Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
High
GSA_kwCzR0hTQS1jNG1wLWgzbTItaDVtY84AAXQb
Jenkins CCM Plugin vulnerable to Improper Restriction of XML External Entity Reference
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:ccm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mZzJxLXY0MjgtMmdwaM4AAggA
Eclipse Vorto resolved Maven build artifacts for the Xtext project over HTTP instead of HTTPS
Ecosystems: maven
Packages: org.eclipse.vorto:org.eclipse.vorto.core
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1nM3ZxLWYzNXYtdmhnbc4AASbY
Apache OpenMeetings vulnerable to Uncontrolled Resource Consumption
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wdjRjLXJqNGgtZ3I5bc4AAi-1
Jenkins Alauda DevOps Pipeline Plugin vulnerable to cross-site request forgery
Ecosystems: maven
Packages: com.alauda.jenkins.plugins:alauda-devops-pipeline
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mNnZmLTQ2NXItaDQycM4AAV-o
Apache OpenMeetings allows remote attackers to read arbitrary files by attempting to upload a file
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0zMzVnLXhjamgtZ2hjMs4AAbLh
Apache OpenMeetings vulnerable to SQL injection
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oMjRwLXF3ZjQtODRxOM4AAbhV
Apache Hadoop's LinuxContainerExecutor runs docker commands as root with insufficient input validation
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-common
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13NXI2LWd4M3EtaG14as3weQ
springframework-social Cross-Site Request Forgery vulnerability
Ecosystems: maven
Packages: org.springframework.social:spring-social-core
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03N2hmLTIzcHEtMmc3Y84AArpn
Code injection in Apache NiFi and NiFi Registry
Ecosystems: maven
Packages: org.apache.nifi:nifi, org.apache.nifi.registry:nifi-registry-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qOTI3LTI2OXItOTZ4d84AAyf8
Jenkins Cppcheck Plugin vulnerable to stored cross-site scripting (XSS)
Ecosystems: maven
Packages: org.jenkins-ci.plugins:cppcheck
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS00d2ZoLTQ4djQtM3I4NM4AAv-f
Cross-site Scripting in Apache Hama
Ecosystems: maven
Packages: org.apache.hama:hama-core
Source: GitHub Advisory Database
Blast Radius: 10.7
Published: over 1 year ago
High
GSA_kwCzR0hTQS1oZmZ4LXIyODItdzJnOc4AAv3t
Path Traversal in Liferay Portal
Ecosystems: maven
Packages: com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: over 1 year ago
High
GSA_kwCzR0hTQS1nOGhwLXJjNjctamY5Ns4AAv3u
Path Traversal in Liferay Portal
Ecosystems: maven
Packages: com.liferay.portal:release.portal.bom
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: over 1 year ago
High
GSA_kwCzR0hTQS1jMzVoLXc4aGotbW01Nc4AA574
Apache Pulsar: Improper Authentication for Pulsar Proxy Statistics Endpoint
Ecosystems: maven
Packages: org.apache.pulsar:pulsar-proxy
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: about 2 months ago
High
GSA_kwCzR0hTQS04NTM4LTI1djQtMjVwZ84AAv5K
XXE vulnerability in Jenkins JAPEX Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:japex
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1NGYteGNtcC00M2Ny
Deserialization of Untrusted Data in Apache ShardingSphere
Ecosystems: maven
Packages: org.apache.shardingsphere:shardingsphere
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS14NW03LXJ3Zngtdzdxbc4AArmG
Remote Code Execution in Apache Flume
Ecosystems: maven
Packages: org.apache.flume.flume-ng-sources:flume-jms-source
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oeGo0LTg4NWYtZ3JncM4AAmJ-
Wildfly-OpenSSL memory leak flaw
Ecosystems: maven
Packages: org.wildfly.openssl:wildfly-openssl-natives-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02cmg1LTIzaHgtajQ1Ms3rtw
Improper Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04djVwLTJjcHYtYzJ4Ns1l6A
Apache Tomcat Source Code Disclosure
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1yODRwLTg4ZzItMnZ4Ms3l_Q
Apache Tomcat EncryptInterceptor error leads to Uncontrolled Resource Consumption
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01Z2c3LTV3djgtNGdjas4AARkT
Undertow Request Smuggling vulnerability
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1tcHB2LTc5Y2gtdnc2cc4AAz98
Apache Tomcat vulnerable to information leak
Ecosystems: maven
Packages: org.apache.tomcat:tomcat-coyote, org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: 11 months ago
High
GSA_kwCzR0hTQS0zdnYzLTU4NXEtd3Y2eM4AAXdO
Apache Guacamole Race Condition vulnerability
Ecosystems: maven
Packages: org.apache.guacamole:guacamole-common
Source: GitHub Advisory Database
Blast Radius: 14.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wNTQzLWpnNDMtOXBtNc1izg
Apache Tomcat may be started without proper security settings
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mNTUzLWoyZ3YtZzVyOc4AAT8o
Apache Solr Kerberos delegation token functionality flaws
Ecosystems: maven
Packages: org.apache.solr:solr-core
Source: GitHub Advisory Database
Blast Radius: 27.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05NW0yLXA5OGYtMjRyNc4AAXMV
Apache Geode unsafe deserialization of application objects
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yZ3c2LTczd2MteDg4Zs4AAbvJ
Apache Geode information disclosure vulnerability
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05ODk1LWc2eDUteHdjcM4AAwL0
Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
Ecosystems: maven
Packages: io.quarkus:quarkus-vertx-http
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1oMjJyLWg3N3ctMmc1Zs4AAXex
Apache Geode gfsh authorization vulnerability
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 18.2
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03anYtaHE3aC1tcTdj
Infinite Loop in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS1jZjJqLXZmMzYtYzZ3OM0WxA
Communities and collections administrators can escalate their privilege up to system administrator
Ecosystems: maven
Packages: org.dspace:dspace-api
Source: GitHub Advisory Database
Blast Radius: 18.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2ZnEtcTc5Mi1qNDZq
Improper Input Validation in Apache Unomi
Ecosystems: maven
Packages: org.apache.unomi:unomi
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS12anhjLWZydzQtam1oNc4AAjYW
Undertow vulnerable to Uncontrolled Resource Consumption
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jZ3JnLXgzNHItNzhmM83uBA
Cloud Foundry UAA password reset vulnerability
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1tcnY4LXBxZmotN2dwNc4AA7I1
Keycloak path traversal vulnerability in the redirect validation
Ecosystems: maven
Packages: org.keycloak:keycloak-services
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: 14 days ago
High
GSA_kwCzR0hTQS00cTJ2LWo2MzktY3A3cM4AAV9t
Improper Access Control in Apache Shiro
Ecosystems: maven
Packages: org.apache.shiro:shiro-web, org.apache.shiro:shiro-all
Source: GitHub Advisory Database
Blast Radius: 30.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12M2M5LXc2ZzItaGpnM84AAgdO
Cross-Site Request Forgery in XXL-Job
Ecosystems: maven
Packages: com.xuxueli:xxl-job
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13aDZ3LTY5eGMtNXJxNc4AAraK
Improper Check for Unusual or Exceptional Conditions in Elasticsearch
Ecosystems: maven
Packages: org.elasticsearch:elasticsearch
Source: GitHub Advisory Database
Blast Radius: 32.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wcDNjLWNmNmotbTNmZs4AArZm
Server-Side Request Forgery in Jodd HTTP
Ecosystems: maven
Packages: org.jodd:jodd-http
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wcmp2LWpqMjYtd2Y4aM4AATRB
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00cWdqLTltdmctMzkyOc4AAWri
Special top object can be used to access Struts' internals
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12NDl4LThodm0tcTM0N84AAUGo
Exposure of Sensitive Information in Apache Pluto
Ecosystems: maven
Packages: org.apache.portals.pluto:pluto-container
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wcjloLWc3cDctcnJxaM4AAXci
XML External Entity Reference in Jenkins FindBugs Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins.findbugs:library
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13cjdyLXZnM2MtNTRyNc4AASr6
Missing Encryption of Sensitive Data in Apache Guacamole
Ecosystems: maven
Packages: org.apache.guacamole:guacamole-common
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0zMnc5LTJxcGMtNWY5ds3qwg
Docker image code execution with Apache Mesos
Ecosystems: maven
Packages: org.apache.mesos:mesos
Source: GitHub Advisory Database
Blast Radius: 23.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oZ3E5LXE4ZzItM2ptZ84AAQKq
Command Injection in VIVO Vitro
Ecosystems: maven
Packages: org.vivoweb:vitro-project
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yajV3LWN3YzMtOGh4d84AAi-s
Improper Certificate Validation in Jenkins Spira Importer Plugin
Ecosystems: maven
Packages: com.inflectra.spiratest.plugins:inflectra-spira-integration
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05NXEzLXBwcHAtcjY4M84AAUUI
Crash when decoding malformed HTTP requests or malformed JSON payload
Ecosystems: maven
Packages: org.apache.mesos:mesos
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oZnJ4LTZxZ2otZnA2Y84AAxvU
Apache Commons FileUpload denial of service vulnerability
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-coyote, commons-fileupload:commons-fileupload
Source: GitHub Advisory Database
Blast Radius: 37.6
Published: about 1 year ago
High
GSA_kwCzR0hTQS1oOWgzLWp4NTgtNmhxcc4AAygE
Jenkins Mashup Portlets Plugin vulnerable to stored cross-site scripting
Ecosystems: maven
Packages: javagh.jenkins:mashup-portlets-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1xeDZoLTk1NjctNWZxd84AAXnF
Arbitrary file write in Apache Commons Fileupload
Ecosystems: maven
Packages: commons-fileupload:commons-fileupload
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03ajRoLTh3cGYtcnFmaM3mvw
Missing XML Validation in Apache Xerces2
Ecosystems: maven
Packages: xerces:xercesImpl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mOGg1LXYydmctNDZycs4AA6o6
quarkus-core leaks local environment variables from Quarkus namespace during application's build
Ecosystems: maven
Packages: io.quarkus:quarkus-core
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: 27 days ago
High
GSA_kwCzR0hTQS03ZnZqLWczd3AtMjlnOM4AAvcv
Jenkins Compuware Topaz for Total Test Plugin vulnerable to Protection Mechanism Failure
Ecosystems: maven
Packages: com.compuware.jenkins:compuware-topaz-for-total-test
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1mM2poLXF2bTQtbWczOc4AA6FU
Erroneous authentication pass in Spring Security
Ecosystems: maven
Packages: org.springframework.security:spring-security-core
Source: GitHub Advisory Database
Blast Radius: 38.1
Published: about 1 month ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4NDgtajR4NC1jcXcz
Path Traversal in Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-main
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 5 years ago
High
GSA_kwCzR0hTQS04eGpwLXJwMjktdjVqOM0igw
Agent-to-controller security bypass in Jenkins Debian Package Builder Plugin
Ecosystems: maven
Packages: ru.yandex.jenkins.plugins.debuilder:debian-package-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqcTgtamc3NS1ycXY2
Cleartext Transmission of Sensitive Information in Apache nifi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
High
GSA_kwCzR0hTQS12cDk4LXcycDMtbXYzNc4AAyBx
Apache Log4j 1.x (EOL) allows Denial of Service (DoS)
Ecosystems: maven
Packages: org.apache.logging.log4j:log4j-core
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: about 1 year ago
High
GSA_kwCzR0hTQS1yZjZxLXZ4NzktbWp4cs4AArMD
Undertow Uncontrolled Resource Consumption
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqbXctYzY5aC00MjZj
Cross-Site Request Forgery (CSRF) can run untrusted code on Rundeck server
Ecosystems: maven
Packages: org.rundeck:rundeck-core
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: over 2 years ago
High
GSA_kwCzR0hTQS14ZzV2LTY5NmgtYzN2cs4AAXVN
Cloud Foundry UAA SessionID present in Audit Event Logs
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wZ2pjLWdjN2ctcDJjNs3uCg
Cloud Foundry UAA Privilege Escalation
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yYzY1LXJxNjItZnFocc4AAgdB
Path traversal in Gitblit
Ecosystems: maven
Packages: com.gitblit:gitblit
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05cjNoLXdtM3gtdjI0Nc4AAlOm
RCE vulnerability in ElasticBox Jenkins Kubernetes CI/CD Plugin
Ecosystems: maven
Packages: com.elasticbox.jenkins-ci.plugins:kubernetes-ci
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yd3J4LXgyaHctOWg1d84AAyMH
Apache Sling Resource Merger has Excessive Iteration vulnerability
Ecosystems: maven
Packages: org.apache.sling:org.apache.sling.resourcemerger
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: about 1 year ago
High
GSA_kwCzR0hTQS1mcGdmLXBqanYtMnFnbc4AAvIi
matrix-android-sdk2 vulnerable to Olm/Megolm protocol confusion
Ecosystems: maven
Packages: org.matrix.android:matrix-android-sdk2
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS05cmhjLXZqanAtZ2Njd84AAl8n
Stored XSS vulnerability in Locked Files Report Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:locked-files-report
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oNHFnLXA3cjItY3BnM84AAvAC
Apache Batik vulnerable to Server-Side Request Forgery
Ecosystems: maven
Packages: org.apache.xmlgraphics:batik
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS13ZjdnLTdoNmgtNjc4ds4AAvAX
Keycloak SAML javascript protocol mapper: Uploading of scripts through admin console
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qNjVmLW12Z3ctcHJwMs4AAXDX
Deserialization of Untrusted Data in Apache OpenJPA
Ecosystems: maven
Packages: org.apache.openjpa:openjpa
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12NjQ2LXJ4NnctcjNxcc4AAQQX
Improper Access Control in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat-catalina
Source: GitHub Advisory Database
Blast Radius: 30.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00M3YyLTZncnAtOXBwOc4AAWOM
Apache Tomcat does not enforce the maxHttpHeaderSize limit
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1ncnI0LXd2MzgtZjY4d84AAwSU
Jettison Out-of-bounds Write vulnerability
Ecosystems: maven
Packages: org.codehaus.jettison:jettison
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 1 year ago
High
GSA_kwCzR0hTQS02bWdwLXA3NXItdmhqbc4AA7O6
Apache HugeGraph-Server: Bypass whitelist in Auth mode
Ecosystems: maven
Packages: org.apache.hugegraph:hugegraph-api
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 days ago
High
GSA_kwCzR0hTQS03N3g0LTU1cTctNHZtas4AA7O1
Apache HugeGraph-Hubble: SSRF in Hubble connection page
Ecosystems: maven
Packages: org.apache.hugegraph:hugegraph-hubble
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 9 days ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNqeDctMzk5eC1wMnJq
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in micronaut-core
Ecosystems: maven
Packages: io.micronaut:micronaut-http-server-netty
Source: GitHub Advisory Database
Blast Radius: 23.5
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1wcTY3LTlqZjktaGMzY84AA03-
JDBC URL bypassing by allowLoadLocalInfileInPath param
Ecosystems: maven
Packages: org.apache.inlong:manager-pojo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 9 months ago
High
GSA_kwCzR0hTQS02am1tLW1wNnctNHJyZ81BKg
OutOfMemory Exception by specifically crafted processing instruction in NekoHtml Parser
Ecosystems: maven
Packages: net.sourceforge.htmlunit:neko-htmlunit
Source: GitHub Advisory Database
Blast Radius: 14.9
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2cnEtNmgzNC12aDdx
Cached redirect poisoning via X-Forwarded-Host header
Ecosystems: maven
Packages: io.ratpack:ratpack-core
Source: GitHub Advisory Database
Blast Radius: 16.5
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1mcGg5LWY1cjYtdmhxZs4AAuz2
Eclipse Milo vulnerable to Resource Exhaustion (Denial of Service)
Ecosystems: maven
Packages: org.eclipse.milo:sdk-server
Source: GitHub Advisory Database
Blast Radius: 14.3
Published: over 1 year ago
High
GSA_kwCzR0hTQS04bTVoLWhycW0tcHhtMs1BTQ
Path traversal in the OWASP Enterprise Security API
Ecosystems: maven
Packages: org.owasp.esapi:esapi
Source: GitHub Advisory Database
Blast Radius: 23.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS01eDVxLThjZ20tMmhqcc4AAyfX
Karate has vulnerable dependency on json-smart package (CVE-2023-1370)
Ecosystems: maven
Packages: com.intuit.karate:karate-core
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: about 1 year ago
High
GSA_kwCzR0hTQS1mbXE3LWdoOHYtbWp2Y84AAuw1
WildFly vulnerable to Insecure Default Initialization of Resource
Ecosystems: maven
Packages: org.wildfly.bom:wildfly
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS0zNnhyLTR4MmYtY2ZqOc4AA5ZD
Deserialization of Untrusted Data in Apache Camel SQL
Ecosystems: maven
Packages: org.apache.camel:camel-sql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqeDgtdjRodi1neDNo
XXE vulnerability in Launch import
Ecosystems: maven
Packages: com.epam.reportportal:service-api
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1tNDNwLTU1cmYtOGMyas4AA5ZF
Deserialization of Untrusted Data in Apache Camel CassandraQL
Ecosystems: maven
Packages: org.apache.camel:camel-cassandraql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
High
GSA_kwCzR0hTQS13N3I2LXY0ajctaDk0d84AAygm
Apache James server's JMX management service vulnerable to privilege escalation by local user
Ecosystems: maven
Packages: org.apache.james:javax-mail-extension
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: about 1 year ago
High
GSA_kwCzR0hTQS1mZjJ3LXdtNDgtamhxas4AA5Yj
Arbitrary File Read Vulnerability in Apache Dolphinscheduler
Ecosystems: maven
Packages: org.apache.dolphinscheduler:dolphinscheduler
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
High
GSA_kwCzR0hTQS13M3c2LTI2ZjItcDQ3NM4AA5YR
Broken Access Control in Spring Security With Direct Use of isFullyAuthenticated
Ecosystems: maven
Packages: org.springframework.security:spring-security-core
Source: GitHub Advisory Database
Blast Radius: 34.4
Published: 2 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdxNGgtcGo3OC1qN3Zn
Authorization service vulnerable to DDos attacks in Apache CFX
Ecosystems: maven
Packages: org.apache.cxf:apache-cxf, org.apache.cxf:cxf
Source: GitHub Advisory Database
Blast Radius: 15.5
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1nOTRwLWgyNjMtYzI2cc0_uA
Cross Site Request Forgery in Mingsoft MCMS
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS01OGNoLWMyamYtNWcyM84AAygG
Jenkins remote-jobs-view-plugin vulnerable to XML external entity attacks
Ecosystems: maven
Packages: com.sap.jenkinsci:remote-jobs-view-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5Z2otcnFydy14NGZx
Server Side Request Forgery in Apache Axis
Ecosystems: maven
Packages: axis:axis, org.apache.axis:axis
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: almost 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdoZ2otM3hxci02amZt
Jetty vulnerable to exposure of sensitive information to unauthenticated remote users
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 5 years ago
High
GSA_kwCzR0hTQS1jNDM4LTZmNnItcGc4d84AAuA3
4thline cling uPnP protocol issue can lead to denial of service
Ecosystems: maven
Packages: org.fourthline.cling:cling-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS01amM4LTh4aHYtZzhxbc4AAZ9l
Improper Input Validation in XFire
Ecosystems: maven
Packages: org.codehaus.xfire:xfire-core
Source: GitHub Advisory Database
Blast Radius: 16.5
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yamd3LTI4cWgtNm1nOM4AAyuZ
Jenkins Quay.io trigger Plugin Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:quayio-trigger
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS03cXc0LTlyNjgtMnJteM4AA5Em
mingSoft MCMS File Upload vulnerability
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 3 months ago
Statistics
Advisories: 18,303
Packages: 8,274
Repositories: 969
Ecosystems: 12
Filter by Severity
Moderate 7,900 High 6,336 Critical 2,800 Low 980
Filter by Ecosystem
maven 5,520 packagist 3,783 pypi 3,691 npm 3,534 go 1,889 nuget 1,390 rubygems 814 cargo 775 swift 31 hex 29 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 org.apache.tomcat.embed:tomcat-embed-core 37 com.jfinal:jfinal 36 com.thoughtworks.xstream:xstream 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.elasticsearch:elasticsearch 32 org.jenkins-ci.plugins:script-security 30 io.undertow:undertow-core 27 org.keycloak:keycloak-services 27 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 org.springframework.security:spring-security-core 23 org.eclipse.jetty:jetty-server 23 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 org.bouncycastle:bcprov-jdk14 18 com.vaadin:vaadin-bom 18 com.liferay.portal:release.dxp.bom 18 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.apache.activemq:activemq-client 16 org.apache.dubbo:dubbo 16 org.bouncycastle:bcprov-jdk15 16 org.apache.struts.xwork:xwork-core 15 org.apache.jspwiki:jspwiki-main 15 org.xwiki.platform:xwiki-platform-web 14 org.apache.hadoop:hadoop-main 13 org.apache.inlong:manager-pojo 13 org.apache.cxf:cxf 13 com.vaadin:flow-server 12 org.apache.dolphinscheduler:dolphinscheduler 12 org.jenkins-ci.plugins:git 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.apache.tika:tika-core 11 com.xuxueli:xxl-job 11 org.apache.jspwiki:jspwiki-war 11 org.apache.commons:commons-compress 11 org.jeecgframework.boot:jeecg-boot-common 11 org.apache.camel:camel-core 11 org.igniterealtime.openfire:parent 11 org.jenkins-ci.plugins:email-ext 11 org.mortbay.jetty:jetty 11 org.apache.james:james-server 11 org.apache.hadoop:hadoop-common 11 org.apache.cxf:cxf-core 11 org.apache.ranger:ranger 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.tomcat:tomcat-coyote 11 org.jboss.netty:netty 10 io.netty:netty 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.apache.inlong:manager-service 10 org.apache.archiva:archiva 9 org.apache.tapestry:tapestry-core 9 org.craftercms:crafter-studio 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.opennms:opennms 9 org.springframework:spring-web 9 org.apache.xmlgraphics:batik 9 jquery 9 jquery-rails 9 org.jenkins-ci.plugins:active-directory 9 org.opencrx:opencrx-core-models 9 org.bouncycastle:bcprov-jdk15on 9 org.apache.shiro:shiro-core 9 io.jenkins:configuration-as-code 9 org.jenkins-ci.plugins:config-file-provider 9 org.apache.tomcat:tomcat-catalina 9 org.jenkins-ci.plugins:electricflow 9 org.webjars.npm:jquery 9 org.apache.hive:hive 9 org.springframework:spring-webmvc 9 cn.hutool:hutool-core 9 io.jenkins.blueocean:blueocean 8 jQuery 8 org.apache.santuario:xmlsec 8 org.apache.hive:hive-exec 8 org.apache.zeppelin:zeppelin 8 com.hazelcast:hazelcast 8 org.postgresql:postgresql 8 mysql:mysql-connector-java 8 org.yaml:snakeyaml 8 org.apache.pdfbox:pdfbox 8 org.apache.kylin:kylin 8 org.apache.ozone:ozone-main 8 org.jenkins-ci.plugins:ec2 8 org.opencms:opencms-core 8 org.graylog2:graylog2-server 8 org.apache.ambari:ambari 8 org.jenkins-ci.plugins:artifactory 7 jquery-ui 7 jquery-ui-rails 7 org.webjars.npm:jquery-ui 7 org.apache.tika:tika 7 jQuery.UI.Combined 7 org.jenkins-ci.plugins:mercurial 7 io.jenkins.plugins:miniorange-saml-sp 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.owasp.antisamy:antisamy 7 net.opentsdb:opentsdb 7 org.jenkins-ci.plugins:openshift-deployer 7 io.dataease:dataease-plugin-common 7 io.jenkins.plugins:warnings-ng 7 org.jenkins-ci.plugins:rundeck 7 org.apache.hive:hive-service 7 org.apache.atlas:atlas-common 7 org.apache.linkis:linkis 7 org.apache.spark:spark-core_2.11 7 rubygems-update 7 org.jruby:jruby-stdlib 7 io.atomix:atomix 7 org.apache.inlong:manager-web 7 org.apache.activemq:activemq-parent 7 org.jboss.resteasy:resteasy-client 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.owasp.esapi:esapi 7 org.jenkins-ci.plugins:subversion 7 org.apache.cxf:apache-cxf 7 org.jeecgframework.boot:jeecg-boot-base 7 org.apache.karaf:apache-karaf 7 org.apache.derby:derby 7 org.apache.logging.log4j:log4j-core 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.poi:poi 7 commons-fileupload:commons-fileupload 6 org.csanchez.jenkins.plugins:kubernetes 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.apache.pulsar:pulsar-broker 6 io.netty:netty-handler 6 org.apache.solr:solr-parent 6 org.apache.mesos:mesos 6 org.jenkins-ci.plugins:azure-vm-agents 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.apache.httpcomponents:httpclient 6 org.jenkins-ci.plugins:gitlab-oauth 6 tech.powerjob:powerjob 6 org.opensearch.plugin:opensearch-security 6 io.netty:netty-codec-http 6 cn.hutool:hutool-json 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.apache.storm:storm-core 6 org.apache.spark:spark-core_2.10 6 org.jenkins-ci.plugins:repository-connector 6 org.jenkins-ci.plugins:pipeline-maven 6 com.jflyfox:jflyfox_jfinal 6 org.opencastproject:opencast-kernel 6 org.apache.struts:struts2-rest-plugin 6 org.xwiki.commons:xwiki-commons-xml 6 axis:axis 6 org.apache.axis:axis 6 org.apache.shenyu:shenyu-common 6 org.apache.syncope:syncope-core 6 hudson.plugins:project-inheritance 6 org.jenkins-ci.plugins:matrix-project 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:delphix 5 org.apache.kylin:kylin-server-base 5 org.jenkins-ci.plugins:junit 5 org.jenkins-ci.plugins:support-core 5 com.mabl.integration.jenkins:mabl-integration 5 org.apache.ignite:ignite-core 5 org.apache.zookeeper:zookeeper 5 info.magnolia:magnolia-core 5 org.jenkins-ci.plugins:codedx 5 org.jenkins-ci.plugins:google-compute-engine 5 org.infinispan:infinispan-core 5 com.nimbusds:nimbus-jose-jwt 5 org.dspace:dspace-jspui 5 org.wildfly:wildfly-parent 5 org.codehaus.jettison:jettison 5 org.apache.druid:druid 5 org.jenkins-ci.plugins:ghprb 5 org.apache.zeppelin:zeppelin-server 5 com.google.protobuf:protobuf-java 5 com.ruoyi:ruoyi 5 org.jeecgframework.boot:jeecg-boot-base-core 5 org.neo4j.procedure:apoc 5 org.jboss.resteasy:resteasy-bom 5 org.apache.hadoop:hadoop-client 5 org.apache.inlong:manager-dao 5 org.jenkins-ci.plugins:fortify 5 org.jenkins-ci.plugins:credentials 5 org.jenkins-ci.plugins:websphere-deployer 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 log4j:log4j 5 org.opennms:opennms-webapp 5 org.jenkins-ci.plugins:google-login 5 com.datapipe.jenkins.plugins:hashicorp-vault-plugin 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 32 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 25 https://github.com/eclipse/jetty.project 23 https://github.com/apache/nifi 21 https://github.com/netty/netty 20 https://github.com/OpenNMS/opennms 20 https://github.com/jenkinsci/script-security-plugin 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/cloudfoundry/uaa 19 https://github.com/apache/cxf 19 https://github.com/bcgit/bc-java 18 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/apache/camel 15 https://github.com/geoserver/geoserver 15 https://github.com/ming-soft/MCMS 13 https://github.com/xuxueli/xxl-job 13 https://github.com/undertow-io/undertow 13 https://github.com/quarkusio/quarkus 13 https://github.com/apache/dolphinscheduler 12 https://github.com/apache/kylin 12 https://github.com/dromara/hutool 12 https://github.com/igniterealtime/Openfire 11 https://github.com/vaadin/flow 11 https://github.com/jenkinsci/git-plugin 10 https://github.com/jquery/jquery 10 https://github.com/Graylog2/graylog2-server 9 https://github.com/DSpace/DSpace 9 https://github.com/spring-projects/spring-security 9 https://github.com/cui2shark/cms 9 https://github.com/apache/lucene-solr 9 https://github.com/nahsra/antisamy 8 https://github.com/apache/zeppelin 8 https://github.com/opensearch-project/security 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/xwiki/xwiki-commons 8 https://github.com/apache/xmlgraphics-batik 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/vaadin/framework 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/rubygems/rubygems 7 https://github.com/rundeck/rundeck 7 https://github.com/dataease/dataease 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/pgjdbc/pgjdbc 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/ratpack/ratpack 7 https://github.com/resteasy/resteasy 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/apache/hadoop 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/vert-x3/vertx-web 6 https://github.com/http4s/http4s 6 https://github.com/apache/pulsar 6 https://github.com/line/armeria 6 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/ls1intum/Ares 6 https://github.com/OpenRefine/OpenRefine 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/jquery/jquery-ui 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/apache/tika 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/cui2shark/security 6 https://github.com/playframework/playframework 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/apache/shiro 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/apache/shenyu 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/apache/karaf 5 https://github.com/h2database/h2database 5 https://github.com/apiman/apiman 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/alibaba/nacos 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/apache/openmeetings 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/grails/grails-core 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/PowerJob/PowerJob 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/protocolbuffers/protobuf 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/apache/geode 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/infinispan/infinispan 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/skylot/jadx 4 https://github.com/itext/itext7 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/apache/solr 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/resteasy/Resteasy 4 https://github.com/ktorio/ktor 4 https://github.com/pippo-java/pippo 4 https://github.com/jfinal/jfinal 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/nightcloudos/new_cms 4 https://github.com/apache/httpcomponents-client 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/apache/activemq-artemis 4 https://github.com/apache/syncope 4 https://github.com/xerial/snappy-java 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/yamcs/yamcs 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/alkacon/opencms-core 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/google/guava 3 https://github.com/apache/santuario-java 3 https://github.com/pf4j/pf4j 3 https://github.com/Rabb1ter/cms 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/opengoofy/hippo4j 3 https://github.com/orientechnologies/orientdb 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/qos-ch/logback 3 https://github.com/jenkinsci/mailer-plugin 3 https://github.com/apache/ranger 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/mbechler/marshalsec 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/eclipse/lemminx 3 https://github.com/apache/storm 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/apache/commons-configuration 3 https://github.com/wildfly/wildfly-core 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/jhy/jsoup 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/jenkinsci/cvs-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/javamelody/javamelody 3 https://github.com/jenkinsci/compuware-topaz-for-total-test-plugin 3 https://svn.apache.org/viewvc/tomcat/tc7.0.x 3 https://github.com/xwiki/xwiki-rendering 3 https://github.com/jenkinsci/code-coverage-api-plugin 3 https://github.com/ysuzhangbin/cms 3 https://github.com/jenkinsci/cloudbees-jenkins-advisor-plugin 3 https://github.com/jenkinsci/ci-with-toad-edge-plugin 3 https://github.com/joniles/mpxj 3 https://github.com/jooby-project/jooby 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/rhuss/jolokia 3 https://github.com/jenkinsci/mac-plugin 3 https://github.com/jenkinsci/lucene-search-plugin 3 https://github.com/matrix-org/matrix-android-sdk2 3 https://github.com/jenkinsci/liquibase-runner-plugin 3 https://github.com/jenkinsci/kubernetes-plugin 3 https://github.com/apache/olingo-odata4 3 https://github.com/grpc/grpc 3