Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
High
GSA_kwCzR0hTQS1yaHFqLTRwcDgtdnZnZs4AAUCH
Injection in Jolokia agent
Ecosystems: maven
Packages: org.jolokia:jolokia-core
Source: GitHub Advisory Database
Blast Radius: 31.4
Published: about 2 years ago
High
GSA_kwCzR0hTQS00anJ2LXBwcDQtam01N83X4A
Deserialization of Untrusted Data in Gson
Ecosystems: maven
Packages: com.google.code.gson:gson
Source: GitHub Advisory Database
Blast Radius: 42.1
Published: about 2 years ago
High
GSA_kwCzR0hTQS1jbWdtLXE4aGYtcDdqY84AAkKs
XXE vulnerability in Jenkins Code Coverage API Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:code-coverage-api
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12andjLTVoZmgtMnZ2Nc4AATTs
Use of a Broken or Risky Cryptographic Algorithm in Apache WSS4J
Ecosystems: maven
Packages: org.apache.wss4j:wss4j-ws-security-dom, org.apache.ws.security:wss4j
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: about 2 years ago
High
GSA_kwCzR0hTQS1majY0LXFwcngtcTd2cc4AAz21
genson vulnerable to stack exhaustion
Ecosystems: maven
Packages: com.owlike:genson
Source: GitHub Advisory Database
Blast Radius: 22.1
Published: 11 months ago
High
GSA_kwCzR0hTQS03NW0zLWY0aHItMnZoOc4AAz2i
jjson vulnerable to stack exhaustion
Ecosystems: maven
Packages: de.grobmeier.json:jjson
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: 11 months ago
High
GSA_kwCzR0hTQS1jNThjLXc1MjctaDc3cM0rbA
Deserialization of untrusted data in Apache Cayenne
Ecosystems: maven
Packages: org.apache.cayenne:cayenne-server
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: over 2 years ago
High
GSA_kwCzR0hTQS02NWhwLTR2eHItYzM1Ns0rJg
Arbitrary code execution in Magnolia CMS
Ecosystems: maven
Packages: info.magnolia:magnolia-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1jY3A1LWdnNTgtcHhmbc4AAl6h
Improper Preservation of Permissions in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTUycmctaHB3cS1xcDU2
Allocation of Resources Without Limits or Throttling in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtajItN3d4OC1xajR2
Server-side request forgery (SSRF) in Apache XmlGraphics Commons
Ecosystems: maven
Packages: org.apache.xmlgraphics:xmlgraphics-commons
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: over 2 years ago
High
GSA_kwCzR0hTQS02ODd4LTI2OW0tN2N2Oc4AAXcy
XXE vulnerability in Jenkins PMD Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:pmd
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS1qYzY5LWhqdzItZm04Ns4AAvS6
com.amazon.redshift:redshift-jdbc42 vulnerable to remote command execution
Ecosystems: maven
Packages: com.amazon.redshift:redshift-jdbc42
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qcThjLWo0N2MtdnZ3bc4AAvAR
Apache SOAP's RPCRouterServlet allows reading of arbitrary files over HTTP
Ecosystems: maven
Packages: soap:soap
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ0Y3ctcDJobS1ncGY2
Disabled Hostname Verification in Opencast
Ecosystems: maven
Packages: org.opencastproject:opencast-kernel
Source: GitHub Advisory Database
Blast Radius: 7.4
Published: over 3 years ago
High
GSA_kwCzR0hTQS14N3A5LXZ4NnYtd3Y4NM4AAhnz
Jenkins Simple Travis Pipeline Runner Plugin script sandbox bypass vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:simple-travis-runner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwcDMtNzdqNi04cGg2
Missing Authentication for Critical Function in Apache NiFi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS01NXdwLTNwcTQtdzhwOc4AA1-L
Jenkins temporary plugin file created with insecure permissions
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 8 months ago
High
GSA_kwCzR0hTQS1mdmgzLTR2NXItY3Z2Y82qRw
Improper Authentication in Mortbay Jetty
Ecosystems: maven
Packages: org.mortbay.jetty:jetty
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1jZmdwLTI5NzctMmZtbc4AA0N9
Connection confusion in gRPC
Ecosystems: rubygems, pypi, maven
Packages: grpc, grpcio, io.grpc:grpc-protobuf
Source: GitHub Advisory Database
Blast Radius: 88.5
Published: 11 months ago
High
GSA_kwCzR0hTQS13cWdwLXZwaHctaHBoZs0Wbg
Security issues in AWS KMS and AWS Encryption SDKs: in-band protocol negotiation and robustness
Ecosystems: pypi, maven
Packages: aws-encryption-sdk, com.amazonaws:aws-encryption-sdk-java
Source: GitHub Advisory Database
Blast Radius: 29.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS1jZzI0LWpqcjUtcnhtZs4AA6Hh
Path traversal in flaskcode Devan-Kerman ARRP
Ecosystems: maven
Packages: net.devtech:arrp
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 months ago
High
GSA_kwCzR0hTQS03Zjg4LTVoaHgtNjdtMs4AA6PK
XNIO denial of service vulnerability
Ecosystems: maven
Packages: org.jboss.xnio:xnio-api
Source: GitHub Advisory Database
Blast Radius: 22.9
Published: about 2 months ago
High
GSA_kwCzR0hTQS13N2NnLTU5NjktNjc4d84AAWoK
Apache Tomcat allows remote attackers to bypass a CSRF protection mechanism by using a token
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: about 2 years ago
High
GSA_kwCzR0hTQS1najVtLW04OGotdjdjM84AA7fS
Apache ActiveMQ's default configuration doesn't secure the API web context
Ecosystems: maven
Packages: org.apache.activemq:apache-activemq
Source: GitHub Advisory Database
Blast Radius: 12.0
Published: 13 days ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2d2YtNTRxcC00cjZ2
SnakeYAML Entity Expansion during load operation
Ecosystems: maven
Packages: org.yaml:snakeyaml
Source: GitHub Advisory Database
Blast Radius: 33.1
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1tZzVoLWYzcTgtYzk2Z84AAzTU
Apache OpenMeetings vulnerable to remote code execution via null-bye injection
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1wZjk0LTZ2MnYtY20zas4AAqel
Exposure of Resource to Wrong Sphere in Spring Cloud OpenFeign
Ecosystems: maven
Packages: org.springframework.cloud:spring-cloud-openfeign-core
Source: GitHub Advisory Database
Blast Radius: 22.5
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBmZnctcDJxNS13NnZo
Improper Limitation of a Pathname ('Path Traversal') in org.apache.jspwiki:jspwiki-war
Ecosystems: maven
Packages: org.apache.jspwiki:jspwiki-war
Source: GitHub Advisory Database
Blast Radius: 10.1
Published: about 5 years ago
High
GSA_kwCzR0hTQS1yZ2d2LWN2N3ItbXc5OM4AA5gs
Connection leaking on idle timeout when TCP congested
Ecosystems: maven
Packages: org.eclipse.jetty.http3:jetty-http3-common, org.eclipse.jetty.http2:jetty-http2-common, org.eclipse.jetty.http3:http3-common, org.eclipse.jetty.http2:http2-common
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: 3 months ago
High
GSA_kwCzR0hTQS02aGM5LWNmOHgtaGY4M84AA2O5
Quarkus OIDC can leak both ID and access tokens
Ecosystems: maven
Packages: io.quarkus:quarkus-oidc
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: 7 months ago
High
GSA_kwCzR0hTQS0ydzRoLWY0NHctOTY4Zs4AApV5
Improper Privilege Management in Neo4j Graph Database
Ecosystems: maven
Packages: org.neo4j:neo4j-kernel
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwY20tNDQ4NS02OXA3
Sensitive information disclosure via log in com.bmuschko:gradle-vagrant-plugin
Ecosystems: maven
Packages: com.bmuschko:gradle-vagrant-plugin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
High
GSA_kwCzR0hTQS1xd2h3LWhoOWotNTRmNc4AA7PI
Ant Media Server vulnerable to a local privilege escalation
Ecosystems: maven
Packages: io.antmedia:ant-media-server
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: 23 days ago
High
GSA_kwCzR0hTQS14aGo3LWpyNDUtNXc4cs4AASbR
Apache OpenMeetings updates user password in insecure manner
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1tOXAyLWo0aGctZzM3M84AA0cX
Apache Cassandra: Privilege escalation when enabling FQL/Audit logs
Ecosystems: maven
Packages: org.apache.cassandra:cassandra-all
Source: GitHub Advisory Database
Blast Radius: 29.6
Published: 10 months ago
High
GSA_kwCzR0hTQS01cTY2LXY1M3EtcG0zNc4AA11p
Keycloak vulnerable to Plaintext Storage of User Password
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 26.9
Published: 8 months ago
High
GSA_kwCzR0hTQS1ocHJmLXJyd3Etam01Y84AArtM
Rundeck's Key Storage converter plugin mechanism's encryption layer not working in 4.2.0, 4.2.1, 4.3.0
Ecosystems: maven
Packages: org.rundeck:rundeck
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0zMjRoLTJ2N2gtcTN4eM4AAkZs
RCE vulnerability in Jenkins Yaml Axis Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:yaml-axis
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00anE5LTJ4aHctanB4N84AA3K3
Java: DoS Vulnerability in JSON-JAVA
Ecosystems: maven
Packages: org.json:json
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 6 months ago
High
GSA_kwCzR0hTQS05NGpoLWozNzQtOXIzas4AA3NK
Apache Hadoop allows local user to gain root privileges
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-yarn-project
Source: GitHub Advisory Database
Blast Radius: 9.0
Published: 6 months ago
High
GSA_kwCzR0hTQS0zOGozLTZmbTgtcGZnY84AArmF
Regular expression denial of service in Delight Nashorn Sandbox
Ecosystems: maven
Packages: org.javadelight:delight-nashorn-sandbox
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xNHEyLTkzcHctcXdnZs3t2g
Issuer validation regression in Spring Cloud SSO Connector
Ecosystems: maven
Packages: io.pivotal.spring.cloud:spring-cloud-sso-connector
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS12NTg1LTIzaGMtYzY0N80WqA
Unsafe Deserialization in jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: over 2 years ago
High
GSA_kwCzR0hTQS1wNjJxLTU0ODMtaDU3ds4AA3MZ
Quarkus does not properly sanitize artifacts created from its use of the Gradle plugin, allowing certain build system information to remain
Ecosystems: maven
Packages: io.quarkus:quarkus-project
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 6 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzY3ctZzRtcS1jNXgy
Code Injection in jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: over 2 years ago
High
GSA_kwCzR0hTQS1mNmptLTlwcjgtOWMzd84AA3zA
Multiple WSO2 products vulnerable to perform user impersonatoin using JIT provisioning
Ecosystems: maven
Packages: org.wso2.identity.apps:authentication-portal, org.wso2.carbon.identity.framework:org.wso2.carbon.identity.application.authentication.framework
Source: GitHub Advisory Database
Blast Radius: 13.5
Published: 5 months ago
High
GSA_kwCzR0hTQS05ZjNqLXBtNmYtOWZtNc0nLg
Race condition in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 18.5
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmNnItM3dnYy1oODYz
Polymorphic deserialization of malicious object in jackson-databind
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 40.4
Published: about 4 years ago
High
GSA_kwCzR0hTQS0yeHZ4LXJ3OXAteGdmY84AAgY0
Sandbox bypass vulnerability through implicitly allowlisted platform Groovy files in Jenkins Pipeline: Groovy Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yOThyLTVjNDgtN3Eycs4AAv6C
Jenkins JUnit Plugin subject to Cross-site Scripting via URL conversion
Ecosystems: maven
Packages: org.jenkins-ci.plugins:junit
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS12eG1oLXA1MmotaDMzbc4AAxJ5
Session fixation vulnerability in Jenkins OpenId Connect Authentication Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:oic-auth
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS02NXY2LTNjOW0taG1ycM4AAxK2
Arbitrary file write in net.mingsoft:ms-mcms
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS12NjNnLXYzMzktMjY3M84AA7fm
Jenkins Script Security Plugin has sandbox bypass vulnerability involving crafted constructor bodies
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 13 days ago
High
GSA_kwCzR0hTQS1qaGZ2LTg5MzYtZzY1Ms4AAs86
Cross-site Scripting in Jenkins Hidden Parameter Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:hidden-parameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05Nmp2LWM3bTYtcTQzZ84AAxJs
Cross-site request forgery vulnerability in Jenkins OpenID Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:openid
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS02NWgyLXdmN20tcTJ2OM4AA2EK
Undertow vulnerable to denial of service
Ecosystems: maven
Packages: io.undertow:undertow-parent
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: 8 months ago
High
GSA_kwCzR0hTQS1mOTc2LTI0aGMtbWp2cs4AAxJw
Session fixation vulnerability in Jenkins OpenID Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:openid
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4Y3ItMnBoNS1mcnI5
Apache Struts REST Plugin can potentially allow a DoS attack
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: over 5 years ago
High
GSA_kwCzR0hTQS14ajI5LWdmd3ctajY3Z84AAygB
Jenkins JaCoCo Plugin vulnerable to Stored Cross-site Scripting
Ecosystems: maven
Packages: org.jenkins-ci.plugins:jacoco
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1xcm04LWN3NzMtcjl3OM4AAkZx
RCE vulnerability in Jenkins AWS SAM Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:aws-sam
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03cXd2LWN3Z2otYzhyas2A-Q
Improper Input Validation in Apache Struts
Ecosystems: maven
Packages: struts:struts
Source: GitHub Advisory Database
Blast Radius: 20.5
Published: about 2 years ago
High
GSA_kwCzR0hTQS1tNG1tLXBnOTMtZnY3OM4AA13k
Undertow denial of service vulnerability
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: 8 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4NHctcmN2Mi02eDh4
Arbitrary code execution in Apache ServiceComb java-chassis
Ecosystems: maven
Packages: org.apache.servicecomb:java-chassis
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1qcHhqLXZncTUtcHJqY80ilQ
OS command execution vulnerability in Jenkins Docker Commons Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:docker-commons
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS01OTV4LWhoNmMtaGZ2OM4AArPv
SQL injection in jflyfox jfinal
Ecosystems: maven
Packages: com.jflyfox:jflyfox_jfinal
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yNDYzLTcyNjUtaDhyNM4AAtEV
Jenkins Matrix Reloaded Plugin vulnerable to Stored XSS
Ecosystems: maven
Packages: net.praqma:matrix-reloaded
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1tOXZqLTQ0ZjMtNzh4d84AArSw
Path traversal in CureKit
Ecosystems: maven
Packages: io.whitesource:curekit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05YzI0LTQzcDUtZnY4Ms4AArFz
Keycloak code execution via UMA policy abuse
Ecosystems: maven
Packages: org.keycloak:keycloak-authz-client
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12NHJyLTY1eDYtZzY5Zs021g
XXE vulnerability in Jenkins Flaky Test Handler Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:flaky-test-handler
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtcjUtaDI4Zy0zNnF4
Spring AOP functionality (Struts) vulnerable to DoS attack
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: over 5 years ago
High
GSA_kwCzR0hTQS13OXAzLTVjcjgtbTNqas0kWg
Deserialization of Untrusted Data in Log4j 1.x
Ecosystems: maven
Packages: org.zenframework.z8.dependencies.commons:log4j-1.2.17, log4j:log4j
Source: GitHub Advisory Database
Blast Radius: 47.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS1wNmM1LTczN3ItMnI5M84AAlx3
XXE vulnerability in Jenkins Klocwork Analysis Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:klocwork
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13bTh3LXFwMmYtNzI4cc4AAa4R
Apache Struts Open Redirect
Ecosystems: maven
Packages: org.apache.struts.xwork:xwork-core
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04ajN4LXczNXItcnc0cs4AA43J
Quarkus Improper Handling of Insufficient Permissions or Privileges and Improper Handling of Exceptional Conditions vulnerability
Ecosystems: maven
Packages: io.quarkus.resteasy.reactive:resteasy-reactive
Source: GitHub Advisory Database
Blast Radius: 17.9
Published: 4 months ago
High
GSA_kwCzR0hTQS1wMjJ4LWc5cHgtMzk0Nc4AAvm5
Apache Tomcat may reject request containing invalid Content-Length header
Ecosystems: maven
Packages: org.apache.tomcat:tomcat-coyote, org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: over 1 year ago
High
GSA_kwCzR0hTQS03MjlxLWZjZ3AtcjV4aM4AA3kR
Apache Struts Improper Control of Dynamically-Managed Code Resources vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: 5 months ago
High
GSA_kwCzR0hTQS1qNXFoLWNwM3AtMmg4N84AAek4
Ignite Realtime Openfire vulnerable to XMPPbomb attack
Ecosystems: maven
Packages: org.igniterealtime.openfire:parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xcWMyLXB2NjgtcTcyaM0mug
Mingsoft MCMS SQL injection vulnerability
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS03NnFqLTlnd2gtcHZ2M84AAxJ8
Sandbox bypass in Jenkins Script Security Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzNjMtY3FnMi04NjNj
XML External Entity (XXE) Injection in JDOM
Ecosystems: maven
Packages: org.jdom:jdom
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: almost 3 years ago
High
GSA_kwCzR0hTQS02d2g4LW1yNmYtNmN4Ms4AAgZV
Cross-site Scripting in Jenkins Application Detector Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:app-detector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oeGpwLXE2YzMtMzhmeM4AAxhc
XML External Entity Reference in Apache NiFi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1ycjJyLWc2eG0tNTh4as4AAgZX
Cross Site Request Forgery in Jenkins Storable Configs Plugin
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:storable-configs-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qcXdoLWpycGctNWozaM4AATaI
Jenkins Favorite Plugin vulnerable to Cross-Site Request Forgery
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:favorite
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: about 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY2MnYteHB4Zi0zdjY4
Code injection in Apache Ant
Ecosystems: maven
Packages: org.apache.ant:ant
Source: GitHub Advisory Database
Blast Radius: 31.9
Published: over 3 years ago
High
GSA_kwCzR0hTQS1ocGY3LW1tcXctZzZ2cc4AAtDe
Cross-site Scripting in Jenkins Plot Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:plot
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qMnI3LTNydnctZzdneM4AA0pR
Apache Pulsar Broker's Rest Producer vulnerable to Incorrect Authorization
Ecosystems: maven
Packages: org.apache.pulsar:pulsar-broker
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: 10 months ago
High
GSA_kwCzR0hTQS02OTU0LWg1YzgtbTI5Zs4AAtsM
Jenkins Lucene-Search Plugin vulnerable to reflected (XSS) cross-site scripting
Ecosystems: maven
Packages: org.jenkins-ci.plugins:lucene-search
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xNTJyLWc4amYtd3YzeM4AASbI
Apache OpenMeetings allows flash content to be loaded from untrusted domains
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wM3JjLTk0NmgtOGNmNc4AAs8u
Unauthorized view fragment access in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qOTI3LXc2ZzctN2M3d84AA0oI
Apache Jena Expression Language Injection vulnerability
Ecosystems: maven
Packages: org.apache.jena:jena
Source: GitHub Advisory Database
Blast Radius: 16.0
Published: 10 months ago
High
GSA_kwCzR0hTQS05Zmo1LWpnNmYtcWc1cs0hGA
Use of Hard-coded Credentials in Apache Kylin
Ecosystems: maven
Packages: org.apache.kylin:kylin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1wNHA1LTN2MmotdzVyds4AASlG
Improper Privilege Management in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1ycTJxLWhjNmgtMnB4Ms4AA3kl
Cross-Site Request Forgery in JFinalCMS via /admin/tag/save
Ecosystems: maven
Packages: com.jfinal:jfinal
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: 5 months ago
High
GSA_kwCzR0hTQS1yN3cyLWo5NnYtdnc4bc4AA3ko
Cross-Site Request Forgery in JFinalCMS via /admin/slide/update
Ecosystems: maven
Packages: com.jfinal:jfinal
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: 5 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3NmotNThjeC13cDV2
Vulnerability in RPKI manifest validation
Ecosystems: maven
Packages: net.ripe.rpki:rpki-validator-3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
High
GSA_kwCzR0hTQS1mZ3djLTNqNnctY2gyMs4AA4Gu
easy-rules-mvel vulnerable to remote code execution
Ecosystems: maven
Packages: org.jeasy:easy-rules-mvel
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: 5 months ago
High
GSA_kwCzR0hTQS1xNHEyLWZ2d2YtNmdods4AARYf
Cross-Site Request Forgery in hawtio
Ecosystems: maven
Packages: io.hawt:project
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1obWhxLTM4MnEtbXA1Ns4AATQ0
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Statistics
Advisories: 18,618
Packages: 8,351
Repositories: 972
Ecosystems: 12
Filter by Severity
Moderate 8,075 High 6,409 Critical 2,829 Low 1,013
Filter by Ecosystem
maven 5,573 packagist 3,856 pypi 3,844 npm 3,559 go 1,931 nuget 1,422 rubygems 816 cargo 780 swift 31 hex 30 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 com.jfinal:jfinal 36 com.thoughtworks.xstream:xstream 36 org.apache.tomcat.embed:tomcat-embed-core 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.elasticsearch:elasticsearch 32 org.jenkins-ci.plugins:script-security 32 io.undertow:undertow-core 27 org.keycloak:keycloak-services 27 org.keycloak:keycloak-parent 25 org.apache.solr:solr-core 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.bouncycastle:bcprov-jdk14 22 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 com.vaadin:vaadin-bom 18 com.liferay.portal:release.dxp.bom 18 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 org.bouncycastle:bcprov-jdk15 16 org.apache.jspwiki:jspwiki-main 15 org.apache.struts.xwork:xwork-core 15 org.xwiki.platform:xwiki-platform-web 14 org.apache.inlong:manager-pojo 14 org.apache.cxf:cxf 13 org.apache.hadoop:hadoop-main 13 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.bouncycastle:bcprov-jdk15on 12 org.apache.dolphinscheduler:dolphinscheduler 12 com.vaadin:flow-server 12 org.jenkins-ci.plugins:git 12 org.jenkins-ci.plugins:email-ext 11 org.mortbay.jetty:jetty 11 org.apache.james:james-server 11 org.apache.commons:commons-compress 11 org.apache.tika:tika-core 11 org.apache.camel:camel-core 11 org.igniterealtime.openfire:parent 11 com.xuxueli:xxl-job 11 org.apache.cxf:cxf-core 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.tomcat:tomcat-coyote 11 org.jeecgframework.boot:jeecg-boot-common 11 org.apache.jspwiki:jspwiki-war 11 org.apache.hadoop:hadoop-common 11 org.apache.ranger:ranger 11 org.apache.inlong:manager-service 10 io.netty:netty 10 org.jboss.netty:netty 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.jenkins-ci.plugins:active-directory 9 org.jenkins-ci.plugins:electricflow 9 cn.hutool:hutool-core 9 org.apache.shiro:shiro-core 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.craftercms:crafter-studio 9 org.bouncycastle:bcprov-jdk15to18 9 org.apache.xmlgraphics:batik 9 org.springframework:spring-web 9 org.opennms:opennms 9 org.apache.archiva:archiva 9 org.apache.tapestry:tapestry-core 9 io.jenkins:configuration-as-code 9 org.apache.hive:hive 9 jquery-rails 9 jquery 9 org.apache.tomcat:tomcat-catalina 9 org.webjars.npm:jquery 9 org.opencrx:opencrx-core-models 9 org.jenkins-ci.plugins:config-file-provider 9 org.springframework:spring-webmvc 9 org.apache.kylin:kylin 8 org.jenkins-ci.plugins:ec2 8 org.apache.santuario:xmlsec 8 org.graylog2:graylog2-server 8 org.apache.hive:hive-exec 8 com.hazelcast:hazelcast 8 jQuery 8 org.apache.zeppelin:zeppelin 8 org.opencms:opencms-core 8 org.postgresql:postgresql 8 org.apache.pdfbox:pdfbox 8 org.apache.ambari:ambari 8 org.apache.ozone:ozone-main 8 io.jenkins.blueocean:blueocean 8 org.yaml:snakeyaml 8 mysql:mysql-connector-java 8 io.jenkins.plugins:warnings-ng 7 jquery-ui-rails 7 org.apache.hive:hive-service 7 org.jenkins-ci.plugins:subversion 7 jquery-ui 7 org.jruby:jruby-stdlib 7 org.apache.cxf:apache-cxf 7 rubygems-update 7 org.apache.atlas:atlas-common 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.jboss.resteasy:resteasy-client 7 org.apache.linkis:linkis 7 org.jenkins-ci.plugins:rundeck 7 org.jenkins-ci.plugins:mercurial 7 org.apache.karaf:apache-karaf 7 org.owasp.esapi:esapi 7 io.dataease:dataease-plugin-common 7 org.jenkins-ci.plugins:artifactory 7 org.apache.logging.log4j:log4j-core 7 org.apache.activemq:activemq-parent 7 org.apache.inlong:manager-web 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.apache.poi:poi 7 org.silverpeas.core:silverpeas-core-web 7 net.opentsdb:opentsdb 7 org.jenkins-ci.plugins:openshift-deployer 7 org.apache.tika:tika 7 org.owasp.antisamy:antisamy 7 io.jenkins.plugins:miniorange-saml-sp 7 org.jeecgframework.boot:jeecg-boot-base 7 jQuery.UI.Combined 7 org.webjars.npm:jquery-ui 7 org.apache.spark:spark-core_2.11 7 io.atomix:atomix 7 org.apache.derby:derby 7 org.apache.solr:solr-parent 6 org.jenkins-ci.plugins:gitlab-oauth 6 com.jflyfox:jflyfox_jfinal 6 cn.hutool:hutool-json 6 org.xwiki.commons:xwiki-commons-xml 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.opensearch.plugin:opensearch-security 6 io.netty:netty-handler 6 commons-fileupload:commons-fileupload 6 org.apache.axis:axis 6 org.apache.shenyu:shenyu-common 6 org.apache.mesos:mesos 6 org.jenkins-ci.plugins:repository-connector 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.apache.spark:spark-core_2.10 6 org.apache.syncope:syncope-core 6 org.opencastproject:opencast-kernel 6 io.netty:netty-codec-http 6 org.apache.pulsar:pulsar-broker 6 org.apache.httpcomponents:httpclient 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.apache.storm:storm-core 6 org.csanchez.jenkins.plugins:kubernetes 6 axis:axis 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.bouncycastle:bcprov-jdk18on 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.jenkins-ci.plugins:pipeline-maven 6 hudson.plugins:project-inheritance 6 tech.powerjob:powerjob 6 org.apache.struts:struts2-rest-plugin 6 org.jenkins-ci.plugins:publish-over-ssh 5 org.jenkins-ci.plugins.m2release:m2release 5 org.jboss.resteasy:resteasy-bom 5 org.dspace:dspace-jspui 5 org.apache.hadoop:hadoop-client 5 org.jeecgframework.boot:jeecg-boot-base-core 5 org.neo4j.procedure:apoc 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 com.vaadin:vaadin-server 5 org.jenkins-ci.plugins:ghprb 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:junit 5 info.magnolia:magnolia-core 5 xerces:xercesImpl 5 com.alibaba:dubbo 5 org.springframework.amqp:spring-amqp 5 org.biouno:uno-choice 5 io.projectreactor.netty:reactor-netty-http 5 org.jenkins-ci.plugins:openid 5 org.jenkins-ci.plugins:htmlpublisher 5 struts:struts 5 com.coravy.hudson.plugins.github:github 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 log4j:log4j 5 org.jenkins-ci.plugins:google-login 5 org.apache.druid:druid 5 io.vertx:vertx-core 5 org.jenkins-ci.plugins:credentials 5 org.opennms:opennms-webapp 5 org.bouncycastle:bcprov-ext-jdk15on 5 com.synopsys.jenkinsci:ownership 5 io.vertx:vertx-web 5 org.jenkins-ci.plugins:sinatra-chef-builder 5 org.wildfly:wildfly-parent 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 33 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 26 https://github.com/eclipse/jetty.project 23 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/apache/nifi 21 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/netty/netty 20 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/bcgit/bc-java 19 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/apache/camel 15 https://github.com/geoserver/geoserver 15 https://github.com/quarkusio/quarkus 13 https://github.com/xuxueli/xxl-job 13 https://github.com/ming-soft/MCMS 13 https://github.com/undertow-io/undertow 13 https://github.com/apache/kylin 12 https://github.com/dromara/hutool 12 https://github.com/apache/dolphinscheduler 12 https://github.com/vaadin/flow 11 https://github.com/igniterealtime/Openfire 11 https://github.com/jquery/jquery 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/DSpace/DSpace 9 https://github.com/cui2shark/cms 9 https://github.com/apache/lucene-solr 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/spring-projects/spring-security 9 https://github.com/xwiki/xwiki-commons 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/apache/zeppelin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/nahsra/antisamy 8 https://github.com/opensearch-project/security 8 https://github.com/ratpack/ratpack 7 https://github.com/rundeck/rundeck 7 https://github.com/dataease/dataease 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/apache/xmlgraphics-batik 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/vaadin/framework 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/rubygems/rubygems 7 https://github.com/pgjdbc/pgjdbc 7 https://github.com/apache/pulsar 6 https://github.com/vert-x3/vertx-web 6 https://github.com/jenkinsci/electricflow-plugin 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/resteasy/resteasy 6 https://github.com/apache/tika 6 https://github.com/playframework/playframework 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jquery/jquery-ui 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/ls1intum/Ares 6 https://github.com/line/armeria 6 https://github.com/cui2shark/security 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/apache/hadoop 6 https://github.com/http4s/http4s 6 https://github.com/apache/geode 5 https://github.com/jettison-json/jettison 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/apache/openmeetings 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/apache/karaf 5 https://github.com/h2database/h2database 5 https://github.com/OpenAPITools/openapi-generator 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/apiman/apiman 5 https://github.com/grails/grails-core 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/alibaba/nacos 5 https://github.com/PowerJob/PowerJob 5 https://github.com/protocolbuffers/protobuf 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/apache/shiro 5 https://github.com/apache/shenyu 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/jfinal/jfinal 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/resteasy/Resteasy 4 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/apache/syncope 4 https://github.com/nightcloudos/new_cms 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/apache/solr 4 https://github.com/pippo-java/pippo 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/ktorio/ktor 4 https://github.com/infinispan/infinispan 4 https://github.com/skylot/jadx 4 https://github.com/itext/itext7 4 https://github.com/apache/activemq-artemis 4 https://github.com/xerial/snappy-java 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/yamcs/yamcs 4 https://github.com/alkacon/opencms-core 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/bcgit/bc-csharp 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/apache/storm 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/xwiki/xwiki-rendering 3 https://github.com/opengoofy/hippo4j 3 https://github.com/AsyncHttpClient/async-http-client 3 https://svn.apache.org/viewvc/tomcat/tc7.0.x 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/matrix-org/matrix-android-sdk2 3 https://github.com/li-yu320/cms 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/mbechler/marshalsec 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/jooby-project/jooby 3 https://bitbucket.org/b_c/jose4j 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://github.com/jenkinsci/liquibase-runner-plugin 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/orientechnologies/orientdb 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/jenkinsci/hashicorp-vault-plugin 3 https://github.com/ysuzhangbin/cms 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/kubernetes-plugin 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/pf4j/pf4j 3 https://github.com/eclipse-vertx/vert.x 3 https://github.com/joniles/mpxj 3 https://github.com/jhy/jsoup 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/apache/dubbo 3 https://github.com/google/guava 3 https://github.com/aws/amazon-redshift-jdbc-driver 3 https://github.com/apache/flume 3 https://github.com/apache/geronimo 3 https://github.com/jeremylong/DependencyCheck 3 https://github.com/jenkinsci/compuware-topaz-for-total-test-plugin 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/apache/olingo-odata4 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/jira-plugin 3 https://github.com/jenkinsci/mailer-plugin 3 https://github.com/grpc/grpc 3 https://github.com/jenkinsci/mac-plugin 3 https://github.com/jenkinsci/lucene-search-plugin 3 https://github.com/LetianYuan/My-CVE-Public-References 3