Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories
Browse all Security Advisories for
Loading...
Moderate
Ecosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM2M2gtdmo2cS0zY21q
Rosetta-Flash JSONP Vulnerability in hapiEcosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: fancy-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW0yNzMtd3dmdi1oNmpw
Directory Traversal in fancy-serverEcosystems: npm
Packages: fancy-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: ep_imageconvert
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI4Z3ItODZoZy1yNDh3
Unauthenticated Remote Command Injection in ep_imageconvertEcosystems: npm
Packages: ep_imageconvert
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 4 years ago
High
Ecosystems: packagist, npm
Packages: datatables/datatables, datatables
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtdjQtZ21tZi1xMzgy
DataTable Vulnerable to Cross-Site ScriptingEcosystems: packagist, npm
Packages: datatables/datatables, datatables
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Low
Ecosystems: npm
Packages: connect
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmdzgtNjZ3Zi1wcjdt
methodOverride Middleware Reflected Cross-Site Scripting in connectEcosystems: npm
Packages: connect
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Low
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY3M3gtZjV3eC1meHB3
Cross Site Scripting and RCE in baserCMSEcosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNocWotajRmaC1ydzdt
Cross-Site Scripting in dompurifyEcosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: @novnc/novnc
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5cnYtZzd3NS1tOHh4
Cross-Site Scripting in @novnc/novncEcosystems: npm
Packages: @novnc/novnc
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: over 4 years ago
Low
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyM20tajZ4NS00OG0z
Cross Site Scripting(XSS) Vulnerability in Latest Release 4.3.6 Site basic settingsEcosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 4 years ago
Low
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNweGMtNjdyYy1jNzc1
Cross Site Scripting in baserCMSEcosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: flood
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI1ODctN2poMi00cXIz
Server secret was included in static assets and served to clientsEcosystems: npm
Packages: flood
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: nodebb-plugin-blog-comments
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzbTUtYzg4ci1janZ2
XSS due to lack of CSRF validation for replying/publishingEcosystems: npm
Packages: nodebb-plugin-blog-comments
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: safe-eval
Source: GitHub Advisory Database
Blast Radius: 33.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhycHEtcjM5OS13aGd3
Sandbox Breakout / Arbitrary Code Execution in safe-evalEcosystems: npm
Packages: safe-eval
Source: GitHub Advisory Database
Blast Radius: 33.7
Published: over 4 years ago
High
Ecosystems: npm
Packages: highcharts
Source: GitHub Advisory Database
Blast Radius: 36.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdyNGotcjU3NS1nNjY1
Cross-Site Scripting in highchartsEcosystems: npm
Packages: highcharts
Source: GitHub Advisory Database
Blast Radius: 36.7
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Red-DiscordBot
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcyNTctOTZ2Zy1xZjZ4
Remote Code Execution in Red Discord BotEcosystems: pypi
Packages: Red-DiscordBot
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: Red-DiscordBot
Source: GitHub Advisory Database
Blast Radius: 11.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU1ajktODQ5eC0yNmg0
Remote Code Execution in Red Discord BotEcosystems: pypi
Packages: Red-DiscordBot
Source: GitHub Advisory Database
Blast Radius: 11.0
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: tuf
Source: GitHub Advisory Database
Blast Radius: 8.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI4MjgtOXZoNi05bTZq
Client Denial of Service on TUFEcosystems: pypi
Packages: tuf
Source: GitHub Advisory Database
Blast Radius: 8.4
Published: over 4 years ago
Critical
Ecosystems: pypi
Packages: tuf
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB3cWYtOWg3ai03bXY4
Incorrect threshold signature computation in TUFEcosystems: pypi
Packages: tuf
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: bcrypt
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV3ZzQtNzRoNi1xNDd2
Integer Overflow or Wraparound and Use of a Broken or Risky Cryptographic Algorithm in bcryptEcosystems: npm
Packages: bcrypt
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 4 years ago
High
Ecosystems: pypi
Packages: openapi-python-client
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4NGMtNjNwZi01MjVm
openapi-python-client Arbitrary Code Generation vulnerabilityEcosystems: pypi
Packages: openapi-python-client
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: over 4 years ago
Low
Ecosystems: pypi
Packages: openapi-python-client
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3Z3ItNzY2Ni03cHdq
Path Traversal in openapi-python-clientEcosystems: pypi
Packages: openapi-python-client
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 4 years ago
Low
Ecosystems: npm
Packages: auth0-lock
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnZzMtcG1tNy05N3hj
DOM-based XSS in auth0-lockEcosystems: npm
Packages: auth0-lock
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: over 4 years ago
High
Ecosystems: packagist
Packages: sylius/resource-bundle
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA0cGotOWc1OS00cHB2
Remote Code Execution in SyliusResourceBundleEcosystems: packagist
Packages: sylius/resource-bundle
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: over 4 years ago
Critical
Ecosystems: packagist
Packages: sylius/resource-bundle
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg2bTctajRoMy05cmY1
Remote Code Execution in SyliusResourceBundleEcosystems: packagist
Packages: sylius/resource-bundle
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: over 4 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyZjIteG02eC00NnA2
Observable Timing Discrepancy in OpenMage LTSEcosystems: packagist
Packages: openmage/magento-lts
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: moped
Source: GitHub Advisory Database
Blast Radius: 29.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5M2otaG1jci1qY3do
Moped Rubygem Data Injection VulnerabilityEcosystems: rubygems
Packages: moped
Source: GitHub Advisory Database
Blast Radius: 29.4
Published: over 4 years ago
Moderate
Ecosystems: maven
Packages: com.typesafe.play:play_2.12
Source: GitHub Advisory Database
Blast Radius: 15.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmOGotNjRoOS02cTU4
CSRF in Play FrameworkEcosystems: maven
Packages: com.typesafe.play:play_2.12
Source: GitHub Advisory Database
Blast Radius: 15.2
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: ftp-srv
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp3MzctNWdxci1jZjlq
Server-Side Request Forgery in ftp-srvEcosystems: npm
Packages: ftp-srv
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: over 4 years ago
High
Ecosystems: npm
Packages: @uppy/companion
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTltNHgtOHcyOS1yNzhn
Server-Side Request Forgery in @uppy/companionEcosystems: npm
Packages: @uppy/companion
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: over 4 years ago
Moderate
Ecosystems: rubygems
Packages: chartkick
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqOTUtZmp2Mi0zbTRw
CSS Injection in Chartkick gemEcosystems: rubygems
Packages: chartkick
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: over 4 years ago
High
Ecosystems: npm
Packages: @progress/kendo-angular-editor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3d3AtdmpqNi1jcDVt
Cross-Site Scripting in @progress/kendo-angular-editorEcosystems: npm
Packages: @progress/kendo-angular-editor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4Y2MtZjUycC13Yzk0
Insecure serialization leading to RCE in serialize-javascriptEcosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZydjgtdjR3OC1mOTVo
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: datasette
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2ajMtYzR3Yy02M3Z3
CSRF tokens leaked in URL by canned query formEcosystems: pypi
Packages: datasette
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 4 years ago
High
Ecosystems: npm
Packages: prismjs
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2aG0tNGhoZi05N3g5
Cross-Site Scripting in PrismEcosystems: npm
Packages: prismjs
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: over 4 years ago
Critical
Ecosystems: rubygems
Packages: kramdown
Source: GitHub Advisory Database
Blast Radius: 55.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xbTItY2dwci1wNG02
Unintended read access in kramdown gemEcosystems: rubygems
Packages: kramdown
Source: GitHub Advisory Database
Blast Radius: 55.7
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 23.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVjcDQteG1ydy01OXdm
XSS via JQLite DOM manipulation functions in AngularJSEcosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 23.8
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: polaris-website
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdocmgtOWo0cS1nN3Bo
CSRF Vulnerability in polaris-websiteEcosystems: npm
Packages: polaris-website
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Moderate
Ecosystems: packagist
Packages: sulu/sulu
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmbTQtcHE1OS13ZzZy
Reset Password / Login vulnerability in SuluEcosystems: packagist
Packages: sulu/sulu
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: pghero
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2ZngtNzUyci1jY3Ay
PgHero gem allows CSRFEcosystems: rubygems
Packages: pghero
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: over 4 years ago
Moderate
Ecosystems: rubygems
Packages: field_test
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc1NDItY3BwOS1yM2c3
Field Test CSRF vulnerabilityEcosystems: rubygems
Packages: field_test
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: fastify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh3NXAtaHc2ci0yajk4
Denial of service in fastifyEcosystems: npm
Packages: fastify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: express-fileupload
Source: GitHub Advisory Database
Blast Radius: 43.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl3Y2ctanJ3Zi04Z2c3
Prototype Pollution in express-fileuploadEcosystems: npm
Packages: express-fileupload
Source: GitHub Advisory Database
Blast Radius: 43.3
Published: over 4 years ago
Critical
Ecosystems: maven
Packages: org.springframework.integration:spring-integration-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2cXItOXZxYy1wZ2M2
Code execution in Spring IntegrationEcosystems: maven
Packages: org.springframework.integration:spring-integration-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 4 years ago
Critical
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 42.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzcmgtbTd2cC0zNWYy
Operation on a Resource after Expiration or Release in Jetty ServerEcosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 42.7
Published: over 4 years ago
Moderate
Ecosystems: packagist
Packages: october/rain
Source: GitHub Advisory Database
Blast Radius: 18.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU1bW0tNTM5OS03cjYz
Reliance on Cookies without validation in OctoberCMSEcosystems: packagist
Packages: october/rain
Source: GitHub Advisory Database
Blast Radius: 18.4
Published: over 4 years ago
Low
Ecosystems: packagist
Packages: october/backend
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0cGotN3A2OC0zdmd2
Stored XSS in OctoberEcosystems: packagist
Packages: october/backend
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: over 4 years ago
Moderate
Ecosystems: rubygems
Packages: solidus_api, solidus_frontend
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNtdmctcnJydy1tN3Bo
Ability to change order address without triggering address validations in solidusEcosystems: rubygems
Packages: solidus_api, solidus_frontend
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: save-server
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd3cmotMzV3Ni03N2Zm
CSRF vulnerability in save-serverEcosystems: npm
Packages: save-server
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: faye-websocket
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ2NWMtNzU1cC1wNGd2
Missing TLS certificate verification in faye-websocketEcosystems: rubygems
Packages: faye-websocket
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: faye
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNxNDktaDhmOS05ZnI5
Missing TLS certificate verificationEcosystems: rubygems
Packages: faye
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: over 4 years ago
Moderate
Ecosystems: packagist
Packages: kitodo/presentation
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwcXYteDlobS0zNWo5
Cross-site Scripting vulnerability in Kitodo.PresentationEcosystems: packagist
Packages: kitodo/presentation
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZqbXItamZoNy14ZzNo
False-positive validity for NFT1 genesis transactionsEcosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 13.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNjMnAtNGpoci14aGh4
False-positive validity for NFT1 genesis transactions in SLPJSEcosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 13.5
Published: over 4 years ago
High
Ecosystems: npm
Packages: dot-prop
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmN3gtcXJnNy1xZ2dt
dot-prop Prototype Pollution vulnerabilityEcosystems: npm
Packages: dot-prop
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: over 4 years ago
High
Ecosystems: npm
Packages: elliptic
Source: GitHub Advisory Database
Blast Radius: 44.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZoN20tcDcyNC02MmMy
Signature Malleabillity in ellipticEcosystems: npm
Packages: elliptic
Source: GitHub Advisory Database
Blast Radius: 44.8
Published: over 4 years ago
High
Ecosystems: maven
Packages: org.apache.camel:camel-robotframework
Source: GitHub Advisory Database
Blast Radius: 10.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl2ZmotNWc3aC00cDI0
Server side template injection in Apache CamelEcosystems: maven
Packages: org.apache.camel:camel-robotframework
Source: GitHub Advisory Database
Blast Radius: 10.5
Published: over 4 years ago
High
Ecosystems: packagist
Packages: marcwillmann/turn
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3ajUtOWo3Ny1nNGdx
Remote code execution in turn extension for TYPO3Ecosystems: packagist
Packages: marcwillmann/turn
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
Moderate
Ecosystems: packagist
Packages: mittwald/typo3_forum
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU3Z3ItanZxci0zaHdt
Incorrect access control in typo3_forumEcosystems: packagist
Packages: mittwald/typo3_forum
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: rollup-plugin-server
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZyOTgtMjdxai0zYzhx
Directory traversal in rollup-plugin-serverEcosystems: npm
Packages: rollup-plugin-server
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: over 4 years ago
High
Ecosystems: pypi
Packages: uvicorn
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5N2gtMnBmeC1mNTlm
HTTP response splitting in uvicornEcosystems: pypi
Packages: uvicorn
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: over 4 years ago
High
Ecosystems: pypi
Packages: uvicorn
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzYzctMm1wdy1oZzM0
Log injection in uvicornEcosystems: pypi
Packages: uvicorn
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: over 4 years ago
High
Ecosystems: npm
Packages: rollup-plugin-server
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM0Z2gtM2N3di13dnAy
Directory traversal in rollup-plugin-serverEcosystems: npm
Packages: rollup-plugin-server
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: over 4 years ago
High
Ecosystems: nuget
Packages: UmbracoForms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtNzMtdzJyMi02eHhq
Insecure defaults in UmbracoFormsEcosystems: nuget
Packages: UmbracoForms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: auth0
Source: GitHub Advisory Database
Blast Radius: 29.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVqcGYtcGozMi14eDUz
Authorization header is not sanitized in an error object in auth0Ecosystems: npm
Packages: auth0
Source: GitHub Advisory Database
Blast Radius: 29.7
Published: over 4 years ago
High
Ecosystems: packagist
Packages: typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN4OTQtZnY1aC01cTJj
Exposure of Sensitive Information to an Unauthorized Actor in TYPO3 CMSEcosystems: packagist
Packages: typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 4 years ago
High
Ecosystems: packagist
Packages: typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01dnItM203NC1qd3hw
Missing Required Cryptographic Step Leading to Sensitive Information Disclosure in TYPO3 CMSEcosystems: packagist
Packages: typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: over 4 years ago
Critical
Ecosystems: packagist
Packages: friendsoftypo3/mediace
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRoNDQtdzZmbS01NDhn
Potential Remote Code Execution in TYPO3 with mediace extensionEcosystems: packagist
Packages: friendsoftypo3/mediace
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: git-tags-remote
Source: GitHub Advisory Database
Blast Radius: 16.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdtOXgtcTc5OC1obXI0
Command Injection in git-tags-remoteEcosystems: npm
Packages: git-tags-remote
Source: GitHub Advisory Database
Blast Radius: 16.3
Published: over 4 years ago
Moderate
Ecosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdobWgtOGd3di1tZnZx
SQL Injection in KylinEcosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: over 4 years ago
High
Ecosystems: maven
Packages: org.apache.kylin:kylin-core-common
Source: GitHub Advisory Database
Blast Radius: 13.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwcm0teHFyYy1jMmoz
Command Injection in KylinEcosystems: maven
Packages: org.apache.kylin:kylin-core-common
Source: GitHub Advisory Database
Blast Radius: 13.1
Published: over 4 years ago
Critical
Ecosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4NWctOGhxMi04eDR3
SQL Injection in KylinEcosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 4 years ago
Critical
Ecosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3ZnctZ3h4Mi1tbXYy
Command Injection in KylinEcosystems: maven
Packages: org.apache.kylin:kylin-server-base
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxaGcteGpoaC1wOGhm
Out-of-bounds reads in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4NDMtbTdtdy1teHFt
Buffer overflow in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqNDIteHEzci1ocjNy
Out-of-bounds reads in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 4 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzZnEtdzhxcS12ODho
Out-of-bounds read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: scratch-vm
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjOWotZmh2di04dnJm
Remote Code Execution in scratch-vmEcosystems: npm
Packages: scratch-vm
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: json
Source: GitHub Advisory Database
Blast Radius: 43.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwaGctcXdydy03dzln
Unsafe object creation in json RubyGemEcosystems: rubygems
Packages: json
Source: GitHub Advisory Database
Blast Radius: 43.8
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: ihatemoney
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY3ajktYzUyZy13MnE5
Authorization Bypass in I hate moneyEcosystems: pypi
Packages: ihatemoney
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozOGMtMjVmai1tcjg0
Stored XSS in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: over 4 years ago
Critical
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk3NnItcWZqai1jMjR3
Command injection via Celery broker in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 4 years ago
High
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 28.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2bXEtNHg2Ni1xN2oz
Remote code execution (RCE) in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 28.1
Published: over 4 years ago
Critical
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlnMnctNWYzdi1tZm1t
Insecure default config of Celery worker in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 17.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0cDMtcXc1Yy1taHBj
Multiple stored XSS in RBAC Admin screens in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 17.2
Published: over 4 years ago
High
Ecosystems: npm
Packages: fast-http
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdwaHItNW05eC1ydzlx
Directory traversal in fast-httpEcosystems: npm
Packages: fast-http
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: jpeg-js
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc3cTktcDNqcS1mbWht
Uncontrolled resource consumption in jpeg-jsEcosystems: npm
Packages: jpeg-js
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: over 4 years ago
High
Ecosystems: npm
Packages: sails-hook-sockets
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3ZjQtaHFwMi03cHJj
Improper Input Validation in sails-hook-socketsEcosystems: npm
Packages: sails-hook-sockets
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2aDctNXAzOC0ycWZj
Storing Password in Local StorageEcosystems: npm
Packages: parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: pypi
Packages: jupyterhub-kubespawner
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3bTktOTQ5Ny1wOWdy
Possible pod name collisions in jupyterhub-kubespawnerEcosystems: pypi
Packages: jupyterhub-kubespawner
Source: GitHub Advisory Database
Blast Radius: 11.9
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: parse-server
Source: GitHub Advisory Database
Blast Radius: 20.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzNmgtcnF2OC04cTcz
GraphQL: Security breach on Viewer queryEcosystems: npm
Packages: parse-server
Source: GitHub Advisory Database
Blast Radius: 20.0
Published: over 4 years ago
High
Ecosystems: pypi
Packages: wagtail
Source: GitHub Advisory Database
Blast Radius: 18.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0NzMtOWhncS1qN3h3
Cross-Site Scripting in WagtailEcosystems: pypi
Packages: wagtail
Source: GitHub Advisory Database
Blast Radius: 18.8
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhwNjMtNnZmNS14ZjN2
Command injection in codecov (npm package)Ecosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: over 4 years ago
High
Ecosystems: npm
Packages: lodash.updatewith, lodash.update, lodash.setwith, lodash.set, lodash.pick, lodash-es, lodash
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2bWMtbTQ2OC04M2d3
Prototype Pollution in lodashEcosystems: npm
Packages: lodash.updatewith, lodash.update, lodash.setwith, lodash.set, lodash.pick, lodash-es, lodash
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: over 4 years ago
Moderate
Ecosystems: packagist
Packages: silverstripe/framework
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzamotMnJ3Yy0ybTNm
Broken access control on filesEcosystems: packagist
Packages: silverstripe/framework
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: standard-version
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4Y3gtNndqaC03eHAy
Command Injection in standard-versionEcosystems: npm
Packages: standard-version
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: django-two-factor-auth
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZocjYtcHZqbS05cXdm
User passwords are stored in clear text in the Django sessionEcosystems: pypi
Packages: django-two-factor-auth
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: over 4 years ago
High
Ecosystems: npm
Packages: @knight-lab/timelinejs
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqcG0tODI3cC1qNDRn
Stored XSS in TimelineJS3Ecosystems: npm
Packages: @knight-lab/timelinejs
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: over 4 years ago
High
Ecosystems: npm
Packages: socket.io-file
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloNGctMjdtOC1xanJn
Path Traversal in socket.io-fileEcosystems: npm
Packages: socket.io-file
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: npm-registry-fetch
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptcW0tZjJneC00Zmp2
Sensitive information exposure through logs in npm-registry-fetchEcosystems: npm
Packages: npm-registry-fetch
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: over 4 years ago
Statistics
Advisories: 21,224
Packages: 9,272
Repositories: 5,670
Ecosystems: 12
Packages: 9,272
Repositories: 5,670
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
433
tensorflow-gpu
427
tensorflow-cpu
423
moodle/moodle
367
Microsoft.ChakraCore
247
magento/community-edition
235
org.jenkins-ci.main:jenkins-core
193
typo3/cms
174
org.apache.tomcat:tomcat
132
pimcore/pimcore
119
dolibarr/dolibarr
115
typo3/cms-core
107
Django
103
drupal/core
99
microweber/microweber
97
phpmyadmin/phpmyadmin
93
silverstripe/framework
89
apache-airflow
85
drupal/drupal
83
librenms/librenms
80
thorsten/phpmyfaq
73
github.com/mattermost/mattermost/server/v8
72
Plone
72
symfony/symfony
69
com.fasterxml.jackson.core:jackson-databind
69
github.com/usememos/memos
64
ansible
63
actionpack
61
concrete5/concrete5
60
salt
56
org.apache.struts:struts2-core
56
apache-superset
55
shopware/platform
52
com.liferay.portal:release.portal.bom
52
github.com/grafana/grafana
50
org.keycloak:keycloak-core
49
craftcms/cms
48
baserproject/basercms
47
nova
47
mlflow
47
django
46
nokogiri
43
rdiffweb
42
matrix-synapse
41
plone
41
org.apache.tomcat.embed:tomcat-embed-core
40
showdoc/showdoc
40
nilsteampassnet/teampass
40
shopware/core
40
intelliants/subrion
39
org.elasticsearch:elasticsearch
39
github.com/rancher/rancher
39
vyper
39
froxlor/froxlor
38
github.com/mattermost/mattermost-server/v6
38
com.thoughtworks.xstream:xstream
37
org.xwiki.platform:xwiki-platform-oldcore
37
github.com/hashicorp/vault
37
mautic/core
37
com.jfinal:jfinal
36
k8s.io/kubernetes
36
net.mingsoft:ms-mcms
35
org.keycloak:keycloak-services
35
moin
35
snipe/snipe-it
35
gradio
35
github.com/answerdev/answer
34
io.undertow:undertow-core
34
zendframework/zendframework1
34
org.jenkins-ci.plugins:script-security
33
keystone
32
github.com/argoproj/argo-cd
31
parse-server
31
Pillow
31
gogs.io/gogs
31
opencv-python
31
opencv-contrib-python
31
getgrav/grav
30
shopware/shopware
30
directus
30
github.com/argoproj/argo-cd/v2
29
github.com/hashicorp/consul
29
github.com/docker/docker
29
github.com/hashicorp/nomad
29
mediawiki/core
28
github.com/cilium/cilium
28
centreon/centreon
27
org.apache.solr:solr-core
27
electron
26
openssl-src
26
prestashop/prestashop
26
pillow
26
org.springframework.security:spring-security-core
25
rubygems-update
25
magento/core
24
contao/core-bundle
24
org.eclipse.jetty:jetty-server
24
com.liferay.portal:release.dxp.bom
24
org.keycloak:keycloak-parent
24
pocketmine/pocketmine-mp
23
zendframework/zendframework
23
puppet
23
grumpydictator/firefly-iii
23
simplesamlphp/simplesamlphp
23
remdex/livehelperchat
23
rack
23
ckb
22
getkirby/cms
22
tribalsystems/zenario
22
org.bouncycastle:bcprov-jdk14
22
org.apache.openmeetings:openmeetings-parent
22
activerecord
21
org.apache.nifi:nifi
21
phpoffice/phpspreadsheet
21
glance
21
@openzeppelin/contracts-upgradeable
21
Microsoft.AspNetCore.App.Runtime.win-x86
21
Microsoft.AspNetCore.App.Runtime.win-x64
21
github.com/ethereum/go-ethereum
21
Microsoft.AspNetCore.App.Runtime.win-arm
20
code.gitea.io/gitea
20
langchain
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
github.com/traefik/traefik/v2
20
next
20
funadmin/funadmin
20
@openzeppelin/contracts
20
laravel/framework
20
github.com/goharbor/harbor
19
golang.org/x/net
19
DotNetNuke.Core
19
contao/contao
19
org.xwiki.platform:xwiki-platform-web-templates
19
wasmtime
19
topthink/framework
18
Microsoft.AspNetCore.App.Runtime.win-arm64
18
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
18
Microsoft.AspNetCore.App.Runtime.osx-x64
18
Microsoft.AspNetCore.App.Runtime.linux-x64
18
Microsoft.AspNetCore.App.Runtime.linux-arm64
18
cockpit-hq/cockpit
18
Microsoft.AspNetCore.App.Runtime.linux-arm
18
cobbler
18
com.vaadin:vaadin-bom
18
forkcms/forkcms
18
mercurial
18
mindsdb
18
opencart/opencart
17
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
17
cakephp/cakephp
17
yetiforce/yetiforce-crm
17
helm.sh/helm/v3
17
notebook
17
org.springframework:spring-core
17
org.apache.geode:geode-core
17
francoisjacquet/rosariosis
17
ezsystems/ezpublish-kernel
17
genix/cms
17
symfony/security
17
neutron
17
surrealdb
16
openmage/magento-lts
16
org.apache.activemq:activemq-client
16
PaddlePaddle
16
org.apache.jspwiki:jspwiki-main
16
sequelize
16
org.bouncycastle:bcprov-jdk15
16
ethyca-fides
16
pyload-ng
16
rusqlite
16
org.apache.dubbo:dubbo
16
phpbb/phpbb
16
cryptography
16
paddlepaddle
16
github.com/zitadel/zitadel
16
tinymce
16
typo3/cms-backend
16
ec-cube/ec-cube
15
october/system
15
OctoPrint
15
calibreweb
15
org.apache.struts.xwork:xwork-core
15
ghost
15
Microsoft.NetCore.App.Runtime.win-arm
15
Microsoft.NetCore.App.Runtime.win-arm64
15
Microsoft.NetCore.App.Runtime.win-x64
15
ckeditor4
15
Microsoft.NetCore.App.Runtime.win-x86
15
smarty/smarty
15
symfony/security-http
15
swagger-ui
14
aiohttp
14
org.xwiki.platform:xwiki-platform-web
14
undici
14
github.com/containerd/containerd
14
codeigniter4/framework
14
silverstripe/cms
14
publify_core
14
modoboa
14
github.com/nats-io/nats-server/v2
14
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
218
https://github.com/chakra-core/ChakraCore
214
https://github.com/xwiki/xwiki-platform
189
https://github.com/jenkinsci/jenkins
150
https://github.com/pimcore/pimcore
115
https://github.com/django/django
114
https://github.com/apache/tomcat
103
https://github.com/apache/airflow
101
https://github.com/microweber/microweber
88
https://github.com/TYPO3/typo3
85
https://github.com/keycloak/keycloak
78
https://github.com/librenms/librenms
71
https://github.com/FasterXML/jackson-databind
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/rails/rails
66
https://github.com/silverstripe/silverstripe-framework
66
https://github.com/usememos/memos
64
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
59
https://github.com/ansible/ansible
58
https://github.com/kubernetes/kubernetes
53
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
48
https://github.com/apache/struts
46
https://github.com/argoproj/argo-cd
44
https://github.com/shopware/platform
43
https://github.com/ikus060/rdiffweb
42
https://github.com/concretecms/concretecms
41
https://github.com/grafana/grafana
41
https://github.com/vyperlang/vyper
39
https://github.com/phpmyadmin/phpmyadmin
39
https://github.com/magento/magento2
38
https://github.com/star7th/showdoc
38
https://github.com/openstack/nova
37
https://github.com/plone/Products.CMFPlone
37
https://github.com/x-stream/xstream
37
https://github.com/dotnet/runtime
36
https://github.com/craftcms/cms
36
https://github.com/octobercms/october
35
https://github.com/rancher/rancher
35
https://github.com/mautic/mautic
35
https://github.com/saltstack/salt
34
https://github.com/answerdev/answer
34
https://github.com/apache/activemq
33
https://github.com/gradio-app/gradio
32
https://github.com/go-gitea/gitea
32
https://github.com/matrix-org/synapse
32
https://github.com/sparklemotion/nokogiri
32
https://github.com/opencv/opencv
32
https://github.com/parse-community/parse-server
31
https://github.com/mlflow/mlflow
31
https://github.com/PaddlePaddle/Paddle
31
https://github.com/snipe/snipe-it
30
https://github.com/umbraco/Umbraco-CMS
29
https://github.com/directus/directus
29
https://github.com/CVEProject/cvelist
28
https://github.com/shopware/shopware
28
https://github.com/cilium/cilium
28
https://github.com/openstack/keystone
28
https://github.com/apache/inlong
27
https://github.com/froxlor/froxlor
26
https://github.com/baserproject/basercms
26
https://github.com/gogs/gogs
26
https://github.com/electron/electron
25
https://github.com/github/advisory-database
25
https://github.com/contao/contao
25
https://github.com/strapi/strapi
24
https://github.com/getgrav/grav
24
https://github.com/apache/nifi
24
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/eclipse/jetty.project
23
https://github.com/pmmp/PocketMine-MP
23
https://github.com/PrestaShop/PrestaShop
22
https://github.com/apache/cxf
22
https://github.com/nervosnetwork/ckb
22
https://github.com/langchain-ai/langchain
22
https://github.com/hashicorp/consul
22
https://github.com/netty/netty
21
https://github.com/jenkinsci/script-security-plugin
21
https://github.com/nilsteampassnet/TeamPass
21
https://github.com/PHPOffice/PhpSpreadsheet
21
https://github.com/funadmin/funadmin
20
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/bytecodealliance/wasmtime
20
https://github.com/traefik/traefik
20
https://github.com/undertow-io/undertow
20
https://github.com/moby/moby
20
https://github.com/OpenNMS/opennms
20
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/goharbor/harbor
19
https://github.com/bcgit/bc-java
19
https://github.com/zitadel/zitadel
19
https://github.com/geoserver/geoserver
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/cloudfoundry/uaa
19
https://github.com/getkirby/kirby
19
https://github.com/rack/rack
18
https://github.com/helm/helm
18
https://github.com/rubygems/rubygems
18
https://github.com/intelliants/subrion
18
https://github.com/mindsdb/mindsdb
17
https://github.com/laravel/framework
17
https://github.com/denoland/deno
17
https://github.com/backstage/backstage
17
https://github.com/hashicorp/vault
17
https://github.com/liufee/cms
17
https://github.com/vaadin/platform
17
https://github.com/ethereum/go-ethereum
17
https://github.com/opencast/opencast
17
https://github.com/pyload/pyload
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/forkcms/forkcms
16
https://github.com/mattermost/mattermost
16
https://github.com/tinymce/tinymce
16
https://github.com/TYPO3-CMS/core
16
https://github.com/sequelize/sequelize
16
https://github.com/vercel/next.js
16
https://github.com/OpenMage/magento-lts
16
https://github.com/rusqlite/rusqlite
16
https://github.com/etcd-io/etcd
16
https://github.com/ethyca/fides
16
https://github.com/surrealdb/surrealdb
16
https://github.com/drupal/core
15
https://github.com/hashicorp/nomad
15
https://github.com/centreon/centreon
15
https://github.com/dompdf/dompdf
15
https://github.com/pyca/cryptography
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/cobbler/cobbler
15
https://github.com/apache/camel
15
https://github.com/zendframework/zendframework
15
https://github.com/puppetlabs/puppet
15
https://github.com/vantage6/vantage6
15
https://github.com/decidim/decidim
15
https://github.com/janeczku/calibre-web
14
https://github.com/xuxueli/xxl-job
14
https://github.com/thorsten/phpMyFAQ
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/ckeditor/ckeditor4
14
https://github.com/twisted/twisted
14
https://github.com/nodejs/undici
14
https://github.com/containerd/containerd
14
https://github.com/aio-libs/aiohttp
14
https://github.com/dotnet/aspnetcore
14
https://github.com/golang/go
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/apache/superset
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/dromara/hutool
13
https://github.com/quarkusio/quarkus
13
https://github.com/OPCFoundation/UA-.NETStandard
13
https://github.com/publify/publify
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/modoboa/modoboa
13
https://github.com/openfga/openfga
13
https://github.com/apache/dolphinscheduler
13
https://github.com/laurent22/joplin
13
https://github.com/TryGhost/Ghost
13
https://github.com/ming-soft/MCMS
13
https://github.com/openstack/glance
12
https://github.com/smarty-php/smarty
12
https://github.com/opencontainers/runc
12
https://github.com/containers/podman
12
https://github.com/puma/puma
12
https://github.com/wagtail/wagtail
12
https://github.com/1Panel-dev/1Panel
12
https://github.com/centreon/centreon-archived
12
https://github.com/apache/kylin
12
https://github.com/getsentry/sentry
12
https://github.com/patriksimek/vm2
12
https://github.com/pimcore/admin-ui-classic-bundle
12
https://github.com/urllib3/urllib3
12
https://github.com/zenml-io/zenml
11
https://github.com/vaadin/flow
11
https://github.com/cakephp/cakephp
11
https://github.com/Sylius/Sylius
11
https://github.com/owen2345/camaleon-cms
11
https://github.com/ezsystems/ezpublish-kernel
11
https://github.com/nats-io/nats-server
11
https://github.com/pomerium/pomerium
11
https://github.com/scrapy/scrapy
11
https://github.com/WWBN/AVideo
11
https://github.com/matrix-org/matrix-js-sdk
11
https://github.com/Studio-42/elFinder
11
https://github.com/onionshare/onionshare
11
https://github.com/spring-projects/spring-security
11
https://github.com/dolibarr/dolibarr
11
https://github.com/cloudflare/cfrpki
11
https://github.com/NodeBB/NodeBB
11
https://github.com/cosmos/cosmos-sdk
11
https://github.com/pgadmin-org/pgadmin4
11
https://github.com/top-think/framework
11
https://github.com/codeigniter4/CodeIgniter4
11
https://github.com/igniterealtime/Openfire
11
https://github.com/yiisoft/yii2
11