Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories

Loading...
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjcjUteHI5aC1tdmM1
python-gnupg vulnerable to shell injection
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzeHAtajczNy0yODJ2
Path Traversal in takeapeek
Ecosystems: npm
Packages: takeapeek
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZncngtdzZyZy04ZnFm
Forgeable Public/Private Tokens in jwt-simple
Ecosystems: npm
Packages: jwt-simple
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpoZ3AtaHZqNi14MnAy
Stored Cross-Site Scripting in tianma-static
Ecosystems: npm
Packages: tianma-static
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNodm0taGdwdy1yeDRq
Path Traversal in knightjs
Ecosystems: npm
Packages: knightjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnMnctNnIyNS0yajdw
Command Injection in libnmap
Ecosystems: npm
Packages: libnmap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3YzQtMnhqOC13bTdy
Improper Input Validation in kdcproxy
Ecosystems: pypi
Packages: kdcproxy
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlqbTMtNTgzNS01Mzdt
Command Injection in apex-publish-static-files
Ecosystems: npm
Packages: apex-publish-static-files
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3YzcteG04Zy14bTM2
Unrestricted Upload of File with Dangerous Type in mingsoft:ms-mcms
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13Y3YtbTU0OS01Y204
node-tkinter is malware
Ecosystems: npm
Packages: node-tkinter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3ZzYtM2Ztai13NHd4
tkinter is malware
Ecosystems: npm
Packages: tkinter
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdoanAtOTdnMy1ycTkz
Path Traversal in minsoft:ms-mcms
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0eHEtang0dy00Y2p2
Loofah Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: loofah
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y20tcW14NS1tOTho
Prototype Pollution in merge
Ecosystems: npm
Packages: merge
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2d20tMjYyNC1ycDl4
Apache ActiveMQ web console vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: org.apache.activemq:activemq-web-console
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM3cTYtNTc2cS12Z3I3
Missing Origin Validation in parcel-bundler
Ecosystems: npm
Packages: parcel-bundler
Source: GitHub Advisory Database
Blast Radius: 35.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZqNjMtMzVoai12bWNn
mysql-bunuuid-rails vulnerable to SQL injection
Ecosystems: rubygems
Packages: mysql-binuuid-rails
Source: GitHub Advisory Database
Blast Radius: 8.3
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4NHYteGNtMi01M3Bn
Insufficiently Protected Credentials in Requests
Ecosystems: pypi
Packages: requests
Source: GitHub Advisory Database
Blast Radius: 43.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmM2MtZmZmcC0zNHFo
conference-scheduler-cli Arbitrary Code Execution
Ecosystems: pypi
Packages: conference-scheduler-cli
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmbTYtMnF3NC1nM3gz
Deserialization of Untrusted Data in Pippo
Ecosystems: maven
Packages: ro.pippo:pippo-core
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhqcnIteHY5bS00cHc1
Improper Input Validation in alilibaba:fastjson
Ecosystems: maven
Packages: ro.pippo:pippo-fastjson, com.alibaba:fastjson
Source: GitHub Advisory Database
Blast Radius: 49.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwdnItZzZnaC05bWMy
No Charset in Content-Type Header in express
Ecosystems: npm
Packages: express
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwcmgtMjU3dy05Mjc3
Cross-Site Scripting in handlebars
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnangtbXdweC00N2p2
Private Data Disclosure in express-restify-mongoose
Ecosystems: npm
Packages: express-restify-mongoose
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxODktcHdoaC03d2Zx
Use of Insufficiently Random Values in penggle:kaptcha
Ecosystems: maven
Packages: com.github.penggle:kaptcha
Source: GitHub Advisory Database
Blast Radius: 36.4
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmeDYtcGg0cS1xNTRx
Improper Restriction of Operations within the Bounds of a Memory Buffer in akka-http-core
Ecosystems: maven
Packages: com.typesafe.akka:akka-http-core_2.11, com.typesafe.akka:akka-http-core_2.12
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tNTctOWo2cS1yeG0y
Akka Java Serialization vulnerability
Ecosystems: maven
Packages: com.typesafe.akka:akka-actor
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yOTUtOXJyNC02Njhm
Cryptographically Weak Pseudo-Random Number Generator (PRNG) in akka-actor
Ecosystems: maven
Packages: com.typesafe.akka:akka-actor_2.12, com.typesafe.akka:akka-actor_2.11
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxZ2MtcDI3dy0zaGpn
High severity vulnerability that affects com.typesafe.akka:akka-http-core_2.11 and com.typesafe.akka:akka-http-core_2.12
Ecosystems: maven
Packages: com.typesafe.akka:akka-http-core_2.11, com.typesafe.akka:akka-http-core_2.12
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjajgtZzljcC12NXdy
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload
Ecosystems: npm
Packages: blueimp-file-upload
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4dzQtcXY5OS1mN3Zq
Authorization bypass in org.springframework.security.oauth:spring-security-oauth2
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjdzgtN2o2Yy1oY2Nw
Moderate severity vulnerability that affects io.vertx:vertx-core
Ecosystems: maven
Packages: io.vertx:vertx-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2cXItbW1oOC1jcDhm
Moderate severity vulnerability that affects com.sparkjava:spark-core
Ecosystems: maven
Packages: com.sparkjava:spark-core
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtcjQtdzY3cC12aDh4
Improper Input Validation in org.wildfly:wildfly-undertow
Ecosystems: maven
Packages: org.wildfly:wildfly-undertow
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1jZm0taDczdi02MzVt
Undertow-core vulnerable to HTTP Request Smuggling
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 24.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN4N2gtNWhmci1odmpt
Moderate severity vulnerability that affects io.undertow:undertow-core
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4cTgtcHZnNC0zbWYz
Eclipse RDF4j vulnerable to XML External Entitiy
Ecosystems: maven
Packages: org.eclipse.rdf4j:rdf4j-runtime
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2OHEtOWZ3NS0yOHdm
Moderate severity vulnerability that affects org.postgresql:pgjdbc-aggregate
Ecosystems: maven
Packages: org.postgresql:pgjdbc-aggregate
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtOXItNWdxcC03ajgy
High severity vulnerability that affects org.dspace:dspace-xmlui
Ecosystems: maven
Packages: org.dspace:dspace-xmlui
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzd3YtNDd4bS00bWc2
Server Side Request Forgery in svgSalamander
Ecosystems: maven
Packages: com.kitfox.svg:svg-salamander
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2eHYtcG1xOS00cTdn
High severity vulnerability that affects org.scala-lang:scala-compiler
Ecosystems: maven
Packages: org.scala-lang:scala-compiler
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkzanEtNjI0Zy00cDlw
Improper Input Validation in async-http-client
Ecosystems: maven
Packages: org.asynchttpclient:async-http-client
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc1NTYteDV2eC1xaDU5
Android SVG vulnerable to XML External Entity (XXE)
Ecosystems: maven
Packages: com.caverock:androidsvg
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3cGYtcXI5Ni0ydnE1
Deserialization of Untrusted Data in swagger-parser
Ecosystems: maven
Packages: io.swagger:swagger-parser, io.swagger:swagger-codegen
Source: GitHub Advisory Database
Blast Radius: 22.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZndmYtOWpoMy1mZzc1
Deserialization of Untrusted Data in swagger-codegen
Ecosystems: maven
Packages: io.swagger:swagger-codegen, io.swagger:swagger-parser
Source: GitHub Advisory Database
Blast Radius: 22.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNWotZ2Ntdi01cXBw
Moderate severity vulnerability that affects org.grails.plugins:fields and org.grails:grails-core
Ecosystems: maven
Packages: org.grails:grails-core, org.grails.plugins:fields
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05dzgtdjM1OS05ZmZy
Improper Certificate Validation in Apache activemq-client
Ecosystems: maven
Packages: org.apache.activemq:activemq-client
Source: GitHub Advisory Database
Blast Radius: 28.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5OXAtNzI2aC1jOHY1
Apache juddi-client vulnerable to XML External Entity (XXE)
Ecosystems: maven
Packages: org.apache.juddi:juddi-client
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ3M3YtNjZtai0ycW02
Moderate severity vulnerability that affects org.apache.qpid:apache-qpid-broker-j
Ecosystems: maven
Packages: org.apache.qpid:apache-qpid-broker-j
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhybXItZjVtNi1tOXBx
Moderate severity vulnerability that affects org.apache.commons:commons-compress
Ecosystems: maven
Packages: org.apache.commons:commons-compress
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyN2ctN2Nwai01anI3
Apache Qpid Broker-J vulnerable to Denial of Service (DoS) via uncontrolled resource consumption
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2OW0tNjk1eC1qMzRw
Apache Qpid Broker vulnerable to authentication port spoofing
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjN3ItdjZmZy0yZ3Bm
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.*
Ecosystems: maven
Packages: org.apache.cxf:apache-cxf, org.apache.cxf:cxf
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2MzItN3I2cC14aGho
Moderate severity vulnerability that affects com.adobe.xmp:xmpcore
Ecosystems: maven
Packages: com.adobe.xmp:xmpcore
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4OXgtOHF3OS05cHA2
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling)
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0cTctcDIyNi00eDV3
Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling)
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MmctMmg4aC0zNjJx
Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyZ3YtaDd4NC1xdzhn
Eclipse Jetty Server generates error message containing sensitive information
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmY2MtcGZmNi1yZ2M1
Jetty vulnerable to exposure of sensitive information due to observable discrepancy
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZnZzgtNzJmMi1xbTIz
Critical severity vulnerability that affects org.eclipse.jetty:jetty-server
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyNmotM2pwOS1ydzY1
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3N3EtMnFxZy02OTg5
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdxOWMtaDIzeC02NWZx
Spring Security OAuth vulnerable to remote code execution (RCE) via specially crafted request using whitelabel views
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 34.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0ZzItOWhqNi01NDcy
Moderate severity vulnerability that affects com.rabbitmq:amqp-client and org.springframework.amqp:spring-amqp
Ecosystems: maven
Packages: com.rabbitmq:amqp-client, org.springframework.amqp:spring-amqp
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4NjUtY2M3Zy05cGZw
Moderate severity vulnerability that affects org.springframework.boot:spring-boot
Ecosystems: maven
Packages: org.springframework.boot:spring-boot
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05am0tcmhybS1nY3hq
Path traversal in org.springframework.integration:spring-integration-zip
Ecosystems: maven
Packages: org.springframework.integration:spring-integration-zip
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJycG0tcGo3cC03ajlx
Spring Security OAuth vulnerable to remote code execution (RCE)
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 38.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4NmotMmdjNi0yY3E5
Race condition in org.apache.hbase:hbase-thrift
Ecosystems: maven
Packages: org.apache.hbase:hbase-thrift
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4eHItNHYyYy1ydmdw
High severity vulnerability that affects org.apache.hbase:hbase
Ecosystems: maven
Packages: org.apache.hbase:hbase
Source: GitHub Advisory Database
Blast Radius: 26.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlncDQtcXJmZi1jNjQ4
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqMngtaHg0Zy0yZ2Y0
In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjMnItM2pxZi1jOXJ3
jackson-dataformat-xml vulnerable to server side request forgery (SSRF)
Ecosystems: maven
Packages: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtcTYtZnJ2My00NzI3
jackson-dataformat-xml vulnerable to XML external entity (XXE)
Ecosystems: maven
Packages: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmeDYtdnA5Zy1yaDd2
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist bypass
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1OTItMzhjbS00Z2dw
jackson-databind vulnerable to deserialization flaw leading to unauthenticated remote code execution
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0Z2ctOWY2Mi1qZnBo
OrientDB Studio web management interface is vulnerable to clickjacking attacks
Ecosystems: maven
Packages: com.orientechnologies:orientdb-studio
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2d3ItZmNoMi12bTV3
OrientDB Server Community Edition uses insufficiently random values to generate session IDs
Ecosystems: maven
Packages: com.orientechnologies:orientdb-server
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4d3ctdnY4NC1jMnJt
OrientDB-Server vulnerable to Cross-Site Request Forgery
Ecosystems: maven
Packages: com.orientechnologies:orientdb-studio
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhtNnItNDQ2Ni1tcjc0
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
Ecosystems: maven
Packages: com.orientechnologies:orientdb-core
Source: GitHub Advisory Database
Blast Radius: 25.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0NHYteGMzZy12N2px
OWASP AntiSamy Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4M3ctNmg5ai01N3dx
Moderate severity vulnerability that affects org.owasp.antisamy:antisamy
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2N3gtNGhwYy1oZjlm
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring2, and org.apache.cxf.fediz:fediz-spring3
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring3, org.apache.cxf.fediz:fediz-spring2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFwd2otbXZ2Ny12M205
High severity vulnerability that affects org.apache.cxf.fediz:fediz-spring and org.apache.cxf.fediz:fediz-spring2
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-spring2, org.apache.cxf.fediz:fediz-spring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzNTctODI5eC1tOXBy
Apache CXF Fediz application plugins are vulnerable to Denial of Service (DoS) attacks
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-core, org.apache.cxf.fediz:fediz-idp
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczZ2gtZzMybS1jdmhy
High severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring2, and org.apache.cxf.fediz:fediz-spring3
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-spring3, org.apache.cxf.fediz:fediz-spring2, org.apache.cxf.fediz:fediz-spring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdodzctaDI1di05cXZ4
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, and org.apache.cxf.fediz:fediz-spring2
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-spring2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIzMnItMzk3Ny1jZ2Mz
Keycloak vulnerable to uncontrolled resource consumption
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1OXEtMzJnOC12dnA3
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3ajctcHczdi0zdjN4
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3N3ItNmY2NC00Nzhx
keycloak-core discloses system properties
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjNnEtMjdtdy1wNTV3
Keycloak vulnerable to infinite loop based Denial of Service
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1bTYtbWpoMy01OGdt
Improper Authentication in org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3OHgtMm1xdi13Nnh3
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2Z3YtM3Izdi1nd2dq
keycloak-core vulnerable to timing attacks against JWS token verification
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4N3YtODRjdi05cW1j
Improper Limitation of a Pathname ('Path Traversal') in org.apache.solr:solr-core
Ecosystems: maven
Packages: org.apache.solr:solr-core
Source: GitHub Advisory Database
Blast Radius: 27.7
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThjcnYtNDlmci0yaDZq
Spring Security and Spring Framework may not recognize certain paths that should be protected
Ecosystems: maven
Packages: org.springframework.security:spring-security-core, org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 39.0
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBnZjktaDY5cC1wY2dm
Files or Directories Accessible to External Parties in org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 44.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ2N3ctNTM1ai1ycTVt
Pivotal Spring Framework DoS Attack with XML Input
Ecosystems: maven
Packages: org.springframework:spring-web
Source: GitHub Advisory Database
Blast Radius: 28.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1dmctMnY3My12bTYy
Moderate severity vulnerability that affects org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNybXYtMnBnNS14dnFq
Improperly Implemented Security Check for Standard in org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 50.9
Published: over 5 years ago
Statistics
Advisories: 18,235
Packages: 8,259
Repositories: 4,986
Ecosystems: 12
Filter by Severity
Moderate 7,871 High 6,313 Critical 2,791 Low 975
Filter by Ecosystem
maven 5,518 packagist 3,782 pypi 3,636 npm 3,530 go 1,887 nuget 1,390 rubygems 813 cargo 773 swift 31 hex 29 actions 16 pub 8
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 moodle/moodle 318 Microsoft.ChakraCore 247 org.jenkins-ci.main:jenkins-core 189 magento/community-edition 182 org.apache.tomcat:tomcat 134 pimcore/pimcore 116 dolibarr/dolibarr 105 typo3/cms 102 phpmyadmin/phpmyadmin 91 microweber/microweber 91 django 80 apache-airflow 78 typo3/cms-core 73 thorsten/phpmyfaq 70 drupal/core 70 com.fasterxml.jackson.core:jackson-databind 69 ansible 63 github.com/usememos/memos 59 actionpack 57 drupal/drupal 56 org.apache.struts:struts2-core 55 librenms/librenms 54 symfony/symfony 53 concrete5/concrete5 52 apache-superset 48 shopware/platform 48 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 baserproject/basercms 43 Plone 43 rdiffweb 42 plone 42 nokogiri 42 Pillow 41 salt 41 craftcms/cms 40 intelliants/subrion 40 showdoc/showdoc 40 github.com/mattermost/mattermost/server/v8 38 vyper 38 github.com/mattermost/mattermost-server/v6 37 org.apache.tomcat.embed:tomcat-embed-core 37 nilsteampassnet/teampass 37 com.jfinal:jfinal 36 com.thoughtworks.xstream:xstream 36 froxlor/froxlor 36 shopware/core 36 matrix-synapse 35 net.mingsoft:ms-mcms 35 github.com/answerdev/answer 34 org.xwiki.platform:xwiki-platform-oldcore 34 snipe/snipe-it 32 org.elasticsearch:elasticsearch 32 k8s.io/kubernetes 32 silverstripe/framework 32 mlflow 31 opencv-python 30 opencv-contrib-python 30 org.jenkins-ci.plugins:script-security 30 github.com/argoproj/argo-cd 29 parse-server 29 github.com/rancher/rancher 28 github.com/grafana/grafana 28 mautic/core 28 github.com/hashicorp/vault 28 Django 27 centreon/centreon 27 io.undertow:undertow-core 27 getgrav/grav 27 shopware/shopware 27 org.keycloak:keycloak-services 27 electron 26 github.com/hashicorp/nomad 26 openssl-src 26 github.com/hashicorp/consul 26 rubygems-update 25 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 gogs.io/gogs 24 magento/core 24 prestashop/prestashop 24 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 remdex/livehelperchat 23 pocketmine/pocketmine-mp 23 github.com/argoproj/argo-cd/v2 23 puppet 23 org.apache.nifi:nifi 22 getkirby/cms 22 grumpydictator/firefly-iii 22 rack 22 ckb 22 org.apache.openmeetings:openmeetings-parent 21 contao/core-bundle 21 @openzeppelin/contracts-upgradeable 21 activerecord 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 @openzeppelin/contracts 20 github.com/cilium/cilium 20 code.gitea.io/gitea 19 DotNetNuke.Core 19 github.com/docker/docker 19 github.com/ethereum/go-ethereum 19 org.springframework:spring-core 19 helm.sh/helm/v3 18 forkcms/forkcms 18 tribalsystems/zenario 18 moin 18 org.bouncycastle:bcprov-jdk14 18 langchain 18 contao/contao 18 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 Microsoft.AspNetCore.App.Runtime.win-x64 17 francoisjacquet/rosariosis 17 org.apache.geode:geode-core 17 cobbler 17 simplesamlphp/simplesamlphp 17 genix/cms 17 Microsoft.AspNetCore.App.Runtime.win-x86 17 PaddlePaddle 17 cakephp/cakephp 17 org.xwiki.platform:xwiki-platform-web-templates 17 symfony/security 17 cockpit-hq/cockpit 17 golang.org/x/net 17 org.bouncycastle:bcprov-jdk15 16 org.apache.dubbo:dubbo 16 wasmtime 16 rusqlite 16 org.apache.activemq:activemq-client 16 directus 16 pillow 16 yetiforce/yetiforce-crm 16 sequelize 16 Microsoft.AspNetCore.App.Runtime.win-arm 16 org.apache.jspwiki:jspwiki-main 15 Microsoft.AspNetCore.App.Runtime.osx-x64 15 Microsoft.AspNetCore.App.Runtime.linux-x64 15 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 15 Microsoft.AspNetCore.App.Runtime.linux-arm64 15 Microsoft.AspNetCore.App.Runtime.linux-arm 15 openmage/magento-lts 15 org.apache.struts.xwork:xwork-core 15 notebook 15 nova 15 github.com/goharbor/harbor 15 topthink/framework 15 cryptography 15 paddlepaddle 15 Microsoft.AspNetCore.App.Runtime.win-arm64 14 ezsystems/ezpublish-kernel 14 org.xwiki.platform:xwiki-platform-web 14 smarty/smarty 14 modoboa 14 Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 14 ec-cube/ec-cube 14 publify_core 14 phpmailer/phpmailer 14 tinymce 14 gradio 14 swagger-ui 14 pyload-ng 14 pyftpdlib 14 typo3/cms-backend 14 symfony/security-http 14 zendframework/zendframework1 14 activesupport 14 ghost 14 strapi 13 elefant/cms 13 passenger 13 org.apache.cxf:cxf 13 joplin 13 github.com/opencontainers/runc 13 october/system 13 keystone 13 next 13 github.com/mattermost/mattermost-server 13 codeigniter4/framework 13 github.com/containerd/containerd 13 org.apache.hadoop:hadoop-main 13 github.com/traefik/traefik/v2 13 github.com/nats-io/nats-server/v2 13 impresscms/impresscms 13 org.apache.inlong:manager-pojo 13 ckeditor4 13 studio-42/elfinder 12 com.vaadin:flow-server 12 phpbb/phpbb 12 undici 12 org.jenkins-ci.plugins:git 12 vm2 12 neutron 12 github.com/moby/moby 12 phpmyfaq/phpmyfaq 12 org.apache.dolphinscheduler:dolphinscheduler 12
Filter by Repository
https://github.com/tensorflow/tensorflow 432 https://github.com/chakra-core/ChakraCore 214 https://github.com/moodle/moodle 210 https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/pimcore/pimcore 111 https://github.com/apache/tomcat 96 https://github.com/apache/airflow 90 https://github.com/microweber/microweber 85 https://github.com/django/django 73 https://github.com/FasterXML/jackson-databind 70 https://github.com/thorsten/phpmyfaq 69 https://github.com/keycloak/keycloak 59 https://github.com/usememos/memos 59 https://github.com/Dolibarr/dolibarr 54 https://github.com/rails/rails 53 https://github.com/ansible/ansible 53 https://github.com/python-pillow/Pillow 52 https://github.com/kubernetes/kubernetes 48 https://github.com/symfony/symfony 47 https://github.com/apache/struts 46 https://github.com/librenms/librenms 46 https://github.com/shopware/platform 43 https://github.com/TYPO3/typo3 42 https://github.com/ikus060/rdiffweb 42 https://github.com/spring-projects/spring-framework 41 https://github.com/star7th/showdoc 38 https://github.com/phpmyadmin/phpmyadmin 38 https://github.com/vyperlang/vyper 38 https://github.com/argoproj/argo-cd 37 https://github.com/plone/Products.CMFPlone 37 https://github.com/x-stream/xstream 36 https://github.com/answerdev/answer 34 https://github.com/concretecms/concretecms 34 https://github.com/octobercms/october 33 https://github.com/matrix-org/synapse 32 https://github.com/apache/activemq 32 https://github.com/PaddlePaddle/Paddle 31 https://github.com/go-gitea/gitea 31 https://github.com/sparklemotion/nokogiri 31 https://github.com/magento/magento2 31 https://github.com/parse-community/parse-server 29 https://github.com/craftcms/cms 29 https://github.com/CVEProject/cvelist 28 https://github.com/opencv/opencv 28 https://github.com/snipe/snipe-it 28 https://github.com/mautic/mautic 27 https://github.com/froxlor/froxlor 26 https://github.com/saltstack/salt 26 https://github.com/apache/inlong 25 https://github.com/electron/electron 25 https://github.com/mlflow/mlflow 25 https://github.com/rancher/rancher 25 https://github.com/shopware/shopware 24 https://github.com/TYPO3/TYPO3.CMS 24 https://github.com/livehelperchat/livehelperchat 23 https://github.com/eclipse/jetty.project 23 https://github.com/getgrav/grav 23 https://github.com/github/advisory-database 23 https://github.com/pmmp/PocketMine-MP 23 https://github.com/dotnet/runtime 23 https://github.com/grafana/grafana 22 https://github.com/nervosnetwork/ckb 22 https://github.com/contao/contao 22 https://github.com/baserproject/basercms 22 https://github.com/firefly-iii/firefly-iii 22 https://github.com/strapi/strapi 21 https://github.com/apache/nifi 21 https://github.com/gogs/gogs 20 https://github.com/OpenZeppelin/openzeppelin-contracts 20 https://github.com/jenkinsci/script-security-plugin 20 https://github.com/netty/netty 20 https://github.com/cilium/cilium 20 https://github.com/OpenNMS/opennms 20 https://github.com/PrestaShop/PrestaShop 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/nilsteampassnet/teampass 19 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/intelliants/subrion 19 https://github.com/helm/helm 19 https://github.com/hashicorp/consul 19 https://github.com/nilsteampassnet/TeamPass 18 https://github.com/bcgit/bc-java 18 https://github.com/getkirby/kirby 18 https://github.com/rubygems/rubygems 18 https://github.com/bytecodealliance/wasmtime 17 https://github.com/vaadin/platform 17 https://github.com/rack/rack 17 https://github.com/liufee/cms 17 https://github.com/umbraco/Umbraco-CMS 16 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/forkcms/forkcms 16 https://github.com/etcd-io/etcd 16 https://github.com/rusqlite/rusqlite 16 https://github.com/hashicorp/vault 16 https://github.com/sequelize/sequelize 16 https://github.com/opencast/opencast 16 https://github.com/centreon/centreon 15 https://github.com/ethereum/go-ethereum 15 https://github.com/OpenMage/magento-lts 15 https://github.com/directus/directus 15 https://github.com/puppetlabs/puppet 15 https://github.com/apache/camel 15 https://github.com/goharbor/harbor 15 https://github.com/geoserver/geoserver 15 https://github.com/denoland/deno 14 https://github.com/langchain-ai/langchain 14 https://github.com/vantage6/vantage6 14 https://github.com/tinymce/tinymce 14 https://github.com/simplesamlphp/simplesamlphp 14 https://github.com/pyload/pyload 14 https://github.com/moby/moby 14 https://github.com/cobbler/cobbler 14 https://github.com/PHPMailer/PHPMailer 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/mattermost/mattermost 14 https://github.com/pyca/cryptography 14 https://github.com/golang/go 13 https://github.com/dompdf/dompdf 13 https://github.com/containerd/containerd 13 https://github.com/gradio-app/gradio 13 https://github.com/modoboa/modoboa 13 https://github.com/undertow-io/undertow 13 https://github.com/silverstripe/silverstripe-framework 13 https://github.com/quarkusio/quarkus 13 https://github.com/publify/publify 13 https://github.com/swagger-api/swagger-ui 13 https://github.com/traefik/traefik 13 https://github.com/xuxueli/xxl-job 13 https://github.com/hashicorp/nomad 13 https://github.com/ming-soft/MCMS 13 https://github.com/ckeditor/ckeditor4 12 https://github.com/nodejs/undici 12 https://github.com/apache/kylin 12 https://github.com/patriksimek/vm2 12 https://github.com/apache/dolphinscheduler 12 https://github.com/backstage/backstage 12 https://github.com/twisted/twisted 12 https://github.com/TryGhost/Ghost 12 https://github.com/centreon/centreon-archived 12 https://github.com/dromara/hutool 12 https://github.com/laurent22/joplin 12 https://github.com/thorsten/phpMyFAQ 11 https://github.com/openstack/keystone 11 https://github.com/containers/podman 11 https://github.com/opencontainers/runc 11 https://github.com/onionshare/onionshare 11 https://github.com/drupal/core 11 https://github.com/cloudflare/cfrpki 11 https://github.com/igniterealtime/Openfire 11 https://github.com/smarty-php/smarty 11 https://github.com/urllib3/urllib3 11 https://github.com/openfga/openfga 11 https://github.com/NodeBB/NodeBB 11 https://github.com/puma/puma 11 https://github.com/cakephp/cakephp 11 https://github.com/Studio-42/elFinder 11 https://github.com/vaadin/flow 11 https://github.com/janeczku/calibre-web 11 https://github.com/jquery/jquery 11 https://github.com/greenpau/caddy-security 10 https://github.com/ezsystems/ezpublish-kernel 10 https://github.com/zitadel/zitadel 10 https://github.com/keystonejs/keystone 10 https://github.com/cosmos/cosmos-sdk 10 https://github.com/OPCFoundation/UA-.NETStandard 10 https://github.com/zopefoundation/Zope 10 https://github.com/pimcore/admin-ui-classic-bundle 10 https://github.com/codeigniter4/CodeIgniter4 10 https://github.com/1Panel-dev/1Panel 10 https://github.com/dolibarr/dolibarr 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/aio-libs/aiohttp 10 https://github.com/WWBN/AVideo 10 https://github.com/jupyter/notebook 10 https://github.com/dotnet/aspnetcore 10 https://github.com/phusion/passenger 10 https://github.com/nextauthjs/next-auth 10 https://github.com/nats-io/nats-server 10 https://github.com/dpgaspar/Flask-AppBuilder 10 https://github.com/semplon/GeniXCMS 9 https://github.com/rails/rails-html-sanitizer 9 https://github.com/DSpace/DSpace 9 https://github.com/bolt/bolt 9 https://github.com/top-think/framework 9 https://github.com/evershopcommerce/evershop 9 https://github.com/apache/lucene-solr 9 https://github.com/kevinpapst/kimai2 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/spring-projects/spring-security 9 https://github.com/laravel/framework 9 https://github.com/ethyca/fides 9 https://github.com/LavaLite/cms 9 https://github.com/giampaolo/pyftpdlib 9 https://github.com/cui2shark/cms 9 https://github.com/apache/superset 9 https://github.com/fatfreecrm/fat_free_crm 9 https://github.com/neorazorx/facturascripts 9