Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories

Loading...
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJwcnctaDYydi1jMnc3
PyYAML insecurely deserializes YAML strings leading to arbitrary code execution
Ecosystems: pypi
Packages: pyyaml
Source: GitHub Advisory Database
Blast Radius: 49.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4NTQtajRtMy1yNnd4
sqla-yaml-fixtures is vulnerable to Code Injection
Ecosystems: pypi
Packages: sqla-yaml-fixtures
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1cjgtMzQ5NS14NnJt
Jinjava calls getClass
Ecosystems: maven
Packages: com.hubspot.jinjava:jinjava
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFxdjYtNXc2cC0zcGdy
Moderate severity vulnerability that affects org.hswebframework.web:hsweb-commons
Ecosystems: maven
Packages: org.hswebframework.web:hsweb-commons
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRybTMtNG1xNC1tZndy
Cross-Site Request Forgery (CSRF) in hswebframework.web:hsweb-commons
Ecosystems: maven
Packages: org.hswebframework.web:hsweb-commons
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4N2MtY2o2NS12bWg1
rendertron LFI vulnerability
Ecosystems: npm
Packages: rendertron
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRxNjktcTRxNy14ODJj
rendertron can remotely shut down Chrome instance
Ecosystems: npm
Packages: rendertron
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI5Z3AtOTJ3cC05NHE4
react-dev-utils on Windows vulnerable to Remote Code Execution
Ecosystems: npm
Packages: react-dev-utils
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmNjYteHdmcC1ndmM0
Missing Origin Validation in webpack-dev-server
Ecosystems: npm
Packages: webpack-dev-server
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY0eDQtOThjZy13cjRn
Code injection in Danijar Definitions
Ecosystems: pypi
Packages: definitions
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM0NDgtdmZ2di14cDln
Apache Tika Denial of Service due to Infinite Loop in Tika's SQLite3Parser
Ecosystems: maven
Packages: org.apache.tika:tika-parsers
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4OWotNzIyMy1yZzVt
Improper Access Control in commons-fileupload
Ecosystems: maven
Packages: commons-fileupload:commons-fileupload
Source: GitHub Advisory Database
Blast Radius: 49.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4NjgtamZjZy14bW1m
Commons FileUpload Denial of service vulnerability
Ecosystems: maven
Packages: org.apache.tomcat:tomcat, commons-fileupload:commons-fileupload
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4NDgtajR4NC1jcXcz
Path Traversal in Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJxajktY3E2ai05NThy
Arbitrary Command Execution in Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xOHAtaDc5OC14Y3Jw
Exposure of Sensitive Information in Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN2NDQtMzgycS01NWY0
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk5cXItOWNjOS1mdjJ4
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk0NDgtYzl3cS1qZzl2
Improper Privilege Management in Apache Karaf
Ecosystems: maven
Packages: org.apache.karaf:apache-karaf
Source: GitHub Advisory Database
Blast Radius: 27.3
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmMmotN3F3Zy00ZjV4
Improper Authentication in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozNzktOWpyOS13NWNx
XML External Entity (XXE) vulnerability in Square Retrofit
Ecosystems: maven
Packages: com.squareup.retrofit2:retrofit
Source: GitHub Advisory Database
Blast Radius: 45.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThwOGctZjl2Zy1yN3hy
Directory Traversal vulnerability in Square Retrofit
Ecosystems: maven
Packages: com.squareup.retrofit2:retrofit
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2bTMtY2Z2ai1neHFx
High severity vulnerability that affects commons-fileupload:commons-fileupload
Ecosystems: maven
Packages: commons-fileupload:commons-fileupload
Source: GitHub Advisory Database
Blast Radius: 37.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg0eDQtNXFwMi13cDQ2
Moderate severity vulnerability that affects com.fasterxml.jackson.datatype:jackson-datatype-jsr353
Ecosystems: maven
Packages: com.fasterxml.jackson.datatype:jackson-datatype-jsr310
Source: GitHub Advisory Database
Blast Radius: 30.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmdjYtY2o5Mi1nM2h4
PyKMIP Denial of service vulnerability
Ecosystems: pypi
Packages: pykmip
Source: GitHub Advisory Database
Blast Radius: 8.3
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqbTktNTc2cS0zOTlw
Remote Code Execution in esigate-core
Ecosystems: maven
Packages: org.esigate:esigate-core
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWMyODktNDdxZi1ydnJy
Cross Site Scripting (XSS) vulnerability in easymon
Ecosystems: rubygems
Packages: easymon
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhtdmctdzRmOS05OXI3
XML External Entity (XXE) vulnerability in bw-calendar-engine
Ecosystems: maven
Packages: org.bedework.caleng:bw-calendar-engine
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqcTgtamc3NS1ycXY2
Cleartext Transmission of Sensitive Information in Apache nifi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRxcTktcnJxNi00OGZm
Cross site scripting in org.apache.nifi:nifi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzZnAtdnd3Zy1xZ3Y2
Apache NiFi Improper Input Validation vulnerability
Ecosystems: maven
Packages: org.apache.nifi:nifi-framework-cluster
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4cHAtNzV2ci0yMnZx
Improper Restriction of Rendered UI Layers or Frames in Apache nifif
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4bTUtNXhjdy1oNTdx
exist-db:exist-core XML External Entity (XXE) vulnerability
Ecosystems: maven
Packages: org.exist-db:exist-core
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3aHAtcGZ4dy00dzYz
XML External Entity (XXE) vulnerability in codelibs fess
Ecosystems: maven
Packages: org.codelibs.fess:fess
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIycHAteDRtbS00OTk5
XML External Entity (XXE) vulnerability in neo4j.procedure:apoc
Ecosystems: maven
Packages: org.neo4j.procedure:apoc
Source: GitHub Advisory Database
Blast Radius: 16.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo1cmotZzY5NS0zNDJy
Fat Free CRM vulnerable to Cross-site Scripting
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yNHgtYzR2OS14NzI5
aiohttp-session creates non-expiring sessions
Ecosystems: pypi
Packages: aiohttp-session
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2OWctZjk3OC14eHY5
Cross-Site Request Forgery (CSRF) in Luigi
Ecosystems: pypi
Packages: luigi
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3eHctcDh2Ni05ampy
Spring Security vulnerable to Authorization Bypass
Ecosystems: maven
Packages: org.springframework.security:spring-security-oauth2-jose, org.springframework.security:spring-security-core
Source: GitHub Advisory Database
Blast Radius: 34.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdnNXctdnY5My0zZjd3
Moderate severity vulnerability that affects org.apache.oozie:oozie-core
Ecosystems: maven
Packages: org.apache.oozie:oozie-core
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThyOGoteHZmai0zNmY5
Code injection in ymlref
Ecosystems: pypi
Packages: ymlref
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThqMzktZmdmcC12eGg4
XXL-CONF Path Traversal vulnerability
Ecosystems: maven
Packages: com.xuxueli:xxl-conf-admin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVwNTItajhwdy1qN3g1
Improper Restriction of XML External Entity Reference in bedework:bw-webdav
Ecosystems: maven
Packages: org.bedework:bw-webdav
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJtbTUtZzYzaC1tNmc5
Improper Restriction of XML External Entity Reference in pippo-core
Ecosystems: maven
Packages: ro.pippo:pippo-core
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlmY3AtdmNxOS05aDJo
OS Command Injection in craftercms:crafter-studio
Ecosystems: maven
Packages: org.craftercms:crafter-studio
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW14cjUtcDM2di00Nzlt
Unrestricted Upload of File with Dangerous Type in jquery-file-upload
Ecosystems: npm
Packages: jquery-file-upload
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5NGctNmo3cS0yaHg2
Cross site scripting in flask-admin
Ecosystems: pypi
Packages: flask-admin
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxMjctdjd4cC1jMzU2
Buffer Overflow in pycrypto
Ecosystems: pypi
Packages: pycrypto
Source: GitHub Advisory Database
Blast Radius: 43.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd3dzItdjd4ai14cmM2
Exposure of Sensitive Information to an Unauthorized Actor in urllib3
Ecosystems: pypi
Packages: urllib3
Source: GitHub Advisory Database
Blast Radius: 55.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3cjItd2o2My04Nmdy
Path Traversal in simplehttpserver
Ecosystems: npm
Packages: simplehttpserver
Source: GitHub Advisory Database
Blast Radius: 9.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEycXctcm1yaC12djQy
Improper Access Control in activejob
Ecosystems: rubygems
Packages: activejob
Source: GitHub Advisory Database
Blast Radius: 42.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdycjctcmNqdy01NnZq
Exposure of Sensitive Information to an Unauthorized Actor in activestorage
Ecosystems: rubygems
Packages: activestorage
Source: GitHub Advisory Database
Blast Radius: 35.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMydzctOXdocC1janA5
Session Fixation in Tryton
Ecosystems: pypi
Packages: tryton
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzamctNGM4Mi1qNHho
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Pivotal CredHub Service Broker
Ecosystems: maven
Packages: org.springframework.credhub:spring-credhub-core
Source: GitHub Advisory Database
Blast Radius: 9.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1oNmYtOGoyeC00NDgz
Critical severity vulnerability that affects event-stream and flatmap-stream
Ecosystems: npm
Packages: flatmap-stream, event-stream
Source: GitHub Advisory Database
Blast Radius: 53.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJyZnEtZzVmcS1mYzlj
Improper Authentication in hive:hive-exec
Ecosystems: maven
Packages: org.apache.hive:hive-exec
Source: GitHub Advisory Database
Blast Radius: 28.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptZjQtcHE3OC1mOHZq
Moderate severity vulnerability that affects org.apache.hive:hive-jdbc
Ecosystems: maven
Packages: org.apache.hive:hive-jdbc
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmMm0tNDM1bS1teHc4
SQL Injection in hive-jdbc
Ecosystems: maven
Packages: org.apache.hive:hive-jdbc
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ4bXItYzlqbS03bW04
Exposure of Sensitive Information to an Unauthorized Actor in Apache hive
Ecosystems: maven
Packages: org.apache.hive:hive-service, org.apache.hive:hive-exec, org.apache.hive:hive
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 5 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2MzkteHh2NS1qMzgz
Incorrect Permission Assignment for Critical Resource in Apache hive
Ecosystems: maven
Packages: org.apache.hive:hive-service, org.apache.hive:hive-exec, org.apache.hive:hive
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgzcjMtYzc5dy1mNndj
High severity vulnerability that affects org.apache.hive:hive, org.apache.hive:hive-exec, and org.apache.hive:hive-service
Ecosystems: maven
Packages: org.apache.hive:hive-service, org.apache.hive:hive-exec, org.apache.hive:hive
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: over 5 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0eDktNGY1eC04amo4
Low severity vulnerability that affects org.apache.hive:hive-exec, org.apache.hive:hive, and org.apache.hive:hive-service
Ecosystems: maven
Packages: org.apache.hive:hive-exec, org.apache.hive:hive-service, org.apache.hive:hive
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZxZ3AtNGpnai01ajY0
Py-EVM is vulnerable to arbitrary bytecode injection
Ecosystems: pypi
Packages: py-evm
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJtdzctd2dnbS1tNncz
Denial of Service in ethereumjs-vm
Ecosystems: npm
Packages: ethereumjs-vm
Source: GitHub Advisory Database
Blast Radius: 35.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh2Y2gtcjR3Zi1oOHc5
Improper Certificate Validation in proton-j
Ecosystems: maven
Packages: org.apache.qpid:proton-j
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdnODUtcDZqNy1ncDN3
SimpleMDE XSS Vulnerability
Ecosystems: npm
Packages: simplemde
Source: GitHub Advisory Database
Blast Radius: 21.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4Z2gtNjQzcC1jcDJn
Cross-site Scripting in yapi-vendor
Ecosystems: npm
Packages: yapi-vendor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc2OHgtdnZxcS1wdncz
Ckeditor XSS Vulnerability
Ecosystems: packagist, npm
Packages: typo3/cms, typo3/cms-core, ckeditor
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhocnAtcW04OC14anIz
Valine HTML Injection
Ecosystems: npm
Packages: valine
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBoZzItOWM1Zy1tNHE3
Remote Code Execution in spark-core
Ecosystems: maven
Packages: org.apache.spark:spark-core_2.10, org.apache.spark:spark-core_2.11
Source: GitHub Advisory Database
Blast Radius: 38.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwNHEteDhmMy1wN3Zx
Jupyter Notebook XSS via directory name
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5cXIteGgzdy1oNDM2
Jupyter Notebook XSS via untrusted notebooks
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVyMnAtajQ3aC1taHBn
Rack vulnerable to Cross-site Scripting
Ecosystems: rubygems
Packages: rack
Source: GitHub Advisory Database
Blast Radius: 36.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnNzgtNGY2eC05OXdx
Rack vulnerable to Denial of Service
Ecosystems: rubygems
Packages: rack
Source: GitHub Advisory Database
Blast Radius: 45.1
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNyaG0tNjdqNi00Mmpx
Exposure of Sensitive information in authentikat-jwt
Ecosystems: maven
Packages: com.jason-goodwin:authentikat-jwt_2.12
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdoZ2otM3hxci02amZt
Jetty vulnerable to exposure of sensitive information to unauthenticated remote users
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmdzUtdjdjdy02OWN3
Credential leak in org.apache.directory.api:apache-ldap-api
Ecosystems: maven
Packages: org.apache.directory.api:apache-ldap-api
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNTctdnY0cC1mZzky
Header Forgery in http-signature
Ecosystems: npm
Packages: http-signature
Source: GitHub Advisory Database
Blast Radius: 44.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNyaDctdm00eC1xMmhw
sqlserver is malware
Ecosystems: npm
Packages: sqlserver
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmajQtOTZmNy02cjVn
Cross-Site Scripting in html-janitor
Ecosystems: npm
Packages: html-janitor
Source: GitHub Advisory Database
Blast Radius: 15.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwNDctdzV4cC1mNHhy
windows-build-tools downloads Resources over HTTP
Ecosystems: npm
Packages: windows-build-tools
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2OXAtNWg3NC13MzZm
Content Injection via TileJSON Name in mapbox.js
Ecosystems: rubygems, npm
Packages: mapbox-rails, mapbox.js
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1ybWYtcXd4Zy03YzNo
XSS in Data URI in remarkable
Ecosystems: npm
Packages: remarkable
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4dzktcHZndi02cDc2
Insufficient Error Handling in http-proxy
Ecosystems: npm
Packages: http-proxy
Source: GitHub Advisory Database
Blast Radius: 45.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFyMjgtN2o2cC05aG12
Content Injection via TileJSON attribute in mapbox.js
Ecosystems: rubygems, npm
Packages: mapbox-rails, mapbox.js
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhjNmctZ2dyYy1xcTRy
Cross-Site Scripting in sanitize-html
Ecosystems: npm
Packages: sanitize-html
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY4OWctd2hwZi02cTlt
Cross-Site Scripting in i18next
Ecosystems: npm
Packages: i18next
Source: GitHub Advisory Database
Blast Radius: 28.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3eDUtNWZxai1qdjk4
Cross-Site Scripting in morris.js
Ecosystems: npm
Packages: morris.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3amotMjg1Mi0zNzY1
Cross-Site Scripting in forms
Ecosystems: npm
Packages: forms
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdnOTYtMzkzMy1qMnc1
Cross-Site Scripting in sanitize-html
Ecosystems: npm
Packages: sanitize-html
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3M2ctMzVoYy1mY3Jo
Cross-Site Scripting (XSS) in restify
Ecosystems: npm
Packages: restify
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4aDgteDY5Ny1naDhx
Tmp files readable by other users in sync-exec
Ecosystems: npm
Packages: sync-exec
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhxcXItcDM2Mi02cm1j
Directory Traversal in hostr
Ecosystems: npm
Packages: hostr
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4ZnAtOWM1NS01dnFq
Remote Memory Exposure in request
Ecosystems: npm
Packages: request
Source: GitHub Advisory Database
Blast Radius: 35.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlmZzUtZjVwai1yd2Nj
gruntcli is malware
Ecosystems: npm
Packages: gruntcli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwOGYtajJ2dy03aHc5
mssql-node is malware
Ecosystems: npm
Packages: mssql-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThyaGMtNDhwcC01Mmdy
High severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11
Ecosystems: maven
Packages: org.apache.spark:spark-core_2.10, org.apache.spark:spark-core_2.11
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIzNHItZjg0ai01eDR4
Moderate severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11
Ecosystems: maven
Packages: org.apache.spark:spark-core_2.10, org.apache.spark:spark-core_2.11
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVtaHYtOXF3OC1qNjNn
mssql.js is malware
Ecosystems: npm
Packages: mssql.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4Z2gteGd3NS1wNWN3
nodemssql is malware
Ecosystems: npm
Packages: nodemssql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Statistics
Advisories: 18,152
Packages: 8,242
Repositories: 4,970
Ecosystems: 12
Filter by Severity
Moderate 7,822 High 6,289 Critical 2,788 Low 969
Filter by Ecosystem
maven 5,518 packagist 3,782 pypi 3,552 npm 3,530 go 1,887 nuget 1,390 rubygems 813 cargo 773 swift 31 hex 29 actions 16 pub 8
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 moodle/moodle 318 Microsoft.ChakraCore 247 org.jenkins-ci.main:jenkins-core 189 magento/community-edition 182 org.apache.tomcat:tomcat 134 pimcore/pimcore 116 dolibarr/dolibarr 105 typo3/cms 102 phpmyadmin/phpmyadmin 91 microweber/microweber 91 django 80 apache-airflow 78 typo3/cms-core 73 thorsten/phpmyfaq 70 drupal/core 70 com.fasterxml.jackson.core:jackson-databind 69 ansible 63 github.com/usememos/memos 59 actionpack 57 drupal/drupal 56 org.apache.struts:struts2-core 55 librenms/librenms 54 symfony/symfony 53 concrete5/concrete5 52 apache-superset 48 shopware/platform 48 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 baserproject/basercms 43 plone 42 rdiffweb 42 nokogiri 42 Pillow 41 showdoc/showdoc 40 intelliants/subrion 40 craftcms/cms 40 github.com/mattermost/mattermost/server/v8 38 vyper 38 salt 38 github.com/mattermost/mattermost-server/v6 37 org.apache.tomcat.embed:tomcat-embed-core 37 nilsteampassnet/teampass 37 Plone 36 shopware/core 36 froxlor/froxlor 36 com.jfinal:jfinal 36 com.thoughtworks.xstream:xstream 36 matrix-synapse 35 net.mingsoft:ms-mcms 35 github.com/answerdev/answer 34 org.xwiki.platform:xwiki-platform-oldcore 34 silverstripe/framework 32 snipe/snipe-it 32 org.elasticsearch:elasticsearch 32 k8s.io/kubernetes 32 mlflow 31 opencv-python 30 opencv-contrib-python 30 org.jenkins-ci.plugins:script-security 30 parse-server 29 github.com/argoproj/argo-cd 29 mautic/core 28 github.com/hashicorp/vault 28 github.com/rancher/rancher 28 github.com/grafana/grafana 28 org.keycloak:keycloak-services 27 io.undertow:undertow-core 27 centreon/centreon 27 getgrav/grav 27 shopware/shopware 27 openssl-src 26 electron 26 github.com/hashicorp/nomad 26 github.com/hashicorp/consul 26 rubygems-update 25 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 gogs.io/gogs 24 magento/core 24 prestashop/prestashop 24 org.springframework.security:spring-security-core 23 remdex/livehelperchat 23 org.eclipse.jetty:jetty-server 23 pocketmine/pocketmine-mp 23 puppet 23 github.com/argoproj/argo-cd/v2 23 ckb 22 getkirby/cms 22 org.apache.nifi:nifi 22 grumpydictator/firefly-iii 22 rack 22 Django 21 @openzeppelin/contracts-upgradeable 21 contao/core-bundle 21 activerecord 21 org.apache.openmeetings:openmeetings-parent 21 github.com/cilium/cilium 20 org.cloudfoundry.identity:cloudfoundry-identity-server 20 @openzeppelin/contracts 20 github.com/ethereum/go-ethereum 19 org.springframework:spring-core 19 github.com/docker/docker 19 DotNetNuke.Core 19 code.gitea.io/gitea 19 org.bouncycastle:bcprov-jdk14 18 tribalsystems/zenario 18 com.liferay.portal:release.dxp.bom 18 forkcms/forkcms 18 langchain 18 com.vaadin:vaadin-bom 18 contao/contao 18 helm.sh/helm/v3 18 cakephp/cakephp 17 cobbler 17 org.apache.geode:geode-core 17 Microsoft.AspNetCore.App.Runtime.win-x64 17 Microsoft.AspNetCore.App.Runtime.win-x86 17 francoisjacquet/rosariosis 17 cockpit-hq/cockpit 17 golang.org/x/net 17 symfony/security 17 simplesamlphp/simplesamlphp 17 org.xwiki.platform:xwiki-platform-web-templates 17 genix/cms 17 PaddlePaddle 17 Microsoft.AspNetCore.App.Runtime.win-arm 16 yetiforce/yetiforce-crm 16 sequelize 16 wasmtime 16 org.bouncycastle:bcprov-jdk15 16 org.apache.dubbo:dubbo 16 directus 16 org.apache.activemq:activemq-client 16 rusqlite 16 notebook 15 cryptography 15 org.apache.jspwiki:jspwiki-main 15 org.apache.struts.xwork:xwork-core 15 pillow 15 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 15 Microsoft.AspNetCore.App.Runtime.osx-x64 15 Microsoft.AspNetCore.App.Runtime.linux-x64 15 github.com/goharbor/harbor 15 paddlepaddle 15 topthink/framework 15 openmage/magento-lts 15 Microsoft.AspNetCore.App.Runtime.linux-arm 15 Microsoft.AspNetCore.App.Runtime.linux-arm64 15 activesupport 14 Microsoft.AspNetCore.App.Runtime.win-arm64 14 smarty/smarty 14 symfony/security-http 14 publify_core 14 Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 14 zendframework/zendframework1 14 phpmailer/phpmailer 14 modoboa 14 ghost 14 tinymce 14 gradio 14 pyload-ng 14 ec-cube/ec-cube 14 swagger-ui 14 ezsystems/ezpublish-kernel 14 typo3/cms-backend 14 org.xwiki.platform:xwiki-platform-web 14 passenger 13 ckeditor4 13 org.apache.cxf:cxf 13 elefant/cms 13 joplin 13 github.com/containerd/containerd 13 org.apache.hadoop:hadoop-main 13 github.com/traefik/traefik/v2 13 github.com/nats-io/nats-server/v2 13 impresscms/impresscms 13 october/system 13 pyftpdlib 13 github.com/opencontainers/runc 13 next 13 org.apache.inlong:manager-pojo 13 github.com/mattermost/mattermost-server 13 nova 13 codeigniter4/framework 13 strapi 13 Microsoft.NETCore.App.Runtime.win-x86 12 org.apache.dolphinscheduler:dolphinscheduler 12 Microsoft.NETCore.App.Runtime.win-x64 12 Microsoft.NETCore.App.Runtime.win-arm64 12 github.com/go-gitea/gitea 12 com.vaadin:flow-server 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 actionview 12 github.com/moby/moby 12 org.jenkins-ci.plugins:git 12 dompdf/dompdf 12 vantage6 12
Filter by Repository
https://github.com/tensorflow/tensorflow 432 https://github.com/chakra-core/ChakraCore 214 https://github.com/moodle/moodle 210 https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/pimcore/pimcore 111 https://github.com/apache/tomcat 96 https://github.com/apache/airflow 90 https://github.com/microweber/microweber 85 https://github.com/django/django 72 https://github.com/FasterXML/jackson-databind 70 https://github.com/thorsten/phpmyfaq 69 https://github.com/keycloak/keycloak 59 https://github.com/usememos/memos 59 https://github.com/Dolibarr/dolibarr 54 https://github.com/rails/rails 53 https://github.com/ansible/ansible 53 https://github.com/python-pillow/Pillow 51 https://github.com/kubernetes/kubernetes 48 https://github.com/symfony/symfony 47 https://github.com/apache/struts 46 https://github.com/librenms/librenms 46 https://github.com/shopware/platform 43 https://github.com/ikus060/rdiffweb 42 https://github.com/TYPO3/typo3 42 https://github.com/spring-projects/spring-framework 41 https://github.com/star7th/showdoc 38 https://github.com/phpmyadmin/phpmyadmin 38 https://github.com/vyperlang/vyper 38 https://github.com/argoproj/argo-cd 37 https://github.com/x-stream/xstream 36 https://github.com/plone/Products.CMFPlone 36 https://github.com/answerdev/answer 34 https://github.com/concretecms/concretecms 34 https://github.com/octobercms/october 33 https://github.com/apache/activemq 32 https://github.com/matrix-org/synapse 32 https://github.com/go-gitea/gitea 31 https://github.com/PaddlePaddle/Paddle 31 https://github.com/sparklemotion/nokogiri 31 https://github.com/magento/magento2 31 https://github.com/parse-community/parse-server 29 https://github.com/craftcms/cms 29 https://github.com/CVEProject/cvelist 28 https://github.com/opencv/opencv 28 https://github.com/snipe/snipe-it 28 https://github.com/mautic/mautic 27 https://github.com/froxlor/froxlor 26 https://github.com/saltstack/salt 25 https://github.com/rancher/rancher 25 https://github.com/apache/inlong 25 https://github.com/mlflow/mlflow 25 https://github.com/electron/electron 25 https://github.com/shopware/shopware 24 https://github.com/TYPO3/TYPO3.CMS 24 https://github.com/livehelperchat/livehelperchat 23 https://github.com/github/advisory-database 23 https://github.com/pmmp/PocketMine-MP 23 https://github.com/eclipse/jetty.project 23 https://github.com/dotnet/runtime 23 https://github.com/getgrav/grav 23 https://github.com/grafana/grafana 22 https://github.com/nervosnetwork/ckb 22 https://github.com/baserproject/basercms 22 https://github.com/firefly-iii/firefly-iii 22 https://github.com/contao/contao 22 https://github.com/apache/nifi 21 https://github.com/strapi/strapi 21 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/OpenNMS/opennms 20 https://github.com/PrestaShop/PrestaShop 20 https://github.com/OpenZeppelin/openzeppelin-contracts 20 https://github.com/netty/netty 20 https://github.com/jenkinsci/script-security-plugin 20 https://github.com/gogs/gogs 20 https://github.com/cilium/cilium 20 https://github.com/intelliants/subrion 19 https://github.com/cloudfoundry/uaa 19 https://github.com/hashicorp/consul 19 https://github.com/helm/helm 19 https://github.com/nilsteampassnet/teampass 19 https://github.com/apache/cxf 19 https://github.com/nilsteampassnet/TeamPass 18 https://github.com/rubygems/rubygems 18 https://github.com/getkirby/kirby 18 https://github.com/bcgit/bc-java 18 https://github.com/rack/rack 17 https://github.com/liufee/cms 17 https://github.com/bytecodealliance/wasmtime 17 https://github.com/vaadin/platform 17 https://github.com/rusqlite/rusqlite 16 https://github.com/opencast/opencast 16 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/forkcms/forkcms 16 https://github.com/etcd-io/etcd 16 https://github.com/sequelize/sequelize 16 https://github.com/hashicorp/vault 16 https://github.com/umbraco/Umbraco-CMS 16 https://github.com/goharbor/harbor 15 https://github.com/puppetlabs/puppet 15 https://github.com/ethereum/go-ethereum 15 https://github.com/apache/camel 15 https://github.com/centreon/centreon 15 https://github.com/directus/directus 15 https://github.com/OpenMage/magento-lts 15 https://github.com/geoserver/geoserver 15 https://github.com/simplesamlphp/simplesamlphp 14 https://github.com/denoland/deno 14 https://github.com/moby/moby 14 https://github.com/tinymce/tinymce 14 https://github.com/pyload/pyload 14 https://github.com/langchain-ai/langchain 14 https://github.com/PHPMailer/PHPMailer 14 https://github.com/vantage6/vantage6 14 https://github.com/mattermost/mattermost 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/pyca/cryptography 14 https://github.com/cobbler/cobbler 14 https://github.com/traefik/traefik 13 https://github.com/silverstripe/silverstripe-framework 13 https://github.com/swagger-api/swagger-ui 13 https://github.com/quarkusio/quarkus 13 https://github.com/modoboa/modoboa 13 https://github.com/undertow-io/undertow 13 https://github.com/golang/go 13 https://github.com/containerd/containerd 13 https://github.com/publify/publify 13 https://github.com/xuxueli/xxl-job 13 https://github.com/gradio-app/gradio 13 https://github.com/hashicorp/nomad 13 https://github.com/ming-soft/MCMS 13 https://github.com/dompdf/dompdf 13 https://github.com/dromara/hutool 12 https://github.com/laurent22/joplin 12 https://github.com/TryGhost/Ghost 12 https://github.com/apache/kylin 12 https://github.com/nodejs/undici 12 https://github.com/centreon/centreon-archived 12 https://github.com/patriksimek/vm2 12 https://github.com/ckeditor/ckeditor4 12 https://github.com/twisted/twisted 12 https://github.com/apache/dolphinscheduler 12 https://github.com/backstage/backstage 12 https://github.com/janeczku/calibre-web 11 https://github.com/opencontainers/runc 11 https://github.com/smarty-php/smarty 11 https://github.com/thorsten/phpMyFAQ 11 https://github.com/jquery/jquery 11 https://github.com/igniterealtime/Openfire 11 https://github.com/onionshare/onionshare 11 https://github.com/cloudflare/cfrpki 11 https://github.com/drupal/core 11 https://github.com/puma/puma 11 https://github.com/cakephp/cakephp 11 https://github.com/urllib3/urllib3 11 https://github.com/vaadin/flow 11 https://github.com/NodeBB/NodeBB 11 https://github.com/containers/podman 11 https://github.com/Studio-42/elFinder 11 https://github.com/openfga/openfga 11 https://github.com/1Panel-dev/1Panel 10 https://github.com/cosmos/cosmos-sdk 10 https://github.com/nats-io/nats-server 10 https://github.com/zitadel/zitadel 10 https://github.com/dpgaspar/Flask-AppBuilder 10 https://github.com/dolibarr/dolibarr 10 https://github.com/phusion/passenger 10 https://github.com/ezsystems/ezpublish-kernel 10 https://github.com/zopefoundation/Zope 10 https://github.com/aio-libs/aiohttp 10 https://github.com/keystonejs/keystone 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/nextauthjs/next-auth 10 https://github.com/WWBN/AVideo 10 https://github.com/codeigniter4/CodeIgniter4 10 https://github.com/openstack/keystone 10 https://github.com/jupyter/notebook 10 https://github.com/pimcore/admin-ui-classic-bundle 10 https://github.com/dotnet/aspnetcore 10 https://github.com/greenpau/caddy-security 10 https://github.com/OPCFoundation/UA-.NETStandard 10 https://github.com/Pylons/waitress 9 https://github.com/ethyca/fides 9 https://github.com/LavaLite/cms 9 https://github.com/apache/superset 9 https://github.com/alextselegidis/easyappointments 9 https://github.com/bolt/bolt 9 https://github.com/rails/rails-html-sanitizer 9 https://github.com/vercel/next.js 9 https://github.com/cui2shark/cms 9 https://github.com/top-think/framework 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/neorazorx/facturascripts 9 https://github.com/cri-o/cri-o 9 https://github.com/DSpace/DSpace 9 https://github.com/kevinpapst/kimai2 9 https://github.com/fatfreecrm/fat_free_crm 9 https://github.com/apache/lucene-solr 9 https://github.com/funadmin/funadmin 9