Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhjcm0tcXBwOC1oY3c0
Moderate severity vulnerability that affects org.apache.struts:struts2-rest-plugin
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: over 5 years ago
Moderate
GSA_kwCzR0hTQS02cHFtLXBwNjUtbWMyNs4AAq6W
Jenkins Gem Publisher Plugin stores credentials as plaintext
Ecosystems: maven
Packages: net.arangamani.jenkins:gem-publisher
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1nZjd4LTJqMngtN2Y3M80p1A
Missing authorization in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS0zZmp2LThyODItNnhtOc4AA1ak
Jenkins Fortify Plugin cross-site request forgery vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:fortify
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS00NGNtLXA5cTctcnIzcM4AAmCw
Missing permission check in Jenkins Liquibase Runner Plugin allows enumerating credentials IDs
Ecosystems: maven
Packages: org.jenkins-ci.plugins:liquibase-runner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00dnJjLXE3bTYtdnE3d84AAvzN
Lin CMS vulnerable to Improper Authentication
Ecosystems: maven, pypi
Packages: io.github.talelin:lin-cms-core, Lin-CMS
Source: GitHub Advisory Database
Blast Radius: 5.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0yM3FmLTNqZjktaDNxOc4AA1Yz
Apache NiFi Insufficient Property Validation vulnerability
Ecosystems: maven
Packages: org.apache.nifi:nifi-dbcp-service-bundle, org.apache.nifi:nifi-dbcp-service-api, org.apache.nifi:nifi-jms-processors, org.apache.nifi:nifi-dbcp-base
Source: GitHub Advisory Database
Blast Radius: 12.8
Published: 9 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2MzQtZzJweC1qNGZ3
Improper Handling of Length Parameter Inconsistency in Apache Ant
Ecosystems: maven
Packages: org.apache.ant:ant
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: almost 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE1cjQtY2ZweC1oNmZo
Improper Handling of Length Parameter Inconsistency in Apache Ant
Ecosystems: maven
Packages: org.apache.ant:ant
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: almost 3 years ago
Moderate
GSA_kwCzR0hTQS1nOTV2LTNwajYtajQzM84AA7-q
Ant Media Server does not properly authorize non-administrative API calls
Ecosystems: maven
Packages: io.antmedia:ant-media-server
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: 2 days ago
Moderate
GSA_kwCzR0hTQS1tZjI3LXdnNjYtbThmNc0csA
A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages.
Ecosystems: maven
Packages: io.atomix:atomix
Source: GitHub Advisory Database
Blast Radius: 12.4
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVmdngtMmpqMy02bWZm
Insufficiently Protected Credentials in Elasticsearch
Ecosystems: maven
Packages: org.elasticsearch:elasticsearch
Source: GitHub Advisory Database
Blast Radius: 20.5
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS1yY3J2LTZyN3ItcnI3bc367Q
Missing permission check in Jenkins FTP publisher Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:ftppublisher
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nMnJwLXF3cnEtcXFxcc36yw
Jenkins Open STF Plugin stores credentials in plain text
Ecosystems: maven
Packages: org.jenkins-ci.plugins:open-stf
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00d3g1LWM3MjMteHZ3ds4AAkZv
Credentials stored in plain text by Jenkins Copr Plugin
Ecosystems: maven
Packages: org.fedoraproject.jenkins.plugins:copr
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1tcWozLWZjMzktNzNmas4AAqzu
Cross-site request forgery vulnerability in Jenkins Artifactory Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:artifactory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yOGo0LTk2bXgtcmpjY80liA
Improper Restriction of XML External Entity Reference in skylot/jadx
Ecosystems: maven
Packages: io.github.skylot:jadx-core
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZoNjMtNHI2Ni1qYzd2
Cross-site scripting (XSS) in Apache Velocity Tools
Ecosystems: maven
Packages: org.apache.velocity:velocity-tools, org.apache.velocity.tools:velocity-tools-parent
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS04NnZtLThtNHAtNjI2M84AAWdd
OpenTSDB Cross-site Scripting vulnerability
Ecosystems: maven
Packages: net.opentsdb:opentsdb
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oMm1xLXA5cjUtd2g5NM4AAj9n
Ignite Realtime Openfire allows Cross-site Scripting
Ecosystems: maven
Packages: org.igniterealtime.openfire:parent
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1tNDZwLXJwOHgteDhjNM4AAQYa
CSRF vulnerability in Jenkins OpenShift Deployer Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:openshift-deployer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW0zOTQtOHJ3dy0zanI3
DOS vulnerability for Quoted Quality CSV headers
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS1wOTJxLTdmaGgtbXEzNc0img
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS05Y2NtLWczNjItMnIzNc4AAWMP
XWork in Apache Struts Reveals Sensitive Information
Ecosystems: maven
Packages: org.apache.struts.xwork:xwork-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1yN2M4LWhnaGMtMm1wOM4AAblp
Apache Tomcat Allows Replacing of XML Parser
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xN21jLWZjODctdjd3N84AA1Dj
OpenRefine Server-Side Request Forgery vulnerability
Ecosystems: maven
Packages: org.openrefine:main
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS0yN3ByLXI3aG0tYzJyY84AA0zh
Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs
Ecosystems: maven
Packages: org.jenkins-ci.plugins:dimensionsscm
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1jdjlqLTdxNHgtdjJnMs4AASrL
Apache OpenMeetings may allow authenticated attacker to deny service for privileged users
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05cjdmLXJxaHctajhoOM38ag
Incorrect permission checks in Pipeline: Nodes and Processes plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-durable-task-step
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM0M3EtNWhwai00Y3J2
Local information disclosure via system temporary directory
Ecosystems: maven
Packages: org.glassfish.jersey.core:jersey-common
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS1jd2g5LWY4bTYtNnI2M84AAUje
Jenkins Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nZ2hjLWc4Y2otNHZmds4AAqOV
Stored XSS vulnerability in Jenkins Git Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:git
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1nNDRtLXg1aDctZnI1cc4AA6wa
Apache Zeppelin: Cron arbitrary user impersonation with improper privileges
Ecosystems: maven
Packages: org.apache.zeppelin:zeppelin-server
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1teHZxLWN2NHgtcDNqd84AAv3m
Incorrect Default Permissions in Liferay Portal
Ecosystems: maven
Packages: com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 6.5
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01eDloLXAyZ3gtMzVtZ84AAv3q
Incorrect Default Permissions in Liferay Portal
Ecosystems: maven
Packages: com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 8.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mZzZnLTUycmctdnI5cc4AAmgM
Stored XSS vulnerability in Jenkins Static Analysis Utilities Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:analysis-core
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1odzRmLWc3d2gteHA1Ms4AAv5I
Cross-Site Request Forgery in Jenkins Delete log Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:delete-log-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0yNGc4LTM1eDktZnY4cs4AAmgZ
Stored XSS vulnerability in Jenkins FindBugs Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:findbugs
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qMnI2LXI5MjktdjZnZs4AA63s
XWiki Platform CSRF in the job scheduler
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-scheduler-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1oNHd4LTc4cDktZnd4d84AAv6U
XXE vulnerability on agents in Jenkins SourceMonitor Plugin
Ecosystems: maven
Packages: com.thalesgroup.hudson.plugins:sourcemonitor
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1yd2gzLTVnN3YtM2M1bc4AAmgD
Password written to the build log by Jenkins SQLPlus Script Runner Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sqlplus-script-runner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03dnBxLWc5OTgtcXB2N84AATGb
Netty denial of service vulnerability
Ecosystems: maven
Packages: io.netty:netty-all, io.netty:netty
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzaGctZzQ0cS00NzRx
Cross Site Scripting (XSS) in XWiki
Ecosystems: maven
Packages: org.xwiki.commons:xwiki-commons
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
GSA_kwCzR0hTQS13eDVqLTU0bW0tcnFxcc0ahg
HTTP request smuggling in netty
Ecosystems: maven
Packages: io.netty:netty, org.jboss.netty:netty, io.netty:netty-codec-http
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdtNDctOHY1cC13anBq
Possible request smuggling in HTTP/2 due missing validation
Ecosystems: maven
Packages: io.netty:netty, org.jboss.netty:netty, io.netty:netty-codec-http2
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS1xdjZxLTRqd3gtN2o1Y84AAl8X
Arbitrary file write vulnerability in Jenkins Storable Configs Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:storable-configs-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xNXE4LWpnaGYtM3BtM84AAekz
Apache Struts2 Broken Access Control Vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12cXA4LWg1M2gtM2pmaM4AAlOW
Stored XSS vulnerability in Jenkins VncRecorder Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:vncrecorder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02NTZnLWhmOHYteDJyd84AAlOj
Secret stored in plain text by Jenkins Slack Upload Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:slack-uploader
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1cjgtMzQ5NS14NnJt
Jinjava calls getClass
Ecosystems: maven
Packages: com.hubspot.jinjava:jinjava
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 5 years ago
Moderate
GSA_kwCzR0hTQS1ycnZmLTV3NHItM3g3ds4AA6wc
Apache Zeppelin vulnerable to cross-site scripting in the helium module
Ecosystems: maven
Packages: org.apache.zeppelin:zeppelin-interpreter
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1yZnJxLTN2ODktZnFnNs4AAlOk
Reflected XSS in Jenkins Compatibility Action Storage Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:compatibility-action-storage
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0ycTdqLTUyeGcteDhmbc4AAlOc
Missing permission checks in Zephyr for JIRA Test Management Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01cTYzLWp2YzktcXBods4AAQaj
Cross-site request forgery vulnerability in Jenkins Nomad Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:nomad
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS01NndmLW14NWMtZmZqeM4AAlOn
CSRF vulnerability in Jenkins Zephyr for JIRA Test Management Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1naGcyLTN3OXgtOTU5Oc4AA00q
Alkacon OpenCMS arbitrary file upload vulnerability
Ecosystems: maven
Packages: org.opencms:opencms-core
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: 10 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0cjgtZm05ci1jcGoy
Low severity vulnerability that affects com.linecorp.armeria:armeria
Ecosystems: maven
Packages: com.linecorp.armeria:armeria
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: over 4 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmdngtN3dyeC00M2Zo
XStream vulnerable to an Arbitrary File Deletion on the local host when unmarshalling
Ecosystems: maven
Packages: com.thoughtworks.xstream:xstream
Source: GitHub Advisory Database
Blast Radius: 30.0
Published: over 3 years ago
Moderate
GSA_kwCzR0hTQS13ampyLWg0d2gtdzZ2ds3Duw
Spring Framework Inefficient Regular Expression Complexity
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12NzZ3LTNwaDgtdm02Ns4AA5Oc
Undertow Path Traversal vulnerability
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 19.7
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1wZmgyLWhmbXEtcGhnNc4AA4C3
json-path Out-of-bounds Write vulnerability
Ecosystems: maven
Packages: com.jayway.jsonpath:json-path
Source: GitHub Advisory Database
Blast Radius: 24.2
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS0zN20zLXFwMzcteDNjNs4AAYbk
Apache Geode gfsh query vulnerability
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 11.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJteGctNzNnZy00cDk4
Cross-Site Scripting (XSS) in jquery
Ecosystems: maven, rubygems, npm, nuget
Packages: org.webjars.npm:jquery, jquery-rails, jquery, jQuery
Source: GitHub Advisory Database
Blast Radius: 104.9
Published: over 6 years ago
Moderate
GSA_kwCzR0hTQS01cjVjLTdybTQtbXA0cs4AA0qJ
Jenkins Rebuilder Plugin vulnerable to Cross Site Request Forgery
Ecosystems: maven
Packages: com.sonyericsson.hudson.plugins.rebuild:rebuild
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS00YzNxLXI4NHItcTZwcM4AA0qc
Jenkins mabl Plugin vulnerable to exposure of system-scooped credentials
Ecosystems: maven
Packages: com.mabl.integration.jenkins:mabl-integration
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1wMnI0LXJwajgtbTJwOc4AAiHq
Cross-site Scripting in Apache JSPWiki
Ecosystems: maven
Packages: org.apache.jspwiki:jspwiki-main, org.apache.jspwiki:jspwiki-war
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02OXdwLTNwbTMtaHhnZ84AAkHe
Deserialization of Untrusted Data in Apache Dubbo
Ecosystems: maven
Packages: org.apache.dubbo:dubbo-rpc-http-invoker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS14Zzc1LTY4eDMtN3Azcc4AAa4P
Apache Struts vulnerable to possible DoS attack when using URLValidator
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2OWctcHdwNS04N3Bw
TemporaryFolder on unix-like systems does not limit access to created files
Ecosystems: maven
Packages: junit:junit
Source: GitHub Advisory Database
Blast Radius: 27.3
Published: over 3 years ago
Moderate
GSA_kwCzR0hTQS1tM3A5LWM3cDMteHhtcM4AAa57
Mayaa Cross-site Scripting vulnerability
Ecosystems: maven
Packages: com.github.seasarorg.mayaa:mayaa
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14M3FoLTUzcWYtanhxOc4AAwPh
Jenkins Gitea Plugin vulnerable to Cleartext Transmission of Sensitive Information
Ecosystems: maven
Packages: org.jenkins-ci.plugins:gitea
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU1dzktYzNnMi00cnJo
Man-in-the-middle attack in Apache Axis
Ecosystems: maven
Packages: axis:axis, org.apache.axis:axis
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI1M3Ytdm04Ny1mNzJj
Improper Validation of Certificates in apache axis
Ecosystems: maven
Packages: axis:axis, org.apache.axis:axis
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
GSA_kwCzR0hTQS14dnY4LTh3aDktOWZoMs4AARPu
Keycloak Authentication Error
Ecosystems: maven
Packages: org.keycloak:keycloak-services, org.keycloak:keycloak-saml-adapter-core
Source: GitHub Advisory Database
Blast Radius: 14.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zZzhqLWpqNTQtM3ZqZ84AAe4O
Apache Struts is vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00NThoLXd2NDgtZnE3Nc4AARNL
Keycloak vulnerable to cross-site scripting via the state parameter
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12N2NxLXBxN3YtbWg1ds2Vag
Apache Derby SQL Injection
Ecosystems: maven
Packages: org.apache.derby:derby
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3cnAtcHZycS1qbXd2
Path Traversal and Improper Input Validation in Apache Commons IO
Ecosystems: maven
Packages: org.smartboot.servlet:servlet-core, org.checkerframework.annotatedlib:commons-io, org.apache.servicemix.bundles:org.apache.servicemix.bundles.commons-io, org.apache.commons:commons-io, net.hasor:cobble-lang, com.virjar:ratel-api, com.liferay:com.liferay.sass.compiler.jsass, com.diamondq.common:common-thirdparty.jcasbin, com.cosium.vet:vet, commons-io:commons-io
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS01bXE4LWg4MnAtd2pmMs1mbg
Jetty Javascript Inclusion Vulnerability
Ecosystems: maven
Packages: org.mortbay.jetty:jetty
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04cXBmLWZ2MzYtaDRyOM4AASyL
Infinite Loop in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3NWYtN2M2Yy0zdm12
Cross-site Scripting in PrimeFaces
Ecosystems: maven, npm
Packages: org.primefaces:primefaces, primefaces
Source: GitHub Advisory Database
Blast Radius: 30.0
Published: about 3 years ago
Moderate
GSA_kwCzR0hTQS1meDJjLTk2dmotOTg1ds4AAwRn
HAProxyMessageDecoder Stack Exhaustion DoS
Ecosystems: maven
Packages: io.netty:netty-codec-haproxy
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS05Mjg0LWo0YzktNzc5cc4AAWDP
Improper Input Validation in Apache Jackrabbit
Ecosystems: maven
Packages: org.apache.jackrabbit:jackrabbit-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS03amN4LWo2Z3YtbTRoZs4AAQaT
Jenkins Fortify on Demand Uploader Plugin CSRF vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:fortify-on-demand-uploader
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00dmYyLWNtMjMtcmY0Y84AASj_
Incorrect Authorization in Jenkins Gerrit Trigger Plugin
Ecosystems: maven
Packages: com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg0eDQtNXFwMi13cDQ2
Moderate severity vulnerability that affects com.fasterxml.jackson.datatype:jackson-datatype-jsr353
Ecosystems: maven
Packages: com.fasterxml.jackson.datatype:jackson-datatype-jsr310
Source: GitHub Advisory Database
Blast Radius: 30.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05am0tcmhybS1nY3hq
Path traversal in org.springframework.integration:spring-integration-zip
Ecosystems: maven
Packages: org.springframework.integration:spring-integration-zip
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 5 years ago
Moderate
GSA_kwCzR0hTQS01NjJyLXZnMzMtOHg4aM4AAwB_
TemporaryFolder on unix-like systems does not limit access to created files
Ecosystems: maven
Packages: org.postgresql:postgresql
Source: GitHub Advisory Database
Blast Radius: 24.7
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1xajhwLWM3MzMtdjQ5NM4AAQas
CSRF vulnerability in Zephyr Enterprise Test Management Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-enterprise-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00cGp4LTg2cGcteDRqNc4AAWed
Jenkins SAML Plugin Session Fixation vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:saml
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04Njk2LTgzNnAtYzhxcM4AAjR2
Reflected XSS vulnerability in Jenkins gitlab-hook Plugin
Ecosystems: maven
Packages: org.jenkins-ci.ruby-plugins:gitlab-hook
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mcDM1LXhycnItM2dwaM4AAvoE
Apache DolphinScheduler vulnerable to Path Traversal
Ecosystems: maven
Packages: org.apache.dolphinscheduler:dolphinscheduler
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0ybXg3LXh2ZmctZmc1M84AA5J2
Liferay Portal's account lockout does not invalidate existing user sessions
Ecosystems: maven
Packages: com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1oNjVmLWp2cXctbTlmas0mHg
Infinite Loop in Apache Xerces Java
Ecosystems: maven
Packages: xerces:xercesImpl
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS04NHdnLXJncDgtMmhnNM0gxA
Command Injection in Apache James
Ecosystems: maven
Packages: org.apache.james:james-server
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1tN3ByLW00Y3gtNm0yMs4AAkDT
Reflected XSS vulnerability in Jenkins Queue cleanup Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:queue-cleanup
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xbWYzLXc1amYtY3Y1NM4AAk1M
XSS vulnerability in Jenkins Subversion Partial Release Manager Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:svn-partial-release-mgr
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp3M3YtNWNoMi13Zm1t
Wildfly logs plaintext passwords
Ecosystems: maven
Packages: org.wildfly:wildfly-parent
Source: GitHub Advisory Database
Blast Radius: 9.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS13Mmh2LXJjcXItMmg3cs4AAoE2
View name validation bypass in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03cXAyLXJneHItMjlxNM4AAoGC
Missing permission checks in Micro Focus Application Automation Tools Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:hp-application-automation-tools-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Statistics
Advisories: 18,752
Packages: 8,375
Repositories: 973
Ecosystems: 12
Filter by Severity
Moderate 8,149 High 6,447 Critical 2,848 Low 1,014
Filter by Ecosystem
maven 5,573 packagist 3,982 pypi 3,848 npm 3,558 go 1,934 nuget 1,421 rubygems 815 cargo 780 swift 31 hex 30 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 com.thoughtworks.xstream:xstream 36 com.jfinal:jfinal 36 org.apache.tomcat.embed:tomcat-embed-core 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.elasticsearch:elasticsearch 32 org.jenkins-ci.plugins:script-security 32 org.keycloak:keycloak-services 27 io.undertow:undertow-core 27 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.bouncycastle:bcprov-jdk14 22 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 com.vaadin:vaadin-bom 18 com.liferay.portal:release.dxp.bom 18 org.apache.geode:geode-core 17 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 org.bouncycastle:bcprov-jdk15 16 org.apache.jspwiki:jspwiki-main 15 org.apache.struts.xwork:xwork-core 15 org.apache.inlong:manager-pojo 14 org.xwiki.platform:xwiki-platform-web 14 org.apache.cxf:cxf 13 org.apache.hadoop:hadoop-main 13 com.vaadin:flow-server 12 org.jenkins-ci.plugins:git 12 org.bouncycastle:bcprov-jdk15on 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.apache.dolphinscheduler:dolphinscheduler 12 org.apache.hadoop:hadoop-common 11 org.apache.ranger:ranger 11 org.apache.cxf:cxf-core 11 org.apache.jspwiki:jspwiki-war 11 org.igniterealtime.openfire:parent 11 org.jeecgframework.boot:jeecg-boot-common 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.james:james-server 11 org.apache.commons:commons-compress 11 org.mortbay.jetty:jetty 11 org.apache.camel:camel-core 11 com.xuxueli:xxl-job 11 org.apache.tomcat:tomcat-coyote 11 org.jenkins-ci.plugins:email-ext 11 org.apache.tika:tika-core 11 org.apache.inlong:manager-service 10 io.netty:netty 10 org.jboss.netty:netty 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.jenkins-ci.plugins:active-directory 9 org.apache.archiva:archiva 9 org.springframework:spring-web 9 org.jenkins-ci.plugins:config-file-provider 9 org.opennms:opennms 9 org.apache.xmlgraphics:batik 9 cn.hutool:hutool-core 9 org.jenkins-ci.plugins:electricflow 9 org.opencrx:opencrx-core-models 9 org.apache.hive:hive 9 io.jenkins:configuration-as-code 9 org.apache.tomcat:tomcat-catalina 9 org.apache.tapestry:tapestry-core 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.bouncycastle:bcprov-jdk15to18 9 org.springframework:spring-webmvc 9 org.apache.shiro:shiro-core 9 org.craftercms:crafter-studio 9 org.apache.kylin:kylin 8 io.jenkins.blueocean:blueocean 8 org.postgresql:postgresql 8 org.opencms:opencms-core 8 org.apache.ozone:ozone-main 8 org.apache.hive:hive-exec 8 org.graylog2:graylog2-server 8 org.apache.ambari:ambari 8 org.apache.pdfbox:pdfbox 8 org.webjars.npm:jquery 8 org.apache.santuario:xmlsec 8 org.yaml:snakeyaml 8 jquery-rails 8 jquery 8 org.jenkins-ci.plugins:ec2 8 org.apache.zeppelin:zeppelin 8 mysql:mysql-connector-java 8 com.hazelcast:hazelcast 8 org.jeecgframework.boot:jeecg-boot-base 7 org.jruby:jruby-stdlib 7 org.jenkins-ci.plugins:subversion 7 org.apache.hive:hive-service 7 io.jenkins.plugins:miniorange-saml-sp 7 org.apache.karaf:apache-karaf 7 org.apache.linkis:linkis 7 io.jenkins.plugins:warnings-ng 7 org.owasp.antisamy:antisamy 7 jQuery.UI.Combined 7 org.webjars.npm:jquery-ui 7 jquery-ui-rails 7 jquery-ui 7 org.apache.atlas:atlas-common 7 rubygems-update 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.jenkins-ci.plugins:mercurial 7 org.jenkins-ci.plugins:rundeck 7 org.apache.cxf:apache-cxf 7 net.opentsdb:opentsdb 7 org.jenkins-ci.plugins:openshift-deployer 7 org.apache.poi:poi 7 org.apache.tika:tika 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 jQuery 7 org.apache.inlong:manager-web 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.activemq:activemq-parent 7 io.atomix:atomix 7 org.owasp.esapi:esapi 7 org.apache.logging.log4j:log4j-core 7 org.apache.spark:spark-core_2.11 7 org.apache.derby:derby 7 org.jenkins-ci.plugins:artifactory 7 org.jboss.resteasy:resteasy-client 7 io.dataease:dataease-plugin-common 7 org.jenkins-ci.plugins:gitlab-oauth 6 org.apache.storm:storm-core 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.apache.struts:struts2-rest-plugin 6 commons-fileupload:commons-fileupload 6 org.apache.shenyu:shenyu-common 6 org.xwiki.commons:xwiki-commons-xml 6 io.netty:netty-handler 6 com.jflyfox:jflyfox_jfinal 6 org.jenkins-ci.plugins:pipeline-maven 6 org.opencastproject:opencast-kernel 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.apache.syncope:syncope-core 6 org.apache.pulsar:pulsar-broker 6 org.apache.solr:solr-parent 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.apache.spark:spark-core_2.10 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.apache.httpcomponents:httpclient 6 org.jenkins-ci.plugins:repository-connector 6 io.netty:netty-codec-http 6 cn.hutool:hutool-json 6 org.apache.axis:axis 6 axis:axis 6 org.csanchez.jenkins.plugins:kubernetes 6 org.bouncycastle:bcprov-jdk18on 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.apache.mesos:mesos 6 org.opensearch.plugin:opensearch-security 6 tech.powerjob:powerjob 6 hudson.plugins:project-inheritance 6 com.vaadin:vaadin-server 5 org.jenkins-ci.plugins:ghprb 5 org.dspace:dspace-jspui 5 org.jeecgframework.boot:jeecg-boot-base-core 5 org.jboss.resteasy:resteasy-bom 5 org.apache.hadoop:hadoop-client 5 org.neo4j.procedure:apoc 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins.m2release:m2release 5 org.jenkins-ci.plugins:junit 5 org.codehaus.jettison:jettison 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.jenkins-ci.plugins:publish-over-ssh 5 info.magnolia:magnolia-core 5 com.alibaba:dubbo 5 org.springframework.amqp:spring-amqp 5 xerces:xercesImpl 5 org.biouno:uno-choice 5 log4j:log4j 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 io.projectreactor.netty:reactor-netty-http 5 org.jenkins-ci.plugins:openid 5 com.coravy.hudson.plugins.github:github 5 struts:struts 5 org.jenkins-ci.plugins:google-login 5 org.apache.druid:druid 5 io.vertx:vertx-core 5 org.jenkins-ci.plugins:credentials 5 org.opennms:opennms-webapp 5 org.bouncycastle:bcprov-ext-jdk15on 5 com.synopsys.jenkinsci:ownership 5 io.vertx:vertx-web 5 org.jenkins-ci.plugins:sinatra-chef-builder 5 org.wildfly:wildfly-parent 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 33 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 26 https://github.com/eclipse/jetty.project 23 https://github.com/apache/nifi 21 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/netty/netty 20 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/bcgit/bc-java 19 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/geoserver/geoserver 15 https://github.com/apache/camel 15 https://github.com/undertow-io/undertow 13 https://github.com/xuxueli/xxl-job 13 https://github.com/dromara/hutool 13 https://github.com/quarkusio/quarkus 13 https://github.com/ming-soft/MCMS 13 https://github.com/apache/dolphinscheduler 12 https://github.com/apache/kylin 12 https://github.com/igniterealtime/Openfire 11 https://github.com/vaadin/flow 11 https://github.com/jenkinsci/git-plugin 10 https://github.com/apache/lucene-solr 9 https://github.com/spring-projects/spring-security 9 https://github.com/DSpace/DSpace 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/jquery/jquery 9 https://github.com/cui2shark/cms 9 https://github.com/xwiki/xwiki-commons 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/nahsra/antisamy 8 https://github.com/apache/zeppelin 8 https://github.com/opensearch-project/security 8 https://github.com/pgjdbc/pgjdbc 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/apache/xmlgraphics-batik 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/vaadin/framework 7 https://github.com/dataease/dataease 7 https://github.com/ratpack/ratpack 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/rubygems/rubygems 7 https://github.com/rundeck/rundeck 7 https://github.com/vert-x3/vertx-web 6 https://github.com/apache/tika 6 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/apache/hadoop 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/http4s/http4s 6 https://github.com/line/armeria 6 https://github.com/playframework/playframework 6 https://github.com/ls1intum/Ares 6 https://github.com/resteasy/resteasy 6 https://github.com/apache/pulsar 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/cui2shark/security 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/jquery/jquery-ui 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/protocolbuffers/protobuf 5 https://github.com/apache/openmeetings 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/apiman/apiman 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/PowerJob/PowerJob 5 https://github.com/h2database/h2database 5 https://github.com/apache/karaf 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/apache/geode 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/grails/grails-core 5 https://github.com/alibaba/nacos 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/apache/shiro 5 https://github.com/apache/shenyu 5 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/resteasy/Resteasy 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/skylot/jadx 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/yamcs/yamcs 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/alkacon/opencms-core 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/nightcloudos/new_cms 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/itext/itext7 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/ktorio/ktor 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/xerial/snappy-java 4 https://github.com/apache/syncope 4 https://github.com/jfinal/jfinal 4 https://github.com/infinispan/infinispan 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/apache/activemq-artemis 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/pippo-java/pippo 4 https://github.com/apache/solr 4 https://github.com/bcgit/bc-csharp 4 https://github.com/qos-ch/logback 3 https://github.com/google/guava 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/joniles/mpxj 3 https://github.com/orientechnologies/orientdb 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/Rabb1ter/cms 3 https://bitbucket.org/b_c/jose4j 3 https://github.com/apache/santuario-java 3 https://github.com/jenkinsci/ci-with-toad-edge-plugin 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/opengoofy/hippo4j 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/eclipse/lemminx 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/pf4j/pf4j 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/apache/storm 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/jooby-project/jooby 3 https://github.com/li-yu320/cms 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/apache/jackrabbit 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/jenkinsci/cvs-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/jhy/jsoup 3 https://github.com/apache/geronimo 3 https://github.com/apache/flume 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/aws/amazon-redshift-jdbc-driver 3 https://github.com/apache/dubbo 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/wildfly/wildfly-core 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/jeremylong/DependencyCheck 3 https://github.com/apache/derby 3 https://github.com/apache/commons-configuration 3 https://github.com/apache/cxf-fediz 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/cloudbees-jenkins-advisor-plugin 3