Browse Security Advisories
Security Advisories
Medium
37 minutes ago
Plug: multipart :length limit is not charged for part headers, enabling unbounded temp-file creation (denial of service)
hex
plug
Low
about 1 hour ago
SQL injection via unescaped dollar-quote in Postgrex.Notifications reconnect replay causes notification denial of service
hex
postgrex
Low
about 12 hours ago
Tesla vulnerable to multipart part smuggling via unescaped `content-disposition` values
hex
tesla
High
about 12 hours ago
Tesla: Authorization header leaks on cross-origin redirect via case-sensitive filtering
hex
tesla
Low
about 12 hours ago
Tesla has CRLF injection in request `Content-Type` header via `add_content_type_param`
hex
tesla
High
about 12 hours ago
Mistune: Potential DoS via quadratic-time parsing in parse_link_text
pypi
mistune
Moderate
about 13 hours ago
GoBGP confederation validation panics on empty AS_PATH attribute
go
github.com/osrg/gobgp/v4
Moderate
about 13 hours ago
GoBGP: BGP OPEN capability parser may read capability values outside declared CapLen boundaries
go
github.com/osrg/gobgp/v4
Moderate
about 13 hours ago
psd-tools vulnerable to arbitrary file write via smart-object filename
pypi
psd-tools
Moderate
about 13 hours ago
sigstore-go has a multi-log threshold bypass via single compromised log
go
github.com/sigstore/sigstore-go
Moderate
about 13 hours ago
Rattler vulnerable to package cache path traversal via conda package build string
pypi, cargo
py_rattler, rattler_cache
Moderate
about 13 hours ago
OpenRun: Redirect URL validation bypass using //host paths leads to Open Redirect
go
github.com/openrundev/openrun
High
about 13 hours ago
mint: Unbounded streams map growth via PUSH_PROMISE without follow-up HEADERS
hex
mint
High
about 13 hours ago
mint: Unbounded CONTINUATION/HEADERS frame accumulation (CONTINUATION flood)
hex
mint
Low
about 13 hours ago
mint has potential CRLF injection in its HTTP request line via unvalidated `method`/`target`
hex
mint
Moderate
about 15 hours ago
pypdf: Possible infinite loop when processing threads/articles in writer
pypi
pypdf
Moderate
about 15 hours ago
Sylius: IDOR on Shop Payment Request API endpoints
packagist
sylius/sylius
Moderate
about 15 hours ago
Sylius: Channel-based payment method restriction bypass on shop account orders API endpoint
packagist
sylius/sylius
Moderate
about 15 hours ago
Sylius: Cart FormComponent allows modification or deletion of an already-completed order
packagist
sylius/sylius
Critical
about 15 hours ago
YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service
packagist
yeswiki/yeswiki
Critical
about 15 hours ago
YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki has Authenticated SQL Injection via ReactionManager
packagist
yeswiki/yeswiki
Moderate
about 15 hours ago
YesWiki Vulnerable to Reflected XSS via Unescaped `id` Parameter in Bazar Widget HTML Attributes
packagist
yeswiki/yeswiki
Moderate
about 15 hours ago
YesWiki Vulnerable to Reflected XSS via Unescaped Archived-Revision `time` Parameter in `handlers/page/show.php`
packagist
yeswiki/yeswiki
Moderate
about 15 hours ago
YesWiki has stored XSS in Bazar form-field templates via unescaped field.label / field.hint (|raw('html'))
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (`ApiController::deletePage`)
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric `query`/`queries` filters
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub `Signature.keyId`
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via `!openssl_verify(...)` accepting `int(-1)`
packagist
yeswiki/yeswiki
Critical
about 15 hours ago
YesWiki vulnerable to unauthenticated arbitrary page deletion via `{{erasespamedcomments}}` action
packagist
yeswiki/yeswiki
Moderate
about 15 hours ago
YesWiki: SQL injection via the `recentchanges` action `period` argument leads to arbitrary DB read
packagist
yeswiki/yeswiki
High
about 15 hours ago
YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates
packagist
yeswiki/yeswiki
Moderate
about 15 hours ago
Avo: Direct attachment upload endpoint lacks upload authorization and bypasses field-level upload policy
rubygems
avo
High
about 15 hours ago
laravel-backup-restore has an OS Command Injection during database restore
packagist
wnx/laravel-backup-restore
Moderate
about 15 hours ago
nebula-mesh: Host revocation is not durable - blocked/offboarded hosts can regain a valid certificate
go
github.com/forgekeep/nebula-mesh
Moderate
about 22 hours ago
Gittensory: Missing contributor-scoped access control on profile endpoint and MCP tool leaks miner financial data
npm
@jsonbored/gittensory-mcp
Moderate
about 22 hours ago
Admidio: CSRF on Plugin Install, Uninstall, and Update via Unprotected GET Requests
packagist
admidio/admidio
High
about 22 hours ago
Craft CMS: RCE via missing cleanseConfig in FieldsController::actionRenderCardPreview
packagist
craftcms/cms
Low
about 22 hours ago
Craft CMS has authenticated path traversal in `assets/icon`, allowing local `.svg` file read
packagist
craftcms/cms
High
about 22 hours ago
Ruby CSS Parser: SSRF and Local File Disclosure in `CssParser::Parser#read_remote_file`
rubygems
css_parser
High
about 22 hours ago
org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint
maven
ca.uhn.hapi.fhir:org.hl7.fhir.validation.cli, ca.uhn.hapi.fhir:org.hl7.fhir.validation, ca.uhn.hapi.fhir:org.hl7.fhir.r5, ca.uhn.hapi.fhir:org.hl7.fhir.r4b, ca.uhn.hapi.fhir:org.hl7.fhir.r4, ca.uhn.hapi.fhir:org.hl7.fhir.dstu3, ca.uhn.hapi.fhir:org.hl7.fhir.dstu2016may, ca.uhn.hapi.fhir:org.hl7.fhir.dstu2
Moderate
about 22 hours ago
pymonocypher: Potential heap buffer overflow on nb_blocks in argon2i_32 when provided buffer is too small
pypi
pymonocypher
High
about 22 hours ago
Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p)
go
github.com/enchant97/note-mark/backend
Moderate
about 22 hours ago
Note Mark: Unauthenticated disclosure of soft-deleted note metadata via deleted=true on public books
go
github.com/enchant97/note-mark/backend
High
about 22 hours ago
Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser
pypi
soupsieve
High
about 22 hours ago
Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists
pypi
soupsieve
High
about 22 hours ago
Phantom: Arbitrary file write and decode-bomb DoS via unconfined MCP tool paths
pypi
phantom-audio
Moderate
about 22 hours ago
Micronaut: DefaultHttpClient follows redirects, forwarding Authorization, Cookie, and Proxy-Authorization headers
maven
io.micronaut:micronaut-http-client
High
about 22 hours ago
Micronaut doesn't set a maximum redirect count for its HTTP Client, enabling infinite loop DoS
maven
io.micronaut:micronaut-http-client
Moderate
about 22 hours ago
pyLoad: Unbounded Memory Growth Leading to DoS and Potential DDoS in EventManager
pypi
pyload-ng
Moderate
about 22 hours ago
pyLoad: SSRF guard bypass via IPv6 6to4/NAT64 transition wrappers of internal IPs
pypi
pyload-ng
High
1 day ago
Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE
pypi
serena-agent
High
1 day ago
NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak
maven
nl.nl-portal:taak
Moderate
1 day ago
NL Portal: Missing per-user authorization on document and decision GraphQL queries in nl-portal-backend-libraries
maven
nl.nl-portal:besluiten, nl.nl-portal:documenten-api
Critical
1 day ago
Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE
go
github.com/BishopFox/joro
Moderate
1 day ago
DSpace: Path Traversal is possible through LDN message generation
maven
org.dspace:dspace-api
Moderate
1 day ago
DSpace: ORE resource URI does not validate scheme for non-web resources
maven
org.dspace:dspace-api
Moderate
1 day ago
DSpace has a possible Path Traversal Vulnerability in its Curation Task Reporter output path
maven
org.dspace:dspace-api
High
1 day ago
DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN
maven
org.dspace:dspace-api
Moderate
1 day ago
Trapster Community: Unauthenticated malformed DNS compression pointers crash per-packet honeypot handler
pypi
trapster
Moderate
1 day ago
Sharp Missing Authorization Check in Quick Creation Command Endpoints
packagist
code16/sharp
Critical
1 day ago
Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE
go
github.com/nuclio/nuclio
Moderate
1 day ago
async-tar PAX extension-header desync enables tar entry/content smuggling
cargo
async-tar
High
1 day ago
Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests
go
github.com/zalando/skipper
High
1 day ago
`lxml_html_clean.Cleaner` does not strip `javascript:` URLs from namespaced URL attributes
pypi
lxml_html_clean
Moderate
3 days ago
oasdiff does not enforce --allow-external-refs=false on the git-revision load path (SSRF / local file read)
go
github.com/oasdiff/oasdiff
Moderate
3 days ago
KEDA has PostgreSQL connection string parameter injection via incomplete whitespace escaping
go
github.com/kedacore/keda/v2
Moderate
3 days ago
Flask-Security-Too: WebAuthn reauthentication freshness bypass via cross-user assertion
pypi
Flask-Security-Too
High
3 days ago
Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise
go
github.com/zhenorzz/goploy
Critical
3 days ago
Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers
go
github.com/zhenorzz/goploy
Moderate
3 days ago
ha-mcp: Add-on settings and policy routes are reachable without authentication at the bare root path
pypi
ha-mcp
Low
3 days ago
rama has Stored XSS in ServeDir HTML directory listing via unescaped file names and URI path
cargo
rama
Moderate
3 days ago
aiosmtplib vulnerable to SMTP command injection via CR/LF in sender/recipient address
pypi
aiosmtplib
Moderate
3 days ago
Kite has an authenticated cluster RBAC bypass in /api/v1/overview
go
github.com/zxh326/kite
Low
3 days ago
Webauthn: SimpleFakeCredentialGenerator with an empty secret produces predictable fake credentials, weakening username enumeration protection
packagist
web-auth/webauthn-lib
Moderate
3 days ago
ratex-parser has unbounded parser recursion that leads to stack overflow (process abort)
cargo
ratex-parser
High
3 days ago
ratex-parser panics on `\verb` with a multibyte delimiter (UTF-8 byte-boundary slice)
cargo
ratex-parser
High
3 days ago
@better-auth/scim: Account/provider takeover via missing owner binding on non-org SCIM providers
npm
@better-auth/scim
Low
3 days ago
Better Auth: Stale sessions persist after user deletion across admin, anonymous, and SCIM flows
npm
@better-auth/scim, better-auth
High
3 days ago
@better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race the find-then-delete primitive
npm
better-auth, @better-auth/oauth-provider
Critical
3 days ago
@better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints
npm
@better-auth/sso
High
3 days ago
Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption
npm
better-auth, @better-auth/oauth-provider
High
3 days ago
Better Auth has insecure cryptographic defaults in oidcProvider: alg=none advertised and plain PKCE accepted by default
npm
better-auth
High
3 days ago
Better Auth has stored XSS in the auth-server origin via javascript: redirect_uri in oidc-provider and mcp
npm
better-auth
High
3 days ago
Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email
npm
better-auth
High
3 days ago
Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin
npm
better-auth
Moderate
3 days ago
@better-auth/oauth-provider may provide access tokens for unauthorized audiences via unbound resource indicators
npm
@better-auth/oauth-provider
Critical
3 days ago
Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins
npm
better-auth
Low
3 days ago
netfoil: Attacker controlled data written to logs
go
github.com/tinfoil-factory/netfoil
Moderate
3 days ago
netfoil has a domain name filter bypass via multiple questions
go
github.com/tinfoil-factory/netfoil
High
3 days ago
uutils coreutils: cp/install/mv/ln --suffix alone does not enable backup mode (silent data loss vs GNU)
cargo
uucore
Filter by Severity
Filter by Source
Filter by Ecosystem
maven
7,785
npm
6,966
packagist
6,681
pypi
6,483
go
4,840
nuget
3,739
cargo
1,587
rubygems
1,046
cpan
889
hex
184
actions
57
swift
51
pub
11
Filter by Package
openclaw
591
moodle/moodle
437
tensorflow
433
tensorflow-cpu
408
tensorflow-gpu
395
magento/community-edition
360
org.jenkins-ci.main:jenkins-core
252
Microsoft.ChakraCore
247
github.com/mattermost/mattermost/server/v8
199
github.com/mattermost/mattermost-server
175
typo3/cms
167
org.apache.tomcat:tomcat
156
com.liferay.portal:release.portal.bom
151
wwbn/avideo
144
Magick.NET-Q16-AnyCPU
133
pimcore/pimcore
132
Magick.NET-Q16-HDRI-AnyCPU
132
Magick.NET-Q16-HDRI-OpenMP-arm64
128
apache-airflow
127
dolibarr/dolibarr
126
com.liferay.portal:release.dxp.bom
124
Magick.NET-Q16-HDRI-arm64
124
Magick.NET-Q16-HDRI-x86
123
Magick.NET-Q8-AnyCPU
121
Magick.NET-Q16-HDRI-x64
121
typo3/cms-core
121
Magick.NET-Q16-OpenMP-arm64
119
Magick.NET-Q16-x86
119
concrete5/concrete5
119
Magick.NET-Q16-OpenMP-x64
118
magento/project-community-edition
118
Magick.NET-Q16-arm64
118
Magick.NET-Q8-OpenMP-arm64
117
craftcms/cms
116
parse-server
116
Magick.NET-Q8-arm64
113
Magick.NET-Q16-x64
113
Magick.NET-Q8-x86
113
Magick.NET-Q8-OpenMP-x64
113
open-webui
112
phpmyadmin/phpmyadmin
107
Django
107
drupal/core
107
Magick.NET-Q8-x64
106
microweber/microweber
105
thorsten/phpmyfaq
105
librenms/librenms
100
n8n
100
org.keycloak:keycloak-services
96
symfony/symfony
90
silverstripe/framework
90
Magick.NET-Q16-HDRI-OpenMP-x64
90
flowise
86
com.fasterxml.jackson.core:jackson-databind
76
mlflow
76
github.com/usememos/memos
75
gogs.io/gogs
75
shopware/platform
74
drupal/drupal
73
getgrav/grav
69
salt
67
apache-superset
66
ansible
65
mantisbt/mantisbt
65
shopware/core
64
Magick.NET-Q16-OpenMP-x86
63
github.com/grafana/grafana
62
github.com/rancher/rancher
61
picklescan
59
org.apache.struts:struts2-core
59
actionpack
59
snipe/snipe-it
57
baserproject/basercms
56
org.apache.tomcat.embed:tomcat-embed-core
56
nokogiri
56
directus
56
mautic/core
56
next
55
github.com/hashicorp/vault
55
froxlor/froxlor
55
Plone
54
nocodb
54
vllm
54
surrealdb
52
github.com/siyuan-note/siyuan/kernel
51
rack
50
org.keycloak:keycloak-core
50
admidio/admidio
50
pyload-ng
48
electron
48
django
48
nova
48
gradio
48
getkirby/cms
47
org.xwiki.platform:xwiki-platform-oldcore
46
github.com/traefik/traefik/v2
45
matrix-synapse
45
perl
45
aiohttp
44
vyper
44
org.elasticsearch:elasticsearch
44
rdiffweb
43
vm2
43
DBD-SQLite
42
showdoc/showdoc
42
code.gitea.io/gitea
42
nilsteampassnet/teampass
42
k8s.io/kubernetes
42
intelliants/subrion
41
phpmyfaq/phpmyfaq
41
plone
41
github.com/traefik/traefik/v3
41
hono
40
github.com/zitadel/zitadel
40
keystone
39
praisonai
39
net.mingsoft:ms-mcms
39
wasmtime
39
io.undertow:undertow-core
39
github.com/mattermost/mattermost-server/v6
37
github.com/cilium/cilium
37
MT
37
statamic/cms
37
PraisonAI
37
github.com/argoproj/argo-cd/v2
37
com.thoughtworks.xstream:xstream
37
ci4-cms-erp/ci4ms
36
deno
36
DotNetNuke.Core
36
com.jfinal:jfinal
36
moin
35
pillow
34
org.jenkins-ci.plugins:script-security
34
github.com/hashicorp/nomad
34
github.com/answerdev/answer
34
github.com/filebrowser/filebrowser/v2
34
praisonaiagents
33
code.vikunja.io/api
33
github.com/docker/docker
33
pypdf
33
axios
33
shopware/shopware
33
github.com/hashicorp/consul
32
org.apache.tomcat:tomcat-catalina
32
langflow
32
prestashop/prestashop
31
yeswiki/yeswiki
31
contao/core-bundle
31
zendframework/zendframework1
31
org.opencms:opencms-core
31
opencv-python
31
github.com/argoproj/argo-cd
31
opencv-contrib-python
30
undici
30
org.springframework.security:spring-security-core
30
org.apache.solr:solr-core
30
pocketmine/pocketmine-mp
30
phpoffice/phpspreadsheet
28
mediawiki/core
28
Pillow
28
pnpm
28
zebrad
27
@anthropic-ai/claude-code
27
github.com/fleetdm/fleet/v4
27
centreon/centreon
27
github.com/openbao/openbao
26
github.com/openfga/openfga
26
pgadmin4
26
github.com/ethereum/go-ethereum
26
cockpit-hq/cockpit
26
org.keycloak:keycloak-parent
26
org.eclipse.jetty:jetty-server
26
github.com/coder/coder/v2
26
openmage/magento-lts
26
github.com/nats-io/nats-server/v2
26
funadmin/funadmin
26
dompurify
26
org.apache.openmeetings:openmeetings-parent
25
golang.org/x/crypto
25
laravel/framework
25
litellm
25
ghost
25
openssl-src
25
grumpydictator/firefly-iii
25
rubygems-update
25
twig/twig
24
org.bouncycastle:bcprov-jdk14
24
magento/core
24
openbabel
24
typo3/cms-backend
24
weblate
23
github.com/goharbor/harbor
23
activerecord
23
simplesamlphp/simplesamlphp
23
remdex/livehelperchat
23
github.com/traefik/traefik
23
puppet
23
org.xwiki.platform:xwiki-platform-web-templates
23
zendframework/zendframework
22
ethyca-fides
22
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
250
https://github.com/xwiki/xwiki-platform
222
https://github.com/chakra-core/ChakraCore
214
https://github.com/jenkinsci/jenkins
178
https://github.com/liferay/liferay-portal
170
https://github.com/django/django
121
https://github.com/jquery/jquery
118
https://github.com/apache/tomcat
118
https://github.com/pimcore/pimcore
116
https://github.com/apache/airflow
105
https://github.com/TYPO3/typo3
93
https://github.com/microweber/microweber
90
https://github.com/keycloak/keycloak
90
https://github.com/librenms/librenms
77
https://github.com/rails/rails
70
https://github.com/FasterXML/jackson-databind
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/usememos/memos
68
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/kubernetes/kubernetes
66
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/mattermost/mattermost
59
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
51
https://github.com/argoproj/argo-cd
50
https://github.com/apache/struts
47
https://github.com/grafana/grafana
47
https://github.com/mautic/mautic
46
https://github.com/rancher/rancher
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/vyperlang/vyper
44
https://github.com/concretecms/concretecms
44
https://github.com/mantisbt/mantisbt
42
https://github.com/saltstack/salt
42
https://github.com/ikus060/rdiffweb
42
https://github.com/shopware/platform
42
https://github.com/craftcms/cms
41
https://github.com/directus/directus
41
https://github.com/shopware/shopware
40
https://github.com/star7th/showdoc
39
https://github.com/mmaitre314/picklescan
39
https://github.com/dotnet/runtime
38
https://github.com/openstack/nova
38
https://github.com/gradio-app/gradio
38
https://github.com/magento/magento2
38
https://github.com/plone/Products.CMFPlone
37
https://github.com/x-stream/xstream
37
https://github.com/octobercms/october
36
https://github.com/mlflow/mlflow
36
https://github.com/umbraco/Umbraco-CMS
35
https://github.com/sparklemotion/nokogiri
35
https://github.com/apache/activemq
34
https://github.com/parse-community/parse-server
34
https://github.com/answerdev/answer
34
https://github.com/go-gitea/gitea
32
https://github.com/matrix-org/synapse
32
https://github.com/opencv/opencv
32
https://github.com/apache/inlong
31
https://github.com/PaddlePaddle/Paddle
31
https://github.com/cilium/cilium
31
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/erlang/otp
29
https://github.com/rack/rack
29
https://github.com/openstack/keystone
28
https://github.com/electron/electron
28
https://github.com/strapi/strapi
28
https://github.com/CVEProject/cvelist
28
https://github.com/gogs/gogs
28
https://github.com/FlowiseAI/Flowise
28
https://github.com/netty/netty
27
https://github.com/github/advisory-database
26
https://github.com/froxlor/froxlor
26
https://github.com/geoserver/geoserver
26
https://github.com/zitadel/zitadel
26
https://github.com/baserproject/basercms
26
https://github.com/apache/nifi
26
https://github.com/traefik/traefik
25
https://github.com/denoland/deno
25
https://github.com/vercel/next.js
25
https://github.com/surrealdb/surrealdb
25
https://github.com/pmmp/PocketMine-MP
25
https://github.com/bcgit/bc-java
25
https://github.com/vllm-project/vllm
25
https://github.com/langchain-ai/langchain
25
https://github.com/run-llama/llama_index
24
https://github.com/hashicorp/consul
24
https://github.com/getgrav/grav
24
https://github.com/apache/cxf
24
https://github.com/pyload/pyload
24
https://github.com/moby/moby
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/bytecodealliance/wasmtime
23
https://github.com/dnnsoftware/Dnn.Platform
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/eclipse/jetty.project
23
https://github.com/jenkinsci/script-security-plugin
22
https://github.com/nervosnetwork/ckb
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/Perl/perl5
22
https://github.com/getkirby/kirby
22
https://github.com/helm/helm
22
https://github.com/undertow-io/undertow
21
https://github.com/hashicorp/vault
21
https://github.com/laravel/framework
21
https://github.com/goharbor/harbor
21
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/ethyca/fides
20
https://github.com/funadmin/funadmin
20
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/opencast/opencast
20
https://github.com/OpenNMS/opennms
20
https://github.com/cloudfoundry/uaa
19
https://github.com/simplesamlphp/simplesamlphp
19
https://github.com/containerd/containerd
19
https://github.com/backstage/backstage
19
https://github.com/TYPO3-CMS/core
19
https://github.com/intelliants/subrion
19
https://github.com/alkacon/opencms-core
19
https://github.com/huggingface/transformers
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/rubygems/rubygems
18
https://github.com/OpenMage/magento-lts
18
https://github.com/vaadin/platform
18
https://github.com/opencontainers/runc
18
https://github.com/apache/camel
18
https://github.com/openfga/openfga
17
https://github.com/ethereum/go-ethereum
17
https://github.com/vantage6/vantage6
17
https://github.com/apache/kylin
17
https://github.com/mindsdb/mindsdb
17
https://github.com/liufee/cms
17
https://github.com/dotnet/aspnetcore
16
https://github.com/rusqlite/rusqlite
16
https://github.com/hashicorp/nomad
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/sequelize/sequelize
16
https://github.com/etcd-io/etcd
16
https://github.com/pyca/cryptography
16
https://github.com/quarkusio/quarkus
16
https://github.com/forkcms/forkcms
16
https://github.com/vitejs/vite
16
https://github.com/tinymce/tinymce
16
https://github.com/twbs/bootstrap
16
https://github.com/drupal/core
15
https://github.com/sqlite/sqlite
15
https://github.com/dompdf/dompdf
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/OPCFoundation/UA-.NETStandard
15
https://github.com/cobbler/cobbler
15
https://github.com/spring-projects/spring-security
15
https://github.com/zendframework/zendframework
15
https://github.com/ckeditor/ckeditor4
15
https://github.com/decidim/decidim
15
https://github.com/aio-libs/aiohttp
15
https://github.com/thorsten/phpMyFAQ
15
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/puppetlabs/puppet
15
https://github.com/containers/podman
15
https://github.com/nodejs/undici
15
https://github.com/xuxueli/xxl-job
15
https://github.com/centreon/centreon
15
https://github.com/cosmos/cosmos-sdk
14
https://github.com/TryGhost/Ghost
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/twisted/twisted
14
https://github.com/publify/publify
14
https://github.com/urllib3/urllib3
14
https://github.com/apache/zeppelin
14
https://github.com/golang/go
14
https://github.com/ImageMagick/ImageMagick
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/ming-soft/MCMS
14
https://github.com/apache/superset
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/janeczku/calibre-web
14
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/Graylog2/graylog2-server
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/1Panel-dev/1Panel
13
https://github.com/h2oai/h2o-3
13
https://github.com/openbao/openbao
13
https://github.com/zenml-io/zenml
13
https://sourceforge.net/projects/sourceforge.net
13
https://github.com/modoboa/modoboa
13
https://github.com/laurent22/joplin
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/OctoPrint/OctoPrint
13
https://github.com/apache/dolphinscheduler
13
https://github.com/dromara/hutool
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/NodeBB/NodeBB
12
https://github.com/modxcms/revolution
12