Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
High
GSA_kwCzR0hTQS1xcDRmLTJ3NjctYzhod84AAjcR
Inbound TCP Agent Protocol/3 authentication bypass in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03OWg4LTc3MzUtdjNmOc4AAl8o
System command execution vulnerability in Selection tasks Jenkins Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:selection-tasks-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xcTM4LW14cHEtcnJwas4AAlYT
Improper authorization of users and groups with the same base name in Jenkins GitLab Authentication Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:gitlab-oauth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jZnZ3LTg0dnEtNDNteM4AAlX_
Stored XSS vulnerability in Jenkins Deployer Framework Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:deployer-framework
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13cDM1LTZqcXYtcjMzbc4AAUrX
Apache XML-RPC XXE Vulnerability
Ecosystems: maven
Packages: org.apache.xmlrpc:xmlrpc
Source: GitHub Advisory Database
Blast Radius: 10.5
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yd3FyLW03MnEtdjZjbc4AAvib
Untrusted code execution in Apache XML Graphics Batik
Ecosystems: maven
Packages: org.apache.xmlgraphics:batik
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS0yYzg0LTM1cnYtNnEzZs4AAl8j
Stored XSS vulnerability in ClearCase Release Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:clearcase-release
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yMjZoLXFyZzQtODIzNs4AAl8y
Stored XSS vulnerability in chosen-views-tabbar Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:chosen-views-tabbar
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03dnA1LXhmNXEtZnhqcc4AAl8i
Stored XSS vulnerability in Radiator View Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:radiatorviewplugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yaHJ2LTY0NWgtZmpmaM4AA2Jb
Apache Avro Java SDK vulnerable to Improper Input Validation
Ecosystems: pypi, maven
Packages: avro, org.apache.avro:avro
Source: GitHub Advisory Database
Blast Radius: 54.2
Published: 8 months ago
High
GSA_kwCzR0hTQS1mNm1nLWhtZnAtNmdyd84AAl8p
Stored XSS vulnerability in Coverage/Complexity Scatter Plot Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:covcomplplot
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13cndxLTRmMmgtcXhqOM4AAl8g
Stored XSS vulnerability in Custom Job Icon Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:custom-job-icon
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qcTg0LTZmbW0tNnF2Ns4AAl85
OS command execution vulnerability in Perfecto Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:perfecto
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yOXZ2LXhqNHctZzhtOM3zOw
Apache ActiveMQ Artemis RCE Via Deserialization Gadget Chain
Ecosystems: maven
Packages: org.apache.activemq:artemis-pom
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mdndoLXd2NDMtOHFqNc4AAl8d
Stored XSS vulnerability in Validating String Parameter Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:validating-string-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1ocTJoLTltYzMtaDZ3Ms4AAl8v
Stored XSS vulnerability in Pipeline Maven Integration Plugin via unescaped display name
Ecosystems: maven
Packages: org.jenkins-ci.plugins:pipeline-maven
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05aGNyLTY2Y2otcjlocM4AAlx8
Stored XSS vulnerability in Jenkins Valgrind Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:valgrind
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1nNnBoLXg1d2YtZzMzN84AA2Cg
plexus-codehaus vulnerable to directory traversal
Ecosystems: maven
Packages: org.codehaus.plexus:plexus-utils
Source: GitHub Advisory Database
Blast Radius: 31.0
Published: 8 months ago
High
GSA_kwCzR0hTQS12NjJqLWN4aGgtZnEyMs4AAuu3
graphql-java vulnerable to Denial of Service via GraphQL query that consumes CPU resources
Ecosystems: maven
Packages: com.graphql-java:graphql-java
Source: GitHub Advisory Database
Blast Radius: 24.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS04cHJjLTU4ajQtbTU1cc4AAiYU
Keycloak Unauthenticated Access
Ecosystems: maven
Packages: org.keycloak:keycloak-model-jpa, org.keycloak:keycloak-model-infinispan
Source: GitHub Advisory Database
Blast Radius: 16.4
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1odmNyLTkyN3ctcWN2cc4AAvdF
Stored XSS vulnerability in Jenkins Contrast Continuous Application Security Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:contrast-continuous-application-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1xdmhmLTM1NjctcGM0ds4AAjxn
Sandbox bypass vulnerability in Script Security Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wNXg1LWpnM2otMmpjas4AAjyZ
OS command injection in CryptoMove Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:cryptomove
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jMzI5LXI4NzQteGM3as4AAjx6
Remote Code Execution vulnerability in Jenkins Literate Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:literate
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qcjZoLXI3dmctZjltY84AAvQ1
org.ini4j allows attackers to cause a Denial of Service (DoS)
Ecosystems: maven
Packages: org.ini4j:ini4j
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS1nam1xLXg1eDctd2MzNs4AAu1g
XWiki Platform vulnerable to Cross-site Scripting in the deleted attachments list
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-index-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS01NHc2LXZ4ZmgtZnc3Zs4AAwyX
Http4s improperly parses User-Agent and Server headers
Ecosystems: maven
Packages: org.http4s:http4s-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qbWo2LXAyajktNjhjcM4AAw90
Wildfly-elytron possibly vulnerable to timing attacks via use of unsafe comparator
Ecosystems: maven
Packages: org.wildfly.security:wildfly-elytron
Source: GitHub Advisory Database
Blast Radius: 18.9
Published: over 1 year ago
High
GSA_kwCzR0hTQS05Zzk4LTVtajYtZjltds4AAx6j
Keycloak vulnerable to user impersonation via stolen UUID code
Ecosystems: maven
Packages: org.keycloak:keycloak-services
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: about 1 year ago
High
GSA_kwCzR0hTQS03MjNwLTlyY2oteHY4as4AAjkq
RCE vulnerability in RadarGun Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:radargun
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13Zjc2LXFncXEtZ2Nmas4AAjkJ
RCE vulnerability in Google Kubernetes Engine Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:google-kubernetes-engine
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05dmpwLXY3NmYtZzM2M80Vrw
SnappyFrameDecoder doesn't restrict chunk length any may buffer skippable chunks in an unnecessary way
Ecosystems: maven
Packages: io.netty:netty, org.jboss.netty:netty, io.netty:netty-codec
Source: GitHub Advisory Database
Blast Radius: 31.2
Published: over 2 years ago
High
GSA_kwCzR0hTQS1xaHhmLW03am0tamM1N84AAjkN
CSRF vulnerability in Pipeline GitHub Notify Step Plugin allows capturing credentials
Ecosystems: maven
Packages: org.jenkins-ci.plugins:pipeline-githubnotify-step
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01eGg3LTZ2M3gtdnJoas4AAjxw
XXE vulnerability in Rundeck Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:rundeck
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xN3d4LW1oeDQtanI4cc4AAQz8
Apache Wicket Sensitive Data Exposure
Ecosystems: maven
Packages: org.apache.wicket:wicket-core
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1ycjY2LXFoNW0tdzZteM4AA1xf
hutool Buffer Overflow vulnerability
Ecosystems: maven
Packages: cn.hutool:hutool-json, cn.hutool:hutool-core
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: 8 months ago
High
GSA_kwCzR0hTQS1weDJmLWNxcmYtZjJxZ84AAxJO
CSRF vulnerability in Jenkins TestQuality Updater Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:testquality-updater
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS01eGhoLTZ4ZnYtN3E0Ms4AAxJi
Cross-site request forgery vulnerability in Jenkins BearyChat Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:bearychat
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS05andoLXF2ZzctZ3I1Oc4AAxJ0
CSRF vulnerability in Jenkins Orka Plugin allow capturing credentials
Ecosystems: maven
Packages: io.jenkins.plugins:macstadium-orka
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tNnE4LW13ZjYtNm1tY84AAxJU
CSRF vulnerability in Jenkins GitHub Pull Request Builder Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:ghprb
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1yd2h3LTZjNnItMjgyM84AAxZ3
Insecure Permissions issue in jeecg-boot
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-base
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1ycjkzLTdjNngtOHY0ds4AAxpg
Cross-Site Request Forgery in Jenkins Azure Credentials Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:azure-credentials
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS03Z20zLW13anctajUzd84AAzbz
Command injection in nevado-jms
Ecosystems: maven
Packages: org.skyscreamer:nevado-jms
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: 12 months ago
High
GSA_kwCzR0hTQS1qcDVyLTR4OXEtNHZjZs4AA1QM
xuxueli xxl-job Cross-Site Request Forgery Vulnerability
Ecosystems: maven
Packages: com.xuxueli:xxl-job
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: 9 months ago
High
GSA_kwCzR0hTQS1mMzZwLTQyanYtOHJoMs4AAvIj
Lithium vulnerable to Cross Site Scripting in provided Swagger-UI
Ecosystems: maven
Packages: com.wire.bots:lithium, com.wire:lithium
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qaGptLTV4amctbXBxcM4AAyNm
Xuxueli xxl-job allows attacker to obtain sensitive information via the pageList parameter
Ecosystems: maven
Packages: com.xuxueli:xxl-job
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 1 year ago
High
GSA_kwCzR0hTQS0zMmZxLW0ycTUtaDgzZ84AAx7W
XWiki-Platform vulnerable to stored Cross-site Scripting via the HTML displayer in Live Data
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-livedata-macro
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1jMjRmLTJqM2ctcmc0OM4AAyMi
kaml has potential denial of service while parsing input with anchors and aliases
Ecosystems: maven
Packages: com.charleskorn.kaml:kaml
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: about 1 year ago
High
GSA_kwCzR0hTQS02ODJnLWM5OXYtOXIyZ84AAhnb
Jenkins Gitlab Authentication Plugin vulnerable to Session Fixation
Ecosystems: maven
Packages: org.jenkins-ci.plugins:gitlab-oauth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02anhwLTdnNzQtMnJjM83QHQ
Improper input validation in Mort Bay Jetty
Ecosystems: maven
Packages: org.mortbay.jetty:jetty
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1oZjloLXZ2NG0tMmYzM84AAyCn
Incorrect Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS13bTdoLTkyNzUtNDZ2Ms4AAgbn
Crash in HeaderParser in dicer
Ecosystems: maven, npm
Packages: org.webjars.npm:dicer, dicer
Source: GitHub Advisory Database
Blast Radius: 42.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1odjQ4LWhncDYteHBxZs4AA1Vw
Jenkins Flaky Test Handler Plugin stored cross-site scripting vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:flaky-test-handler
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 months ago
High
GSA_kwCzR0hTQS0zNG01LTc5NnAtbWpjcM4AAyde
Apache UIMA DUCC allows remote code execution
Ecosystems: maven
Packages: org.apache.uima:uima-ducc-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS00Z3JjLXE0ZmotNDVwOM4AAyIL
Improper Input Validation In Eclipse BIRT
Ecosystems: maven
Packages: org.eclipse.birt:org.eclipse.birt.report.viewer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyNmotM2pwOS1ydzY1
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
High
GSA_kwCzR0hTQS13NGc2LTh4cXAtZzkybc4AAyf9
Jenkins Phabricator Differential Plugin vulnerable to XML external entity (XXE) attacks
Ecosystems: maven
Packages: org.jenkins-ci.plugins:phabricator-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1jcHA4LXI4cHItd3Y0ds4AAYM8
Apache Storm log viewer path traversal vulnerability
Ecosystems: maven
Packages: org.apache.storm:storm
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03YzQ0LW01ODktMzZ3N84AAyf_
Jenkins Convert To Pipeline Plugin vulnerable to command injection
Ecosystems: maven
Packages: org.jenkins-ci.plugins:convert-to-pipeline
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS12ZjhnLW1wbXctcXY4N82A_A
Apache Struts vulnerable to Improper Input Validation
Ecosystems: maven
Packages: struts:struts
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: about 2 years ago
High
GSA_kwCzR0hTQS12amo0LXF3Y20tNTUyaM4AAv31
Inefficient Regular Expression Complexity in Liferay Portal
Ecosystems: maven
Packages: com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: over 1 year ago
High
GSA_kwCzR0hTQS1xNzJwLTR3NTYtaHg3aM4AAtkq
Hardcoded JWT Token in Lin CMS Spring Boot
Ecosystems: maven
Packages: io.github.talelin:lin-cms-core
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0ycHZqLXA0ODUtY3Azbc4AAvIh
matrix-android-sdk2 vulnerable to impersonation via forwarded Megolm sessions
Ecosystems: maven
Packages: org.matrix.android:matrix-android-sdk2
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS00OGc5LWg3ZzUtOHB3Ms4AAygU
Jenkins Convert To Pipeline Plugin vulnerable to cross-site request forgery
Ecosystems: maven
Packages: org.jenkins-ci.plugins:convert-to-pipeline
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS02dmdoLTlyM2MtMmN4cM4AAyu8
Improper Neutralization of Script-Related HTML Tags (XSS) in the LiveTable Macro
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-web-standard, org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates, org.xwiki.platform:xwiki-platform-flamingo, org.xwiki.platform:xwiki-platform-flamingo-skin, org.xwiki.platform:xwiki-platform-flamingo-skin-resources
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1jeGdmLXYycDgtN3BoN84AAvIg
NuProcess vulnerable to command-line injection through insertion of NUL character(s)
Ecosystems: maven
Packages: com.zaxxer:nuprocess
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS14MjdtLTl3OGotNXZjd84AAu50
Jettison memory exhaustion
Ecosystems: maven
Packages: org.codehaus.jettison:jettison
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qZ3BtLTI4NjItcTVtOM33nQ
Jenkins Script Security Plugin sandbox bypass vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13aGY4LTNoNTgtMnc5Zs4AAQ7k
Jenkins Warnings Next Generation Plugin cross-site request forgery vulnerability
Ecosystems: maven
Packages: io.jenkins.plugins:warnings-ng
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00dnFwLXBjbTMtNzN4cM4AA1Vs
Jenkins Folders Plugin cross-site request forgery vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:cloudbees-folder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 months ago
High
GSA_kwCzR0hTQS1xY3dxLTU1aHgtdjN2aM4AAz4D
snappy-java's unchecked chunk length leads to DoS
Ecosystems: maven
Packages: org.xerial.snappy:snappy-java
Source: GitHub Advisory Database
Blast Radius: 30.0
Published: 11 months ago
High
GSA_kwCzR0hTQS1neDY5LTZjcDQtaHhyas38Wg
RubyGems Link Following vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00NDNtLTNmcjYtdzh3as4AA1Xk
PowerJob incorrect access control vulnerability
Ecosystems: maven
Packages: tech.powerjob:powerjob
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 months ago
High
GSA_kwCzR0hTQS1obW03LTZwaDktOGpmMs4AAyuz
org.xwiki.platform:xwiki-platform-livedata-macro vulnerable to Basic Cross-site Scripting
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-livedata-macro
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS12cm13LTJ4aHEtaHJtcM4AAlGm
Wildfly Unsafe Deserialization Vulnerability
Ecosystems: maven
Packages: org.wildfly:wildfly-parent
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00ZjhnLWZxNngtanFycs4AAyun
org.xwiki.platform:xwiki-platform-oldcore vulnerable to data leak through deleted documents
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1wMnZtLTg4cmctd2ZyMs4AAmuR
XML injection in Crafter CMS
Ecosystems: maven
Packages: org.craftercms:crafter-core
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wNjdxLWg4OHYtNWpncs4AAy54
XWiki Platform vulnerable to code injection from account/view through VFS Tree macro
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-vfs-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS0zaGpnLWNnaHYtMjJ3d84AAy52
org.xwiki.platform:xwiki-platform-attachment-ui vulnerable to Code Injection
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-attachment-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1tM2MzLTlxajctN3hteM4AAy50
Exposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-office-viewer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1wcHd2LW12cWctcTg5aM4AAgZD
Cross-site Scripting in Jenkins Autocomplete Parameter Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:autocomplete-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yd3Z2LXBoaHctcXZtY84AAzWz
Jenkins Pipeline: Job Plugin vulnerable to stored Cross-site Scripting
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-job
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 months ago
High
GSA_kwCzR0hTQS14dzZqLW1xNnYtcG12Ns4AAzWs
Jenkins SAML Single Sign On(SSO) Plugin Cross-Site Request Forgery vulnerability
Ecosystems: maven
Packages: io.jenkins.plugins:miniorange-saml-sp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 months ago
High
GSA_kwCzR0hTQS1jajlqLXY4anAtNmhtOc4AAgZY
Cross-site Scripting in Jenkins Autocomplete Parameter Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:autocomplete-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14eHEyLTc0aHctdmc2bc4AAzXH
Jenkins WSO2 Oauth Plugin Session Fixation vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:wso2id-oauth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 months ago
High
GSA_kwCzR0hTQS0zeGY5LXBnYzItbXI5Y84AAzW5
Jenkins SAML Single Sign On(SSO) Plugin missing permission checks
Ecosystems: maven
Packages: io.jenkins.plugins:miniorange-saml-sp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 months ago
High
GSA_kwCzR0hTQS00NmYyLXg2aDIteDloeM4AAzXJ
Jenkins File Parameter Plugin arbitrary file write vulnerability
Ecosystems: maven
Packages: io.jenkins.plugins:file-parameters
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 months ago
High
GSA_kwCzR0hTQS1nNGg2LXFwNDQtd3F2eM4AAu8R
XWiki.WebHome vulnerable to Improper Privilege Management in XWiki resolving groups
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1oM2NoLTVwcDItdmg2d84AATI3
Improper socket reuse in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13bXh4LTJwdnIteDdqNs4AAz2n
Jenkins Sonargraph Integration Plugin vulnerable to Stored Cross-site Scripting
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sonargraph-integration
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
High
GSA_kwCzR0hTQS05OGZwLXIyMmctd3BqN84AAz2W
Jenkins CSRF protection bypass vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
High
GSA_kwCzR0hTQS04ZzljLWM5Y20tOWM1Ns4AAz9q
XWiki Platform may show email addresses in clear in REST results
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-rest-server
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
High
GSA_kwCzR0hTQS02N2ZqLTZ3Nm0tdzVqOM4AArNF
Reversible One-Way Hash in io.github.javaezlib:JavaEZ
Ecosystems: maven
Packages: io.github.javaezlib:JavaEZ
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oN2N3LTQ0dnAtanE3aM4AAz9y
XWiki Platform vulnerable to privilege escalation (PR) from account through TipsPanel
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-help-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
High
GSA_kwCzR0hTQS1waHdtLTg3cmctMjdxcc4AAz_u
XWiki Platform vulnerable to reflected cross-site scripting via delattachment action
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 11 months ago
High
GSA_kwCzR0hTQS1tam1qLWo0OHEtOXdnMs4AAwRm
SnakeYaml Constructor Deserialization Remote Code Execution
Ecosystems: maven
Packages: org.yaml:snakeyaml
Source: GitHub Advisory Database
Blast Radius: 36.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS0zcjI4LXJncDktcWd2NM4AA1ih
pf4j vulnerable to remote code execution via the zippluginPath parameter
Ecosystems: maven
Packages: org.pf4j:pf4j
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: 9 months ago
High
GSA_kwCzR0hTQS1jajh3LXY1ODgtcDh3eM4AA1ib
pf4j vulnerable to remote code execution via expandIfZip method in the extract function
Ecosystems: maven
Packages: org.pf4j:pf4j
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: 9 months ago
High
GSA_kwCzR0hTQS1ydm04LWoyY3AtajU5Ms4AA1iZ
pf4j vulnerable to remote code execution via loadpluginPath parameter
Ecosystems: maven
Packages: org.pf4j:pf4j
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: 9 months ago
High
GSA_kwCzR0hTQS13ZjhtLXFyNDcteGM5bc4AA0Uy
Jenkins AbsInt a³ Plugin XML External Entity Reference vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:absint-a3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 10 months ago
Statistics
Advisories: 18,440
Packages: 8,316
Repositories: 972
Ecosystems: 12
Filter by Severity
Moderate 7,964 High 6,379 Critical 2,816 Low 990
Filter by Ecosystem
maven 5,537 packagist 3,820 pypi 3,750 npm 3,551 go 1,904 nuget 1,391 rubygems 814 cargo 779 swift 31 hex 30 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 com.thoughtworks.xstream:xstream 36 org.apache.tomcat.embed:tomcat-embed-core 36 com.jfinal:jfinal 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.jenkins-ci.plugins:script-security 32 org.elasticsearch:elasticsearch 32 org.keycloak:keycloak-services 27 io.undertow:undertow-core 27 org.keycloak:keycloak-parent 25 org.apache.solr:solr-core 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 org.bouncycastle:bcprov-jdk14 19 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.apache.dubbo:dubbo 16 org.bouncycastle:bcprov-jdk15 16 org.apache.activemq:activemq-client 16 org.apache.struts.xwork:xwork-core 15 org.apache.jspwiki:jspwiki-main 15 org.apache.inlong:manager-pojo 14 org.xwiki.platform:xwiki-platform-web 14 org.apache.hadoop:hadoop-main 13 org.apache.cxf:cxf 13 org.apache.dolphinscheduler:dolphinscheduler 12 com.vaadin:flow-server 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.jenkins-ci.plugins:git 12 org.apache.cxf:cxf-core 11 org.apache.hadoop:hadoop-common 11 org.igniterealtime.openfire:parent 11 org.jenkins-ci.plugins:email-ext 11 org.apache.camel:camel-core 11 org.jeecgframework.boot:jeecg-boot-common 11 org.mortbay.jetty:jetty 11 org.apache.commons:commons-compress 11 org.apache.ranger:ranger 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.tomcat:tomcat-coyote 11 org.apache.jspwiki:jspwiki-war 11 com.xuxueli:xxl-job 11 org.apache.james:james-server 11 org.apache.tika:tika-core 11 io.netty:netty 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.jboss.netty:netty 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.apache.inlong:manager-service 10 org.apache.shiro:shiro-core 9 io.jenkins:configuration-as-code 9 org.apache.tapestry:tapestry-core 9 org.opencrx:opencrx-core-models 9 org.opennms:opennms 9 org.craftercms:crafter-studio 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.jenkins-ci.plugins:active-directory 9 org.apache.archiva:archiva 9 cn.hutool:hutool-core 9 org.apache.xmlgraphics:batik 9 org.springframework:spring-web 9 org.jenkins-ci.plugins:electricflow 9 org.apache.hive:hive 9 org.apache.tomcat:tomcat-catalina 9 org.jenkins-ci.plugins:config-file-provider 9 org.springframework:spring-webmvc 9 org.bouncycastle:bcprov-jdk15on 9 jquery 9 jquery-rails 9 org.webjars.npm:jquery 9 io.jenkins.blueocean:blueocean 8 org.apache.zeppelin:zeppelin 8 org.opencms:opencms-core 8 org.graylog2:graylog2-server 8 jQuery 8 org.apache.santuario:xmlsec 8 org.yaml:snakeyaml 8 org.postgresql:postgresql 8 com.hazelcast:hazelcast 8 mysql:mysql-connector-java 8 org.jenkins-ci.plugins:ec2 8 org.apache.hive:hive-exec 8 org.apache.ozone:ozone-main 8 org.apache.kylin:kylin 8 org.apache.pdfbox:pdfbox 8 org.apache.ambari:ambari 8 org.apache.derby:derby 7 org.apache.activemq:activemq-parent 7 org.jeecgframework.boot:jeecg-boot-base 7 org.apache.tika:tika 7 org.owasp.esapi:esapi 7 org.apache.inlong:manager-web 7 io.dataease:dataease-plugin-common 7 org.jboss.resteasy:resteasy-client 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.apache.spark:spark-core_2.11 7 org.jruby:jruby-stdlib 7 org.apache.cxf:apache-cxf 7 org.jenkins-ci.plugins:rundeck 7 org.jenkins-ci.plugins:mercurial 7 org.apache.atlas:atlas-common 7 rubygems-update 7 org.jenkins-ci.plugins:subversion 7 org.apache.karaf:apache-karaf 7 org.apache.logging.log4j:log4j-core 7 org.jenkins-ci.plugins:jobConfigHistory 7 io.atomix:atomix 7 net.opentsdb:opentsdb 7 org.owasp.antisamy:antisamy 7 io.jenkins.plugins:miniorange-saml-sp 7 org.jenkins-ci.plugins:openshift-deployer 7 org.apache.poi:poi 7 org.apache.linkis:linkis 7 jQuery.UI.Combined 7 org.jenkins-ci.plugins:artifactory 7 jquery-ui 7 jquery-ui-rails 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.hive:hive-service 7 io.jenkins.plugins:warnings-ng 7 org.webjars.npm:jquery-ui 7 org.apache.struts:struts2-rest-plugin 6 org.csanchez.jenkins.plugins:kubernetes 6 org.apache.shenyu:shenyu-common 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.opensearch.plugin:opensearch-security 6 io.netty:netty-handler 6 org.opencastproject:opencast-kernel 6 com.jflyfox:jflyfox_jfinal 6 org.xwiki.commons:xwiki-commons-xml 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.apache.pulsar:pulsar-broker 6 hudson.plugins:project-inheritance 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.apache.spark:spark-core_2.10 6 org.jenkins-ci.plugins:repository-connector 6 axis:axis 6 io.netty:netty-codec-http 6 org.apache.axis:axis 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.apache.storm:storm-core 6 org.apache.httpcomponents:httpclient 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.apache.mesos:mesos 6 org.bouncycastle:bcprov-jdk15to18 6 org.apache.syncope:syncope-core 6 org.jenkins-ci.plugins:pipeline-maven 6 cn.hutool:hutool-json 6 tech.powerjob:powerjob 6 org.jenkins-ci.plugins:gitlab-oauth 6 commons-fileupload:commons-fileupload 6 org.apache.solr:solr-parent 6 org.jenkins-ci.plugins:openid 5 org.jenkins-ci.plugins:mailer 5 org.jenkins-ci.plugins:websphere-deployer 5 org.springframework.amqp:spring-amqp 5 org.opennms:opennms-webapp 5 com.google.protobuf:protobuf-java 5 info.magnolia:magnolia-core 5 org.jenkins-ci.plugins:junit 5 com.nimbusds:nimbus-jose-jwt 5 edu.stanford.nlp:stanford-corenlp 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:htmlpublisher 5 com.alibaba:dubbo 5 org.jenkins-ci.plugins:ghprb 5 org.apache.struts:struts-core 5 org.xwiki.platform:xwiki-platform-flamingo-skin-resources 5 org.jenkins-ci.plugins:gitlab-plugin 5 org.apache.inlong:manager-dao 5 org.jenkins-ci.plugins.m2release:m2release 5 org.jenkins-ci.plugins:extended-choice-parameter 5 com.datapipe.jenkins.plugins:hashicorp-vault-plugin 5 org.igniterealtime.openfire:xmppserver 5 org.bouncycastle:bcprov-ext-jdk15on 5 org.jenkins-ci.plugins:publish-over-ssh 5 com.synopsys.jenkinsci:ownership 5 org.jenkins-ci.plugins:fortify 5 com.ruoyi:ruoyi 5 log4j:log4j 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 org.jenkins-ci.plugins:credentials 5 com.coravy.hudson.plugins.github:github 5 io.vertx:vertx-web 5 struts:struts 5 org.jenkinsci.plugins:octoperf 5 org.jenkins-ci.plugins:sinatra-chef-builder 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 33 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 26 https://github.com/eclipse/jetty.project 23 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/apache/nifi 21 https://github.com/netty/netty 20 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/bcgit/bc-java 19 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/geoserver/geoserver 15 https://github.com/apache/camel 15 https://github.com/ming-soft/MCMS 13 https://github.com/quarkusio/quarkus 13 https://github.com/undertow-io/undertow 13 https://github.com/xuxueli/xxl-job 13 https://github.com/apache/dolphinscheduler 12 https://github.com/dromara/hutool 12 https://github.com/apache/kylin 12 https://github.com/igniterealtime/Openfire 11 https://github.com/vaadin/flow 11 https://github.com/jenkinsci/git-plugin 10 https://github.com/jquery/jquery 10 https://github.com/apache/lucene-solr 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/DSpace/DSpace 9 https://github.com/cui2shark/cms 9 https://github.com/spring-projects/spring-security 9 https://github.com/opensearch-project/security 8 https://github.com/xwiki/xwiki-commons 8 https://github.com/nahsra/antisamy 8 https://github.com/hazelcast/hazelcast 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/apache/zeppelin 8 https://github.com/apache/xmlgraphics-batik 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/ratpack/ratpack 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/rubygems/rubygems 7 https://github.com/rundeck/rundeck 7 https://github.com/dataease/dataease 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/pgjdbc/pgjdbc 7 https://github.com/vaadin/framework 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/vert-x3/vertx-web 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/apache/hadoop 6 https://github.com/apache/tika 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/playframework/playframework 6 https://github.com/jquery/jquery-ui 6 https://github.com/apache/pulsar 6 https://github.com/resteasy/resteasy 6 https://github.com/ls1intum/Ares 6 https://github.com/ESAPI/esapi-java-legacy 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/line/armeria 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/http4s/http4s 6 https://github.com/cui2shark/security 6 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/apache/karaf 5 https://github.com/grails/grails-core 5 https://github.com/protocolbuffers/protobuf 5 https://github.com/apache/shiro 5 https://github.com/PowerJob/PowerJob 5 https://github.com/apache/shenyu 5 https://github.com/alibaba/nacos 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/h2database/h2database 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/apache/openmeetings 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/apiman/apiman 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/restlet/restlet-framework-java 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/apache/geode 5 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/itext/itext7 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/pippo-java/pippo 4 https://github.com/resteasy/Resteasy 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/skylot/jadx 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/jfinal/jfinal 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/nightcloudos/new_cms 4 https://github.com/xerial/snappy-java 4 https://github.com/infinispan/infinispan 4 https://github.com/apache/activemq-artemis 4 https://github.com/ktorio/ktor 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/yamcs/yamcs 4 https://github.com/alkacon/opencms-core 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/apache/syncope 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/apache/solr 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/apache/santuario-java 3 https://github.com/matrix-org/matrix-android-sdk2 3 https://github.com/apache/storm 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/opengoofy/hippo4j 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/orientechnologies/orientdb 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/Rabb1ter/cms 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/mbechler/marshalsec 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/qos-ch/logback 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/jenkinsci/hashicorp-vault-plugin 3 https://github.com/pf4j/pf4j 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/li-yu320/cms 3 https://github.com/joniles/mpxj 3 https://github.com/jooby-project/jooby 3 https://github.com/jenkinsci/kubernetes-plugin 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/jenkinsci/ci-with-toad-edge-plugin 3 https://github.com/eclipse/lemminx 3 https://github.com/jenkinsci/cloudbees-jenkins-advisor-plugin 3 https://github.com/wildfly/wildfly-core 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/jenkinsci/code-coverage-api-plugin 3 https://github.com/apache/commons-configuration 3 https://github.com/apache/cxf-fediz 3 https://github.com/apache/derby 3 https://github.com/apache/dubbo 3 https://github.com/apache/flume 3 https://github.com/apache/geronimo 3 https://github.com/jenkinsci/compuware-topaz-for-total-test-plugin 3 https://github.com/jenkinsci/lucene-search-plugin 3 https://bitbucket.org/b_c/jose4j 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/liquibase-runner-plugin 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/ysuzhangbin/cms 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/eclipse-vertx/vert.x 3