Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS0zNTNtLWpoMm0tNzJ2NM4AA08F
Code injection in stanford-parser
Ecosystems: maven
Packages: edu.stanford.nlp:stanford-parser
Source: GitHub Advisory Database
Blast Radius: 23.3
Published: 10 months ago
Critical
GSA_kwCzR0hTQS03MzJmLXc1ODUtZ21wY84AAo4d
XXE vulnerability in Jenkins Generic Webhook Trigger Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:generic-webhook-trigger
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzcmgtbTd2cC0zNWYy
Operation on a Resource after Expiration or Release in Jetty Server
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 42.7
Published: almost 4 years ago
Critical
GSA_kwCzR0hTQS00dmhmLTJodjctOG1yeM4AATvN
Improper Restriction of XML External Entity Reference in Apache ActiveMQ
Ecosystems: maven
Packages: org.apache.activemq:activemq-broker, org.apache.activemq:activemq-client
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS02bXY4LTk1eDUteGNxOc4AA3OV
H2O local file inclusion vulnerability
Ecosystems: maven
Packages: ai.h2o:h2o-core
Source: GitHub Advisory Database
Blast Radius: 14.9
Published: 6 months ago
Critical
GSA_kwCzR0hTQS04ajI4LTM0cXEtZ21jaM4AAzU2
Apache Sling Commons JSON bundle vulnerable to Improper Input Validation
Ecosystems: maven
Packages: org.apache.sling:org.apache.sling.commons.json
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1jcTZtLTc0cjQteDc3Z83tgA
Cloud Foundry Runtime has Weak Password Recovery Mechanism for Forgotten Password
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS14Mzd2LTM2d3YtNnY2aM4AAy5a
Cross-site Scripting in org.xwiki.commons:xwiki-commons-xml
Ecosystems: maven
Packages: org.xwiki.commons:xwiki-commons-xml
Source: GitHub Advisory Database
Blast Radius: 17.2
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1mNHY4LTU4ZjYtbXdqNM4AAyuw
org.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-flamingo-theme-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1jNWY0LXA1d3YtMjQ3Nc4AAyur
xwiki.platform:xwiki-platform-panels-ui Eval Injection vulnerability
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-panels-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS0zNnAzLXdqbWctaDk0eM03aQ
Remote Code Execution in Spring Framework
Ecosystems: maven
Packages: org.springframework:spring-webflux, org.springframework:spring-webmvc, org.springframework:spring-beans, org.springframework.boot:spring-boot-starter-webflux, org.springframework.boot:spring-boot-starter-web
Source: GitHub Advisory Database
Blast Radius: 57.9
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1qcWg2LTk1NzQtNXgyMs4AAxIl
MITM based Zip Slip in `ca.uhn.hapi.fhir:org.hl7.fhir.core`
Ecosystems: maven
Packages: ca.uhn.hapi.fhir:org.hl7.fhir.validation, ca.uhn.hapi.fhir:org.hl7.fhir.utilities, ca.uhn.hapi.fhir:org.hl7.fhir.r5, ca.uhn.hapi.fhir:org.hl7.fhir.r4b, ca.uhn.hapi.fhir:org.hl7.fhir.convertors, ca.uhn.hapi.fhir:org.hl7.fhir.core
Source: GitHub Advisory Database
Blast Radius: 17.3
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS05M2doLWpnamotcjkyOc4AA2sM
XWiki Platform vulnerable to XSS with edit right in the create document form for existing pages
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 7 months ago
Critical
GSA_kwCzR0hTQS1yd2h2LWh2ajItcXJxbc4AA5aN
Liferay Portal Frontend JS module's portlet.js and Liferay DXP vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 14.7
Published: 3 months ago
Critical
GSA_kwCzR0hTQS0zcHByLTcyeDUteDY3cc4AAxKF
XML external entity vulnerability on agents in Jenkins MSTest Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:mstest
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS04OTVtLXd3NTUtNTl2d84AAZNT
Exposure of Sensitive Information to an Unauthorized Actor in Apache Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-yarn-server-nodemanager
Source: GitHub Advisory Database
Blast Radius: 32.4
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1jMnA0LThtdnYtcndtds4AAwel
Apache Karaf vulnerable to potential code injection
Ecosystems: maven
Packages: org.apache.karaf:apache-karaf
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: over 1 year ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqdzctNmdmcS02d2Y1
Path Traversal in Eclipse Vert
Ecosystems: maven
Packages: io.vertx:vertx-web
Source: GitHub Advisory Database
Blast Radius: 37.5
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2NWYtY2p3OS01dnhn
Camel-xstream component in Apache Camel can allow remote attackers to execute arbitrary commands
Ecosystems: maven
Packages: org.apache.camel:camel-xstream
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS14MjM0LW1nN3EtbThnOM4AAz_w
XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in deletespace template
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-web-templates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjajQtZ2o4bS1tMmY3
Authentication bypass in Apache Shiro
Ecosystems: maven
Packages: org.apache.shiro:shiro-spring
Source: GitHub Advisory Database
Blast Radius: 42.9
Published: about 3 years ago
Critical
GSA_kwCzR0hTQS00NGpnLWpnangtM3hnNc4AA5aM
Liferay Portal's Dynamic Data Mapping module's DDMForm and Liferay DXP vulnerable to stored Cross-site Scripting
Ecosystems: maven
Packages: com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: 3 months ago
Critical
GSA_kwCzR0hTQS1nNWNqLTVoNTgtajkzd84AAwC4
Jeecg-boot vulnerable to SQL Injection
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-common
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS04ZmZjLTc5eGctMjl3OM0rTw
Apache Cassandra vulnerable to Code Injection due to unsafe configuration
Ecosystems: maven
Packages: org.apache.cassandra:cassandra-all
Source: GitHub Advisory Database
Blast Radius: 34.5
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS02Z2Y1LWM4OTgtN3J4cM4AAzSf
Improper Neutralization of Script in Attributes in XWiki (X)HTML renderers
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-annotation-core, org.xwiki.rendering:xwiki-rendering-syntax-annotatedhtml5, org.xwiki.rendering:xwiki-rendering-syntax-annotatedxhtml, org.xwiki.rendering:xwiki-rendering-syntax-html5, org.xwiki.rendering:xwiki-rendering-syntax-html, org.xwiki.platform:xwiki-core-rendering-api, org.xwiki.rendering:xwiki-rendering-syntax-xhtml
Source: GitHub Advisory Database
Blast Radius: 18.6
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1tN3ZoLXBnZnEtdjRycc4AA1xW
Jeecg boot SQL Injection vulnerability
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 8 months ago
Critical
GSA_kwCzR0hTQS05aHFoLWZtaGctdnEyas4AAv_O
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') in AttachmentSelector.xml
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-attachment-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY0NXAtODhxaC13Mzk4
Arbitrary Code Execution in jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS1wN3c5LThteHctcDNnN80shw
Improper Certificate Validation in Hutool
Ecosystems: maven
Packages: cn.hutool:hutool-http
Source: GitHub Advisory Database
Blast Radius: 26.6
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM4aG0tN2hwcS03amhn
com.fasterxml.jackson.core:jackson-databind vulnerable to Deserialization of Untrusted Data
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS0yMmo0LXFjNDgtajhmOM4AAxUh
Apache InLong vulnerable to Deserialization of Untrusted Data vulnerability
Ecosystems: maven
Packages: org.apache.inlong:inlong
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNjdjQteHh2Ny05MzRx
Improper Verification of Cryptographic Signature in Apache Pulsar in TensorFlow
Ecosystems: maven
Packages: org.apache.pulsar:pulsar
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 3 years ago
Critical
GSA_kwCzR0hTQS1jZ21tLWMybTktZmY3cs4AA0E5
jFinal Server-Side Template Injection vulnerability
Ecosystems: maven
Packages: com.jfinal:jfinal
Source: GitHub Advisory Database
Blast Radius: 28.7
Published: 11 months ago
Critical
GSA_kwCzR0hTQS1qY21oLXgzMnYtN21nZs3uBg
Cloud Foundry UAA privilege escalation with user invitations
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS0yOXJjLXZxN2YteDMzNc4AA7O2
Apache HugeGraph-Server: Command execution in gremlin
Ecosystems: maven
Packages: org.apache.hugegraph:hugegraph-core, org.apache.hugegraph:hugegraph-api
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 27 days ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmeDYtdnA5Zy1yaDd2
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist bypass
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS1nMnF3LTZ2cnItdjZwcc4AAv2u
Apache Jena vulnerable to Deserialization of Untrusted Data
Ecosystems: maven
Packages: org.apache.jena:jena-sdb
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1wcXdoLTQ0amotcDVybc4AAQXh
Hostname verification in Apache HttpClient 4.3 was disabled by default
Ecosystems: maven
Packages: org.apache.httpcomponents:httpclient
Source: GitHub Advisory Database
Blast Radius: 50.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS0zcHYzLWpqNGgtcDUyOM33gA
Sandbox bypass vulnerability in Jenkins Script Security Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS14ODRyLWpycW0tM2hqOM4AA0VV
Apache Linkis Unrestricted File Upload vulnerability
Ecosystems: maven
Packages: org.apache.linkis:linkis
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3N3EtMnFxZy02OTg5
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg1Y3ctaGo2NS1xcXY5
Polymorphic Typing issue in FasterXML jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 4 years ago
Critical
GSA_kwCzR0hTQS13cWc3LW14NnAtMnJ3M84AAwBL
Command injection in Apache DolphinScheduler Alert Plugins
Ecosystems: maven
Packages: org.apache.dolphinscheduler:dolphinscheduler-alert-plugins
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1nOWN2LXYzdjQtM2g4cs4AA0pM
Apache Pulsar Incorrect Authorization vulnerability
Ecosystems: maven
Packages: org.apache.pulsar:pulsar
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: 10 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpyZzMtcXE5OS0zNWc3
Deserialization of Untrusted Data in Jodd
Ecosystems: maven
Packages: org.jodd:jodd-json
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdod3ctdjU2Yy1jZ3Yy
Deserialization of Untrusted Data in Apache Dubbo
Ecosystems: maven
Packages: org.apache.dubbo:dubbo-common, org.apache.dubbo:dubbo
Source: GitHub Advisory Database
Blast Radius: 34.4
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS03MjlmLXd2ajMtYzRwas0Vzw
Remote code execution in UReport
Ecosystems: maven
Packages: com.bstek.ureport:ureport2-core
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2Z3ItY3ZxMy1xeGdm
Improper Authentication in Apache Shiro
Ecosystems: maven
Packages: org.apache.shiro:shiro-core
Source: GitHub Advisory Database
Blast Radius: 41.9
Published: about 3 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3bTItNTh3di05djc5
Vulnerability in Torpedo Query
Ecosystems: maven
Packages: org.torpedoquery:org.torpedoquery
Source: GitHub Advisory Database
Blast Radius: 10.2
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtbWMtNzQycS1qZzc1
jackson-databind polymorphic typing issue
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 4 years ago
Critical
GSA_kwCzR0hTQS14cGhqLW05Y2MtOGZtcc4AAQZQ
Deserialization of Untrusted Data in Groovy
Ecosystems: maven
Packages: org.codehaus.groovy:groovy
Source: GitHub Advisory Database
Blast Radius: 40.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS14NzR4LXFmNWotMzVqaM33fg
Sandbox bypass vulnerability in Jenkins Pipeline: Groovy Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS00Z3FwLTI5NnItajVtcc4AAUrW
Apache XML-RPC vulnerable to Deserialization of Untrusted Data
Ecosystems: maven
Packages: org.apache.xmlrpc:xmlrpc
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS02dzg5LWM2NXctangyY84AAxE2
Jeecg-boot is vulnerable to SQL injection
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-module-system, org.jeecgframework.boot:jeecg-boot-base-core
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS03cGh3LWN4eDctcTl2cc4AAyW3
Spring Framework is vulnerable to security bypass via mvcRequestMatcher pattern mismatch
Ecosystems: maven
Packages: org.springframework:spring
Source: GitHub Advisory Database
Blast Radius: 35.4
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS00d2M2LWhxdjktcWM5N84AAz9s
XWiki Platform vulnerable to stored cross-site scripting in ClassEditSheet page via name parameters
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-appwithinminutes-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4MjItcjRyNS12OGpn
Polymorphic Typing issue in FasterXML jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 4 years ago
Critical
GSA_kwCzR0hTQS13Znc3LTY2MzIteGN2Ms4AAQzZ
Jenkins CLI Deserialization of Untrusted Data vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:cli
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1wM3I1LXgzaHItZ3BnNc4AA10e
OpenRefine Remote Code execution in project import with mysql jdbc url attack
Ecosystems: maven
Packages: org.openrefine:database
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 8 months ago
Critical
GSA_kwCzR0hTQS1qZjg2LTk0MzQtZjhjMs4AAi3L
Keycloak Authentication Error
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1tZmp3LXg0cTQtNjlwOc4AAigf
Ignite Realtime Openfire vulnerable to Server Side Request Forgery
Ecosystems: maven
Packages: org.igniterealtime.openfire:parent
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1jZzktNjRjcC14d3A3
Server-Side Request Forgery in Hawt Hawtio
Ecosystems: maven
Packages: io.hawt:hawtio-core
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: almost 5 years ago
Critical
GSA_kwCzR0hTQS1oMzc2LWoyNjItdmhxNs0g_w
RCE in H2 Console
Ecosystems: maven
Packages: com.h2database:h2
Source: GitHub Advisory Database
Blast Radius: 53.2
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1yYzU3LTlyM3gtOThjcc4AArse
XML External Entity Reference in drools
Ecosystems: maven
Packages: org.drools:drools-core
Source: GitHub Advisory Database
Blast Radius: 33.3
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1oYzVnLXhmNjQtajQ5as4AAwOq
Mingsoft MCMS vulnerable to SQL Injection
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS00bTZqLTIzcDItOGM1NM4AA5gn
Armeria SAML authentication bypass due to missing validation on unsigned SAML messages
Ecosystems: maven
Packages: com.linecorp.armeria:armeria-saml
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: 3 months ago
Critical
GSA_kwCzR0hTQS13bWh3LWhwd2gtNDRwZ84AATvP
Apache ActiveMQ Apollo XXE Vulnerability
Ecosystems: maven
Packages: org.apache.activemq:apollo-project
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxODktcHdoaC03d2Zx
Use of Insufficiently Random Values in penggle:kaptcha
Ecosystems: maven
Packages: com.github.penggle:kaptcha
Source: GitHub Advisory Database
Blast Radius: 36.4
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xOHAtaDc5OC14Y3Jw
Exposure of Sensitive Information in Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS14OXE0LXF3ZmgtOWdqcc4AAxJ-
Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:bitbucket-oauth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1yd2h4LTZoeDctcHFjOM4AA2As
SQL injection in jeecgboot
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-common
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: 8 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4NGMtajhxbS1nNDdy
The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password
Ecosystems: maven
Packages: org.apache.ranger:ranger
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS02cHFmLWM5OXAtNzU4ds4AA0KO
org.xwiki.commons:xwiki-commons-xml's HTML sanitizer allows form elements in restricted
Ecosystems: maven
Packages: org.xwiki.commons:xwiki-commons-xml
Source: GitHub Advisory Database
Blast Radius: 17.2
Published: 11 months ago
Critical
GSA_kwCzR0hTQS01cmY0LWYyNGMtaHB2aM4AAuZt
SQL injection in jflyfox jfinal
Ecosystems: maven
Packages: com.jflyfox:jflyfox_jfinal
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS03d2ZjLXg0ZjctZ2cyeM00Ig
Code injection in Apache Dubbo
Ecosystems: maven
Packages: org.apache.dubbo:dubbo
Source: GitHub Advisory Database
Blast Radius: 34.4
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS13cGN2LTVqZ3AtNjlmM84AA74R
Genie Path Traversal vulnerability via File Uploads
Ecosystems: maven
Packages: com.netflix.genie:genie-web
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 10 days ago
Critical
GSA_kwCzR0hTQS13djM5LWYzdngtM3Y2cc4AAuZ-
SQL injection in jflyfox jfinal
Ecosystems: maven
Packages: com.jflyfox:jflyfox_jfinal
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS14bTRoLTNqeHItbTNjNs4AA63r
XWiki Platform: Remote code execution through space title and Solr space facet
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-search-solr-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS02djczLWZnZjYtdzVqN8032w
Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression
Ecosystems: maven
Packages: org.springframework.cloud:spring-cloud-function-context
Source: GitHub Advisory Database
Blast Radius: 22.3
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1maHc4LThqNTUtdndncc4AAv49
Unsafe deserialization in Apache MINA SSHD
Ecosystems: maven
Packages: org.apache.sshd:sshd-core, org.apache.sshd:sshd-common
Source: GitHub Advisory Database
Blast Radius: 33.4
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS0zcDYyLTZmamgtM3A1aM4AA0KH
Keycloak vulnerable to cross-site scripting when validating URI-schemes on SAML and OIDC
Ecosystems: maven
Packages: org.keycloak:keycloak-services
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: 11 months ago
Critical
GSA_kwCzR0hTQS1oZjQzLTQ3cTQtZmhxNc4AA63z
XWiki Commons missing escaping of `{` in Velocity escapetool allows remote code execution
Ecosystems: maven
Packages: org.xwiki.commons:xwiki-commons-velocity
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS14cjZtLTJwNG0tanZxZs4AAu1d
XWiki Platform Wiki UI Main Wiki Eval Injection vulnerability
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-wiki-ui-mainwiki
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS02N3EzLWd3d3ctcG00Z84AAbLM
Apache OpenMeetings does not correctly validate uploaded XML documents
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1wdm05LTI4OGMtdjV3cc4AAdBO
Remote Code Execution in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS14M3dtLWhmZnItY2h3bc4AA8GB
Amazon JDBC Driver for Redshift SQL Injection via line comment generation
Ecosystems: maven
Packages: com.amazon.redshift:redshift-jdbc42
Source: GitHub Advisory Database
Blast Radius: 28.5
Published: 4 days ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4ZzYtMndoNy02NDM5
Apache Tika allows Java code execution for serialized objects embedded in MATLAB files
Ecosystems: maven
Packages: org.apache.tika:tika-core
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS00bWg4LTl3cTYtcmp4Z84AA00j
OpenAM vulnerable to user impersonation using SAMLv1.x SSO process
Ecosystems: maven
Packages: org.openidentityplatform.openam:openam-federation-library
Source: GitHub Advisory Database
Blast Radius: 7.1
Published: 10 months ago
Critical
GSA_kwCzR0hTQS1tNTRmLXJwNnItcnJybc4AAvG6
XXL-JOB contains a Command execution vulnerability in background tasks
Ecosystems: maven
Packages: com.xuxueli:xxl-job-core
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1jd3g5LXJwNHctNDU0Nc0muQ
Mingsoft MCMS vulnerable to Remote Code Execution via file upload.
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1mcHJyLXJybTgtNDUzNM4AAwuU
Apache Dubbo vulnerable to remote code execution via Telnet Handler
Ecosystems: maven
Packages: org.apache.dubbo:dubbo-parent
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS0zcXBtLWg5Y2gtcHgzY80gtg
Remote code injection, Improper Input Validation and Uncontrolled Recursion in Log4j library
Ecosystems: maven
Packages: org.powernukkit:powernukkit
Source: GitHub Advisory Database
Blast Radius: 12.6
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS03dmY0LXg1bTItcjZncs4AA7QP
OpenMetadata vulnerable to SpEL Injection in `PUT /api/v1/policies` (`GHSL-2023-252`)
Ecosystems: maven
Packages: org.open-metadata:openmetadata-service
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 26 days ago
Critical
GSA_kwCzR0hTQS1jdnZtLTRjcjktcjQzNs4AAqkD
Multiple vulnerabilities allow bypassing path filtering of agent-to-controller access control in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1tOWhyLTI1OWYtMnYyM84AAqj9
Multiple vulnerabilities allow bypassing path filtering of agent-to-controller access control in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS0zcTg0LXZydngtcmZ2Zs4AAqkF
Multiple vulnerabilities allow bypassing path filtering of agent-to-controller access control in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS13M3dyLWdtd2YtcjMzM84AA0cy
Apache InLong has Weak Password Requirements in Apache InLong
Ecosystems: maven
Packages: org.apache.inlong:manager-pojo
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: 11 months ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4OXgtOHF3OS05cHA2
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling)
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 5 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MmctMmg4aC0zNjJx
Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 5 years ago
Critical
GSA_kwCzR0hTQS1oNDc1LTd2M2MtMjZxN84AAzEg
Command injection in OpenTSDB
Ecosystems: maven
Packages: net.opentsdb:opentsdb
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: about 1 year ago
Statistics
Advisories: 18,774
Packages: 8,381
Repositories: 973
Ecosystems: 12
Filter by Severity
Moderate 8,161 High 6,452 Critical 2,849 Low 1,017
Filter by Ecosystem
maven 5,573 packagist 4,003 pypi 3,848 npm 3,557 go 1,935 nuget 1,421 rubygems 815 cargo 780 swift 31 hex 30 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 org.apache.tomcat.embed:tomcat-embed-core 36 com.thoughtworks.xstream:xstream 36 com.jfinal:jfinal 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.jenkins-ci.plugins:script-security 32 org.elasticsearch:elasticsearch 32 io.undertow:undertow-core 27 org.keycloak:keycloak-services 27 org.keycloak:keycloak-parent 25 org.apache.solr:solr-core 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.bouncycastle:bcprov-jdk14 22 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.bouncycastle:bcprov-jdk15 16 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 org.apache.struts.xwork:xwork-core 15 org.apache.jspwiki:jspwiki-main 15 org.apache.inlong:manager-pojo 14 org.xwiki.platform:xwiki-platform-web 14 org.apache.cxf:cxf 13 org.apache.hadoop:hadoop-main 13 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.apache.dolphinscheduler:dolphinscheduler 12 com.vaadin:flow-server 12 org.jenkins-ci.plugins:git 12 org.bouncycastle:bcprov-jdk15on 12 org.apache.camel:camel-core 11 org.jenkins-ci.plugins:email-ext 11 org.apache.cxf:cxf-core 11 org.apache.jspwiki:jspwiki-war 11 org.jeecgframework.boot:jeecg-boot-common 11 org.apache.ranger:ranger 11 org.apache.commons:commons-compress 11 org.apache.tika:tika-core 11 org.apache.james:james-server 11 org.apache.hadoop:hadoop-common 11 org.igniterealtime.openfire:parent 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.tomcat:tomcat-coyote 11 com.xuxueli:xxl-job 11 org.mortbay.jetty:jetty 11 org.xwiki.platform:xwiki-platform-administration-ui 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.jboss.netty:netty 10 io.netty:netty 10 org.apache.inlong:manager-service 10 org.apache.xmlgraphics:batik 9 org.springframework:spring-web 9 org.apache.archiva:archiva 9 org.apache.tapestry:tapestry-core 9 org.craftercms:crafter-studio 9 org.apache.hive:hive 9 cn.hutool:hutool-core 9 org.opennms:opennms 9 io.jenkins:configuration-as-code 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.bouncycastle:bcprov-jdk15to18 9 org.apache.tomcat:tomcat-catalina 9 org.apache.shiro:shiro-core 9 org.jenkins-ci.plugins:active-directory 9 org.jenkins-ci.plugins:config-file-provider 9 org.springframework:spring-webmvc 9 org.opencrx:opencrx-core-models 9 org.jenkins-ci.plugins:electricflow 9 org.apache.ambari:ambari 8 org.postgresql:postgresql 8 org.yaml:snakeyaml 8 org.apache.zeppelin:zeppelin 8 com.hazelcast:hazelcast 8 org.webjars.npm:jquery 8 org.apache.pdfbox:pdfbox 8 org.apache.hive:hive-exec 8 jquery-rails 8 jquery 8 org.graylog2:graylog2-server 8 org.apache.kylin:kylin 8 org.opencms:opencms-core 8 org.jenkins-ci.plugins:ec2 8 io.jenkins.blueocean:blueocean 8 org.apache.santuario:xmlsec 8 mysql:mysql-connector-java 8 org.apache.ozone:ozone-main 8 org.jenkins-ci.plugins:subversion 7 org.apache.hive:hive-service 7 io.jenkins.plugins:warnings-ng 7 org.jboss.resteasy:resteasy-client 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.activemq:activemq-parent 7 org.apache.tika:tika 7 org.apache.spark:spark-core_2.11 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.apache.cxf:apache-cxf 7 org.jenkins-ci.plugins:openshift-deployer 7 org.jeecgframework.boot:jeecg-boot-base 7 net.opentsdb:opentsdb 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.apache.inlong:manager-web 7 org.apache.logging.log4j:log4j-core 7 org.apache.karaf:apache-karaf 7 org.owasp.antisamy:antisamy 7 io.jenkins.plugins:miniorange-saml-sp 7 jQuery.UI.Combined 7 jQuery 7 org.webjars.npm:jquery-ui 7 jquery-ui-rails 7 jquery-ui 7 org.owasp.esapi:esapi 7 io.atomix:atomix 7 org.apache.derby:derby 7 org.apache.atlas:atlas-common 7 org.apache.poi:poi 7 org.jenkins-ci.plugins:mercurial 7 io.dataease:dataease-plugin-common 7 rubygems-update 7 org.jenkins-ci.plugins:rundeck 7 org.jruby:jruby-stdlib 7 org.apache.linkis:linkis 7 org.jenkins-ci.plugins:artifactory 7 com.xebialabs.deployit.ci:deployit-plugin 6 commons-fileupload:commons-fileupload 6 org.jenkins-ci.plugins:pipeline-maven 6 io.netty:netty-handler 6 org.apache.spark:spark-core_2.10 6 org.apache.axis:axis 6 axis:axis 6 org.apache.pulsar:pulsar-broker 6 hudson.plugins:project-inheritance 6 org.xwiki.commons:xwiki-commons-xml 6 com.jflyfox:jflyfox_jfinal 6 org.opencastproject:opencast-kernel 6 org.opensearch.plugin:opensearch-security 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.apache.syncope:syncope-core 6 org.apache.httpcomponents:httpclient 6 org.apache.storm:storm-core 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.apache.mesos:mesos 6 org.apache.solr:solr-parent 6 io.netty:netty-codec-http 6 org.apache.shenyu:shenyu-common 6 org.apache.struts:struts2-rest-plugin 6 org.jenkins-ci.plugins:repository-connector 6 org.bouncycastle:bcprov-jdk18on 6 org.csanchez.jenkins.plugins:kubernetes 6 tech.powerjob:powerjob 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.jenkins-ci.plugins:gitlab-oauth 6 cn.hutool:hutool-json 6 org.biouno:uno-choice 5 org.jenkins-ci.plugins:support-core 5 xerces:xercesImpl 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:junit 5 io.vertx:vertx-core 5 info.magnolia:magnolia-core 5 org.jenkins-ci.plugins:delphix 5 edu.stanford.nlp:stanford-corenlp 5 org.springframework.security.oauth:spring-security-oauth2 5 com.ruoyi:ruoyi 5 org.jenkins-ci.plugins:publish-over-ssh 5 com.vaadin:vaadin-server 5 org.springframework.amqp:spring-amqp 5 org.jenkins-ci.plugins:codedx 5 org.apache.kylin:kylin-server-base 5 org.jenkins-ci.plugins:openid 5 org.jboss.resteasy:resteasy-bom 5 struts:struts 5 com.coravy.hudson.plugins.github:github 5 com.alibaba:dubbo 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 log4j:log4j 5 org.xwiki.platform:xwiki-platform-flamingo-skin-resources 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.jenkins-ci.plugins:websphere-deployer 5 org.apache.hadoop:hadoop-client 5 org.neo4j.procedure:apoc 5 org.jenkins-ci.plugins:azure-ad 5 org.apache.druid:druid 5 org.jenkins-ci.plugins:credentials 5 com.google.protobuf:protobuf-java 5 org.jenkins-ci.plugins.m2release:m2release 5 org.jeecgframework.boot:jeecg-boot-base-core 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 33 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 26 https://github.com/eclipse/jetty.project 23 https://github.com/apache/nifi 21 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/netty/netty 20 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/bcgit/bc-java 19 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/geoserver/geoserver 15 https://github.com/apache/camel 15 https://github.com/undertow-io/undertow 13 https://github.com/xuxueli/xxl-job 13 https://github.com/dromara/hutool 13 https://github.com/quarkusio/quarkus 13 https://github.com/ming-soft/MCMS 13 https://github.com/apache/dolphinscheduler 12 https://github.com/apache/kylin 12 https://github.com/igniterealtime/Openfire 11 https://github.com/vaadin/flow 11 https://github.com/jenkinsci/git-plugin 10 https://github.com/apache/lucene-solr 9 https://github.com/spring-projects/spring-security 9 https://github.com/DSpace/DSpace 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/jquery/jquery 9 https://github.com/cui2shark/cms 9 https://github.com/xwiki/xwiki-commons 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/nahsra/antisamy 8 https://github.com/apache/zeppelin 8 https://github.com/opensearch-project/security 8 https://github.com/pgjdbc/pgjdbc 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/apache/xmlgraphics-batik 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/vaadin/framework 7 https://github.com/dataease/dataease 7 https://github.com/ratpack/ratpack 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/rubygems/rubygems 7 https://github.com/rundeck/rundeck 7 https://github.com/vert-x3/vertx-web 6 https://github.com/apache/tika 6 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/apache/hadoop 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/http4s/http4s 6 https://github.com/line/armeria 6 https://github.com/playframework/playframework 6 https://github.com/ls1intum/Ares 6 https://github.com/resteasy/resteasy 6 https://github.com/apache/pulsar 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/cui2shark/security 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/jquery/jquery-ui 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/protocolbuffers/protobuf 5 https://github.com/apache/openmeetings 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/apiman/apiman 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/PowerJob/PowerJob 5 https://github.com/h2database/h2database 5 https://github.com/apache/karaf 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/apache/geode 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/grails/grails-core 5 https://github.com/alibaba/nacos 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/apache/shiro 5 https://github.com/apache/shenyu 5 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/resteasy/Resteasy 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/skylot/jadx 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/yamcs/yamcs 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/alkacon/opencms-core 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/nightcloudos/new_cms 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/itext/itext7 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/ktorio/ktor 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/xerial/snappy-java 4 https://github.com/apache/syncope 4 https://github.com/jfinal/jfinal 4 https://github.com/infinispan/infinispan 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/apache/activemq-artemis 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/pippo-java/pippo 4 https://github.com/apache/solr 4 https://github.com/bcgit/bc-csharp 4 https://github.com/qos-ch/logback 3 https://github.com/google/guava 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/joniles/mpxj 3 https://github.com/orientechnologies/orientdb 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/Rabb1ter/cms 3 https://bitbucket.org/b_c/jose4j 3 https://github.com/apache/santuario-java 3 https://github.com/jenkinsci/ci-with-toad-edge-plugin 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/opengoofy/hippo4j 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/eclipse/lemminx 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/pf4j/pf4j 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/apache/storm 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/jooby-project/jooby 3 https://github.com/li-yu320/cms 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/apache/jackrabbit 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/jenkinsci/cvs-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/jhy/jsoup 3 https://github.com/apache/geronimo 3 https://github.com/apache/flume 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/aws/amazon-redshift-jdbc-driver 3 https://github.com/apache/dubbo 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/wildfly/wildfly-core 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/jeremylong/DependencyCheck 3 https://github.com/apache/derby 3 https://github.com/apache/commons-configuration 3 https://github.com/apache/cxf-fediz 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/cloudbees-jenkins-advisor-plugin 3