoding is bypassed, the victim is affected when opening a crafted URL. The fixed version is: 5.2.0. • https://github.com/ServiceStack/ServiceStack/commit/a0e0d7de20f5d1712f1793f925496def4383c610 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •