Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories

Browse all Security Advisories for

Loading...
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzZzMtMzM0Zi1xNmg0
Pandao editor.md vulnerable to DOM XSS
Ecosystems: npm
Packages: editor.md
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ4cDktd3YyZi13cW13
Deserialization of Untrusted Data in superset
Ecosystems: pypi
Packages: superset
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhjOXctNHA4Ny1qNTQ5
Prototype Pollution in cached-path-relative
Ecosystems: npm
Packages: cached-path-relative
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2MnYtbTU5Zi12NWZ3
Insecure randomness in socket.io
Ecosystems: npm
Packages: socket.io
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2cTctZzU3di1teGNw
HTML Injection in shout
Ecosystems: npm
Packages: shout
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhnYzktOXc0di1oMzNo
High severity vulnerability that affects org.apache.syncope:syncope-core
Ecosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYzdmYtMnI5OC14dzh3
Exposure of Sensitive Information to an Unauthorized Actor in Apache syncope-cope
Ecosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloOWMtZjI4Ny1jNnZw
Improper Control of Interaction Frequency in Apache syncope-core
Ecosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmanYtOTk4dy1xNDhm
Improper Restriction of XML External Entity Reference in org.apache.syncope:syncope-core
Ecosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2MjYtcmo4Yy00cjMz
Cross-Site Request Forgery (CSRF) in Auth0
Ecosystems: npm
Packages: auth0-js
Source: GitHub Advisory Database
Blast Radius: 36.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIzdnItcHJ3di04Nmc5
High severity vulnerability that affects python-gnupg
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWMyZngtOHI3Ni1naDM2
High severity vulnerability that affects python-gnupg
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3cGgtcDVydi1waHcy
Cross-Site Scripting in nunjucks
Ecosystems: npm
Packages: nunjucks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqYzgtNHI2Zy0yODJq
Moderate severity vulnerability that affects python-gnupg
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc5bXgtODh3Ny04Zjdx
XSS Filter Bypass via Encoded URL in validator
Ecosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjcjUteHI5aC1tdmM1
python-gnupg vulnerable to shell injection
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzeHAtajczNy0yODJ2
Path Traversal in takeapeek
Ecosystems: npm
Packages: takeapeek
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZncngtdzZyZy04ZnFm
Forgeable Public/Private Tokens in jwt-simple
Ecosystems: npm
Packages: jwt-simple
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpoZ3AtaHZqNi14MnAy
Stored Cross-Site Scripting in tianma-static
Ecosystems: npm
Packages: tianma-static
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNodm0taGdwdy1yeDRq
Path Traversal in knightjs
Ecosystems: npm
Packages: knightjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnMnctNnIyNS0yajdw
Command Injection in libnmap
Ecosystems: npm
Packages: libnmap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3YzQtMnhqOC13bTdy
Improper Input Validation in kdcproxy
Ecosystems: pypi
Packages: kdcproxy
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlqbTMtNTgzNS01Mzdt
Command Injection in apex-publish-static-files
Ecosystems: npm
Packages: apex-publish-static-files
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3YzcteG04Zy14bTM2
Unrestricted Upload of File with Dangerous Type in mingsoft:ms-mcms
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13Y3YtbTU0OS01Y204
node-tkinter is malware
Ecosystems: npm
Packages: node-tkinter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3ZzYtM2Ztai13NHd4
tkinter is malware
Ecosystems: npm
Packages: tkinter
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdoanAtOTdnMy1ycTkz
Path Traversal in minsoft:ms-mcms
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0eHEtang0dy00Y2p2
Loofah Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: loofah
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y20tcW14NS1tOTho
Prototype Pollution in merge
Ecosystems: npm
Packages: merge
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2d20tMjYyNC1ycDl4
Apache ActiveMQ web console vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: org.apache.activemq:activemq-web-console
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM3cTYtNTc2cS12Z3I3
Missing Origin Validation in parcel-bundler
Ecosystems: npm
Packages: parcel-bundler
Source: GitHub Advisory Database
Blast Radius: 35.9
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZqNjMtMzVoai12bWNn
mysql-bunuuid-rails vulnerable to SQL injection
Ecosystems: rubygems
Packages: mysql-binuuid-rails
Source: GitHub Advisory Database
Blast Radius: 8.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4NHYteGNtMi01M3Bn
Insufficiently Protected Credentials in Requests
Ecosystems: pypi
Packages: requests
Source: GitHub Advisory Database
Blast Radius: 43.7
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmM2MtZmZmcC0zNHFo
conference-scheduler-cli Arbitrary Code Execution
Ecosystems: pypi
Packages: conference-scheduler-cli
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmbTYtMnF3NC1nM3gz
Deserialization of Untrusted Data in Pippo
Ecosystems: maven
Packages: ro.pippo:pippo-core
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhqcnIteHY5bS00cHc1
Improper Input Validation in alilibaba:fastjson
Ecosystems: maven
Packages: ro.pippo:pippo-fastjson, com.alibaba:fastjson
Source: GitHub Advisory Database
Blast Radius: 49.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwdnItZzZnaC05bWMy
No Charset in Content-Type Header in express
Ecosystems: npm
Packages: express
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwcmgtMjU3dy05Mjc3
Cross-Site Scripting in handlebars
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnangtbXdweC00N2p2
Private Data Disclosure in express-restify-mongoose
Ecosystems: npm
Packages: express-restify-mongoose
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxODktcHdoaC03d2Zx
Use of Insufficiently Random Values in penggle:kaptcha
Ecosystems: maven
Packages: com.github.penggle:kaptcha
Source: GitHub Advisory Database
Blast Radius: 36.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmeDYtcGg0cS1xNTRx
Improper Restriction of Operations within the Bounds of a Memory Buffer in akka-http-core
Ecosystems: maven
Packages: com.typesafe.akka:akka-http-core_2.11, com.typesafe.akka:akka-http-core_2.12
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tNTctOWo2cS1yeG0y
Akka Java Serialization vulnerability
Ecosystems: maven
Packages: com.typesafe.akka:akka-actor
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yOTUtOXJyNC02Njhm
Cryptographically Weak Pseudo-Random Number Generator (PRNG) in akka-actor
Ecosystems: maven
Packages: com.typesafe.akka:akka-actor_2.12, com.typesafe.akka:akka-actor_2.11
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxZ2MtcDI3dy0zaGpn
High severity vulnerability that affects com.typesafe.akka:akka-http-core_2.11 and com.typesafe.akka:akka-http-core_2.12
Ecosystems: maven
Packages: com.typesafe.akka:akka-http-core_2.11, com.typesafe.akka:akka-http-core_2.12
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjajgtZzljcC12NXdy
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload
Ecosystems: npm
Packages: blueimp-file-upload
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4dzQtcXY5OS1mN3Zq
Authorization bypass in org.springframework.security.oauth:spring-security-oauth2
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjdzgtN2o2Yy1oY2Nw
Moderate severity vulnerability that affects io.vertx:vertx-core
Ecosystems: maven
Packages: io.vertx:vertx-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2cXItbW1oOC1jcDhm
Moderate severity vulnerability that affects com.sparkjava:spark-core
Ecosystems: maven
Packages: com.sparkjava:spark-core
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtcjQtdzY3cC12aDh4
Improper Input Validation in org.wildfly:wildfly-undertow
Ecosystems: maven
Packages: org.wildfly:wildfly-undertow
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1jZm0taDczdi02MzVt
Undertow-core vulnerable to HTTP Request Smuggling
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 24.2
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN4N2gtNWhmci1odmpt
Moderate severity vulnerability that affects io.undertow:undertow-core
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4cTgtcHZnNC0zbWYz
Eclipse RDF4j vulnerable to XML External Entitiy
Ecosystems: maven
Packages: org.eclipse.rdf4j:rdf4j-runtime
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2OHEtOWZ3NS0yOHdm
Moderate severity vulnerability that affects org.postgresql:pgjdbc-aggregate
Ecosystems: maven
Packages: org.postgresql:pgjdbc-aggregate
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtOXItNWdxcC03ajgy
High severity vulnerability that affects org.dspace:dspace-xmlui
Ecosystems: maven
Packages: org.dspace:dspace-xmlui
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzd3YtNDd4bS00bWc2
Server Side Request Forgery in svgSalamander
Ecosystems: maven
Packages: com.kitfox.svg:svg-salamander
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2eHYtcG1xOS00cTdn
High severity vulnerability that affects org.scala-lang:scala-compiler
Ecosystems: maven
Packages: org.scala-lang:scala-compiler
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkzanEtNjI0Zy00cDlw
Improper Input Validation in async-http-client
Ecosystems: maven
Packages: org.asynchttpclient:async-http-client
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc1NTYteDV2eC1xaDU5
Android SVG vulnerable to XML External Entity (XXE)
Ecosystems: maven
Packages: com.caverock:androidsvg
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3cGYtcXI5Ni0ydnE1
Deserialization of Untrusted Data in swagger-parser
Ecosystems: maven
Packages: io.swagger:swagger-parser, io.swagger:swagger-codegen
Source: GitHub Advisory Database
Blast Radius: 22.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZndmYtOWpoMy1mZzc1
Deserialization of Untrusted Data in swagger-codegen
Ecosystems: maven
Packages: io.swagger:swagger-codegen, io.swagger:swagger-parser
Source: GitHub Advisory Database
Blast Radius: 22.1
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNWotZ2Ntdi01cXBw
Moderate severity vulnerability that affects org.grails.plugins:fields and org.grails:grails-core
Ecosystems: maven
Packages: org.grails:grails-core, org.grails.plugins:fields
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05dzgtdjM1OS05ZmZy
Improper Certificate Validation in Apache activemq-client
Ecosystems: maven
Packages: org.apache.activemq:activemq-client
Source: GitHub Advisory Database
Blast Radius: 28.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5OXAtNzI2aC1jOHY1
Apache juddi-client vulnerable to XML External Entity (XXE)
Ecosystems: maven
Packages: org.apache.juddi:juddi-client
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ3M3YtNjZtai0ycW02
Moderate severity vulnerability that affects org.apache.qpid:apache-qpid-broker-j
Ecosystems: maven
Packages: org.apache.qpid:apache-qpid-broker-j
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhybXItZjVtNi1tOXBx
Moderate severity vulnerability that affects org.apache.commons:commons-compress
Ecosystems: maven
Packages: org.apache.commons:commons-compress
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyN2ctN2Nwai01anI3
Apache Qpid Broker-J vulnerable to Denial of Service (DoS) via uncontrolled resource consumption
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2OW0tNjk1eC1qMzRw
Apache Qpid Broker vulnerable to authentication port spoofing
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjN3ItdjZmZy0yZ3Bm
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.*
Ecosystems: maven
Packages: org.apache.cxf:apache-cxf, org.apache.cxf:cxf
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2MzItN3I2cC14aGho
Moderate severity vulnerability that affects com.adobe.xmp:xmpcore
Ecosystems: maven
Packages: com.adobe.xmp:xmpcore
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4OXgtOHF3OS05cHA2
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling)
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0cTctcDIyNi00eDV3
Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling)
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MmctMmg4aC0zNjJx
Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyZ3YtaDd4NC1xdzhn
Eclipse Jetty Server generates error message containing sensitive information
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmY2MtcGZmNi1yZ2M1
Jetty vulnerable to exposure of sensitive information due to observable discrepancy
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZnZzgtNzJmMi1xbTIz
Critical severity vulnerability that affects org.eclipse.jetty:jetty-server
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyNmotM2pwOS1ydzY1
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3N3EtMnFxZy02OTg5
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdxOWMtaDIzeC02NWZx
Spring Security OAuth vulnerable to remote code execution (RCE) via specially crafted request using whitelabel views
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 34.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0ZzItOWhqNi01NDcy
Moderate severity vulnerability that affects com.rabbitmq:amqp-client and org.springframework.amqp:spring-amqp
Ecosystems: maven
Packages: com.rabbitmq:amqp-client, org.springframework.amqp:spring-amqp
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4NjUtY2M3Zy05cGZw
Moderate severity vulnerability that affects org.springframework.boot:spring-boot
Ecosystems: maven
Packages: org.springframework.boot:spring-boot
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05am0tcmhybS1nY3hq
Path traversal in org.springframework.integration:spring-integration-zip
Ecosystems: maven
Packages: org.springframework.integration:spring-integration-zip
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJycG0tcGo3cC03ajlx
Spring Security OAuth vulnerable to remote code execution (RCE)
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 38.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4NmotMmdjNi0yY3E5
Race condition in org.apache.hbase:hbase-thrift
Ecosystems: maven
Packages: org.apache.hbase:hbase-thrift
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4eHItNHYyYy1ydmdw
High severity vulnerability that affects org.apache.hbase:hbase
Ecosystems: maven
Packages: org.apache.hbase:hbase
Source: GitHub Advisory Database
Blast Radius: 26.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlncDQtcXJmZi1jNjQ4
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqMngtaHg0Zy0yZ2Y0
In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjMnItM2pxZi1jOXJ3
jackson-dataformat-xml vulnerable to server side request forgery (SSRF)
Ecosystems: maven
Packages: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtcTYtZnJ2My00NzI3
jackson-dataformat-xml vulnerable to XML external entity (XXE)
Ecosystems: maven
Packages: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmeDYtdnA5Zy1yaDd2
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist bypass
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1OTItMzhjbS00Z2dw
jackson-databind vulnerable to deserialization flaw leading to unauthenticated remote code execution
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0Z2ctOWY2Mi1qZnBo
OrientDB Studio web management interface is vulnerable to clickjacking attacks
Ecosystems: maven
Packages: com.orientechnologies:orientdb-studio
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2d3ItZmNoMi12bTV3
OrientDB Server Community Edition uses insufficiently random values to generate session IDs
Ecosystems: maven
Packages: com.orientechnologies:orientdb-server
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4d3ctdnY4NC1jMnJt
OrientDB-Server vulnerable to Cross-Site Request Forgery
Ecosystems: maven
Packages: com.orientechnologies:orientdb-studio
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhtNnItNDQ2Ni1tcjc0
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
Ecosystems: maven
Packages: com.orientechnologies:orientdb-core
Source: GitHub Advisory Database
Blast Radius: 25.5
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0NHYteGMzZy12N2px
OWASP AntiSamy Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4M3ctNmg5ai01N3dx
Moderate severity vulnerability that affects org.owasp.antisamy:antisamy
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2N3gtNGhwYy1oZjlm
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring2, and org.apache.cxf.fediz:fediz-spring3
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring3, org.apache.cxf.fediz:fediz-spring2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFwd2otbXZ2Ny12M205
High severity vulnerability that affects org.apache.cxf.fediz:fediz-spring and org.apache.cxf.fediz:fediz-spring2
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-spring2, org.apache.cxf.fediz:fediz-spring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzNTctODI5eC1tOXBy
Apache CXF Fediz application plugins are vulnerable to Denial of Service (DoS) attacks
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-core, org.apache.cxf.fediz:fediz-idp
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczZ2gtZzMybS1jdmhy
High severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring2, and org.apache.cxf.fediz:fediz-spring3
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-spring3, org.apache.cxf.fediz:fediz-spring2, org.apache.cxf.fediz:fediz-spring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Statistics
Advisories: 20,090
Packages: 8,834
Repositories: 5,388
Ecosystems: 12
Filter by Severity
Moderate 8,749 High 6,916 Critical 2,988 Low 1,112
Filter by Ecosystem
maven 5,758 packagist 4,466 pypi 4,208 npm 3,733 go 2,197 nuget 1,508 rubygems 857 cargo 849 swift 32 hex 30 actions 19 pub 8
Filter by Package
tensorflow 433 tensorflow-gpu 425 tensorflow-cpu 422 moodle/moodle 343 Microsoft.ChakraCore 247 magento/community-edition 215 org.jenkins-ci.main:jenkins-core 191 typo3/cms 174 org.apache.tomcat:tomcat 132 pimcore/pimcore 118 dolibarr/dolibarr 112 typo3/cms-core 106 microweber/microweber 94 drupal/core 92 phpmyadmin/phpmyadmin 92 silverstripe/framework 85 apache-airflow 84 Django 80 drupal/drupal 77 thorsten/phpmyfaq 70 com.fasterxml.jackson.core:jackson-databind 69 symfony/symfony 64 ansible 63 github.com/usememos/memos 63 concrete5/concrete5 58 actionpack 58 django 58 org.apache.struts:struts2-core 55 github.com/mattermost/mattermost/server/v8 55 salt 55 librenms/librenms 54 Plone 52 shopware/platform 52 apache-superset 51 org.keycloak:keycloak-core 50 github.com/grafana/grafana 47 nova 47 mlflow 46 com.liferay.portal:release.portal.bom 45 baserproject/basercms 43 plone 43 nokogiri 43 craftcms/cms 43 rdiffweb 42 Pillow 41 shopware/core 40 showdoc/showdoc 40 intelliants/subrion 39 froxlor/froxlor 38 vyper 38 github.com/mattermost/mattermost-server/v6 37 org.apache.tomcat.embed:tomcat-embed-core 37 nilsteampassnet/teampass 37 org.xwiki.platform:xwiki-platform-oldcore 37 org.elasticsearch:elasticsearch 36 com.jfinal:jfinal 36 com.thoughtworks.xstream:xstream 36 mautic/core 36 moin 35 matrix-synapse 35 net.mingsoft:ms-mcms 35 k8s.io/kubernetes 34 zendframework/zendframework1 34 github.com/hashicorp/vault 34 github.com/answerdev/answer 34 snipe/snipe-it 33 org.keycloak:keycloak-services 33 github.com/rancher/rancher 33 io.undertow:undertow-core 32 org.jenkins-ci.plugins:script-security 32 github.com/argoproj/argo-cd 31 opencv-contrib-python 31 opencv-python 31 keystone 31 parse-server 30 shopware/shopware 30 github.com/docker/docker 29 getgrav/grav 29 github.com/argoproj/argo-cd/v2 27 centreon/centreon 27 github.com/hashicorp/nomad 27 openssl-src 26 electron 26 github.com/hashicorp/consul 26 prestashop/prestashop 26 directus 26 org.apache.solr:solr-core 25 rubygems-update 25 org.keycloak:keycloak-parent 25 github.com/cilium/cilium 24 mediawiki/core 24 magento/core 24 gogs.io/gogs 24 org.springframework.security:spring-security-core 24 contao/core-bundle 24 org.eclipse.jetty:jetty-server 23 rack 23 grumpydictator/firefly-iii 23 puppet 23 simplesamlphp/simplesamlphp 23 pocketmine/pocketmine-mp 23 remdex/livehelperchat 23 zendframework/zendframework 23 org.apache.nifi:nifi 22 getkirby/cms 22 org.bouncycastle:bcprov-jdk14 22 ckb 22 activerecord 21 @openzeppelin/contracts-upgradeable 21 org.apache.openmeetings:openmeetings-parent 21 glance 20 code.gitea.io/gitea 20 tribalsystems/zenario 20 @openzeppelin/contracts 20 github.com/ethereum/go-ethereum 20 org.cloudfoundry.identity:cloudfoundry-identity-server 20 Microsoft.AspNetCore.App.Runtime.win-x86 20 Microsoft.AspNetCore.App.Runtime.win-x64 20 langchain 19 laravel/framework 19 org.springframework:spring-core 19 org.xwiki.platform:xwiki-platform-web-templates 19 Microsoft.AspNetCore.App.Runtime.win-arm 19 DotNetNuke.Core 19 github.com/goharbor/harbor 18 mindsdb 18 forkcms/forkcms 18 com.vaadin:vaadin-bom 18 topthink/framework 18 gradio 18 cockpit-hq/cockpit 18 com.liferay.portal:release.dxp.bom 18 contao/contao 18 golang.org/x/net 18 github.com/traefik/traefik/v2 18 cakephp/cakephp 17 PaddlePaddle 17 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 17 mercurial 17 Microsoft.AspNetCore.App.Runtime.linux-x64 17 ezsystems/ezpublish-kernel 17 cobbler 17 helm.sh/helm/v3 17 org.apache.geode:geode-core 17 Microsoft.AspNetCore.App.Runtime.linux-arm 17 symfony/security 17 francoisjacquet/rosariosis 17 Microsoft.AspNetCore.App.Runtime.osx-x64 17 Microsoft.AspNetCore.App.Runtime.win-arm64 17 opencart/opencart 17 genix/cms 17 Microsoft.AspNetCore.App.Runtime.linux-arm64 17 next 17 cryptography 16 Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 16 neutron 16 wasmtime 16 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 sequelize 16 openmage/magento-lts 16 org.apache.jspwiki:jspwiki-main 16 pillow 16 rusqlite 16 yetiforce/yetiforce-crm 16 org.bouncycastle:bcprov-jdk15 16 tinymce 16 notebook 16 smarty/smarty 15 ethyca-fides 15 paddlepaddle 15 ec-cube/ec-cube 15 ghost 15 org.apache.struts.xwork:xwork-core 15 october/system 15 pyload-ng 15 ckeditor4 15 typo3/cms-backend 14 github.com/nats-io/nats-server/v2 14 silverstripe/cms 14 pyftpdlib 14 publify_core 14 feehi/cms 14 bolt/bolt 14 activesupport 14 org.apache.inlong:manager-pojo 14 github.com/containerd/containerd 14 swagger-ui 14 phpmailer/phpmailer 14 symfony/security-http 14 modoboa 14 org.xwiki.platform:xwiki-platform-web 14 github.com/zitadel/zitadel 14 strapi 13 lavalite/cms 13 twisted 13 deno 13 elefant/cms 13 undici 13 org.apache.cxf:cxf 13
Filter by Repository
https://github.com/tensorflow/tensorflow 433 https://github.com/moodle/moodle 214 https://github.com/chakra-core/ChakraCore 214 https://github.com/xwiki/xwiki-platform 183 https://github.com/jenkinsci/jenkins 150 https://github.com/pimcore/pimcore 113 https://github.com/django/django 111 https://github.com/apache/airflow 98 https://github.com/apache/tomcat 97 https://github.com/microweber/microweber 88 https://github.com/TYPO3/typo3 72 https://github.com/FasterXML/jackson-databind 70 https://github.com/thorsten/phpmyfaq 69 https://github.com/keycloak/keycloak 67 https://github.com/silverstripe/silverstripe-framework 64 https://github.com/usememos/memos 63 https://github.com/symfony/symfony 57 https://github.com/ansible/ansible 56 https://github.com/Dolibarr/dolibarr 56 https://github.com/rails/rails 55 https://github.com/python-pillow/Pillow 52 https://github.com/kubernetes/kubernetes 50 https://github.com/librenms/librenms 46 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 43 https://github.com/shopware/platform 43 https://github.com/argoproj/argo-cd 42 https://github.com/ikus060/rdiffweb 42 https://github.com/grafana/grafana 40 https://github.com/concretecms/concretecms 39 https://github.com/vyperlang/vyper 38 https://github.com/star7th/showdoc 38 https://github.com/phpmyadmin/phpmyadmin 38 https://github.com/magento/magento2 38 https://github.com/openstack/nova 37 https://github.com/plone/Products.CMFPlone 37 https://github.com/x-stream/xstream 36 https://github.com/octobercms/october 35 https://github.com/saltstack/salt 34 https://github.com/answerdev/answer 34 https://github.com/mautic/mautic 34 https://github.com/apache/activemq 33 https://github.com/matrix-org/synapse 32 https://github.com/opencv/opencv 32 https://github.com/sparklemotion/nokogiri 32 https://github.com/go-gitea/gitea 32 https://github.com/craftcms/cms 31 https://github.com/PaddlePaddle/Paddle 31 https://github.com/mlflow/mlflow 30 https://github.com/parse-community/parse-server 30 https://github.com/snipe/snipe-it 29 https://github.com/shopware/shopware 28 https://github.com/dotnet/runtime 28 https://github.com/openstack/keystone 28 https://github.com/CVEProject/cvelist 28 https://github.com/rancher/rancher 28 https://github.com/apache/inlong 27 https://github.com/froxlor/froxlor 26 https://github.com/directus/directus 25 https://github.com/electron/electron 25 https://github.com/contao/contao 25 https://github.com/TYPO3/TYPO3.CMS 24 https://github.com/getgrav/grav 24 https://github.com/strapi/strapi 24 https://github.com/cilium/cilium 24 https://github.com/gogs/gogs 24 https://github.com/firefly-iii/firefly-iii 23 https://github.com/eclipse/jetty.project 23 https://github.com/livehelperchat/livehelperchat 23 https://github.com/pmmp/PocketMine-MP 23 https://github.com/github/advisory-database 23 https://github.com/PrestaShop/PrestaShop 22 https://github.com/baserproject/basercms 22 https://github.com/apache/nifi 22 https://github.com/nervosnetwork/ckb 22 https://github.com/apache/cxf 21 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/umbraco/Umbraco-CMS 20 https://github.com/OpenNMS/opennms 20 https://github.com/OpenZeppelin/openzeppelin-contracts 20 https://github.com/simplesamlphp/simplesamlphp 20 https://github.com/netty/netty 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/hashicorp/consul 19 https://github.com/langchain-ai/langchain 19 https://github.com/cloudfoundry/uaa 19 https://github.com/getkirby/kirby 19 https://github.com/nilsteampassnet/teampass 19 https://github.com/bcgit/bc-java 19 https://github.com/rack/rack 18 https://github.com/nilsteampassnet/TeamPass 18 https://github.com/helm/helm 18 https://github.com/goharbor/harbor 18 https://github.com/intelliants/subrion 18 https://github.com/rubygems/rubygems 18 https://github.com/traefik/traefik 18 https://github.com/geoserver/geoserver 18 https://github.com/vaadin/platform 17 https://github.com/moby/moby 17 https://github.com/liufee/cms 17 https://github.com/mindsdb/mindsdb 17 https://github.com/bytecodealliance/wasmtime 17 https://github.com/ethereum/go-ethereum 16 https://github.com/sequelize/sequelize 16 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/opencast/opencast 16 https://github.com/rusqlite/rusqlite 16 https://github.com/hashicorp/vault 16 https://github.com/tinymce/tinymce 16 https://github.com/OpenMage/magento-lts 16 https://github.com/etcd-io/etcd 16 https://github.com/gradio-app/gradio 16 https://github.com/forkcms/forkcms 16 https://github.com/TYPO3-CMS/core 16 https://github.com/pyca/cryptography 15 https://github.com/undertow-io/undertow 15 https://github.com/zendframework/zendframework 15 https://github.com/puppetlabs/puppet 15 https://github.com/apache/camel 15 https://github.com/vantage6/vantage6 15 https://github.com/PHPMailer/PHPMailer 15 https://github.com/backstage/backstage 15 https://github.com/centreon/centreon 15 https://github.com/denoland/deno 15 https://github.com/pyload/pyload 15 https://github.com/laravel/framework 15 https://github.com/ethyca/fides 15 https://github.com/xuxueli/xxl-job 14 https://github.com/zitadel/zitadel 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/ckeditor/ckeditor4 14 https://github.com/twisted/twisted 14 https://github.com/mattermost/mattermost 14 https://github.com/cobbler/cobbler 14 https://github.com/containerd/containerd 14 https://github.com/quarkusio/quarkus 13 https://github.com/vercel/next.js 13 https://github.com/publify/publify 13 https://github.com/golang/go 13 https://github.com/decidim/decidim 13 https://github.com/swagger-api/swagger-ui 13 https://github.com/dompdf/dompdf 13 https://github.com/dromara/hutool 13 https://github.com/apache/dolphinscheduler 13 https://github.com/nodejs/undici 13 https://github.com/TryGhost/Ghost 13 https://github.com/ming-soft/MCMS 13 https://github.com/hashicorp/nomad 13 https://github.com/modoboa/modoboa 13 https://github.com/dotnet/aspnetcore 13 https://github.com/pimcore/admin-ui-classic-bundle 12 https://github.com/1Panel-dev/1Panel 12 https://github.com/patriksimek/vm2 12 https://github.com/openfga/openfga 12 https://github.com/apache/kylin 12 https://github.com/centreon/centreon-archived 12 https://github.com/aio-libs/aiohttp 12 https://github.com/smarty-php/smarty 12 https://github.com/wagtail/wagtail 12 https://github.com/laurent22/joplin 12 https://github.com/opencontainers/runc 12 https://github.com/urllib3/urllib3 12 https://github.com/top-think/framework 11 https://github.com/nats-io/nats-server 11 https://github.com/Studio-42/elFinder 11 https://github.com/thorsten/phpMyFAQ 11 https://github.com/drupal/core 11 https://github.com/scrapy/scrapy 11 https://github.com/OPCFoundation/UA-.NETStandard 11 https://github.com/cloudflare/cfrpki 11 https://github.com/igniterealtime/Openfire 11 https://github.com/dpgaspar/Flask-AppBuilder 11 https://github.com/vaadin/flow 11 https://github.com/yiisoft/yii2 11 https://github.com/cakephp/cakephp 11 https://github.com/WWBN/AVideo 11 https://github.com/openstack/glance 11 https://github.com/puma/puma 11 https://github.com/Sylius/Sylius 11 https://github.com/NodeBB/NodeBB 11 https://github.com/onionshare/onionshare 11 https://github.com/containers/podman 11 https://github.com/ezsystems/ezpublish-kernel 11 https://github.com/janeczku/calibre-web 11 https://github.com/nextauthjs/next-auth 10 https://github.com/opencart/opencart 10 https://github.com/jquery/jquery 10 https://github.com/dolibarr/dolibarr 10 https://github.com/greenpau/caddy-security 10 https://github.com/apache/superset 10 https://github.com/cri-o/cri-o 10 https://github.com/nautobot/nautobot 10 https://github.com/keystonejs/keystone 10 https://github.com/pomerium/pomerium 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/nocodb/nocodb 10 https://github.com/jupyter/notebook 10 https://github.com/zenml-io/zenml 10 https://github.com/DSpace/DSpace 10