Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS1tYzZqLWg5NDgtdjJwNs4AATbI
RubyGems Improper Verification of Cryptographic Signature vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xajJ3LW13MnItcHYzOc4AATbJ
RubyGems Deserialization of Untrusted Data vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1ndjg2LTQzcnYtNzltMs4AATay
RubyGems Improper Input Validation vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04N3F4LWc1d2ctbXdtas4AATa0
RubyGems Cross-site Scripting vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS0yeDloLWgzYzQtd3FxaM4AATaP
Improper Neutralization of Special Elements used in an LDAP Query in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qcXdoLWpycGctNWozaM4AATaI
Jenkins Favorite Plugin vulnerable to Cross-Site Request Forgery
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:favorite
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS01d2hqLTUyM3gtNmo2OM4AATaE
Apache Camel camel-hessian component vulnerable to Java object deserialization
Ecosystems: maven
Packages: org.apache.camel:camel-hessian
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00NnI1LTU5ZmctMmZqY84AATY0
Deserialization of Untrusted Data in Infinispan
Ecosystems: maven
Packages: org.infinispan:infinispan-core
Source: GitHub Advisory Database
Blast Radius: 31.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jMmh3LXc5cW0tcTVyOc4AATYR
Cross-site Scripting in Jenkins Active Choices plugin
Ecosystems: maven
Packages: org.biouno:uno-choice
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wanYzLXJoNnYtMnBqOM4AATX3
Cross-site Scripting in wicket-jquery-ui
Ecosystems: maven
Packages: com.googlecode.wicket-jquery-ui:wicket-jquery-ui-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zcTZwLXI2cnItMjY2eM4AATX4
Jenkins Deploy to container Plugin stored plain text passwords in job configuration
Ecosystems: maven
Packages: org.jenkins-ci.plugins:deploy
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02OGc1LThxN2YtbTM4NM4AATX5
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wd3BjLWhxcTItaHgyeM4AATX1
Cross-site Scripting in wicket-jquery-ui
Ecosystems: maven
Packages: com.googlecode.wicket-jquery-ui:wicket-jquery-ui-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13cDJmLWhyZzItM3I1bc4AATXV
Improper Restriction of XML External Entity Reference in Apache uimaj
Ecosystems: maven
Packages: org.apache.uima:uimaj-as-core, org.apache.uima:uimaj-core, org.apache.uima:uimafit-core
Source: GitHub Advisory Database
Blast Radius: 18.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qcGhqLTVnM20tdzd4Ns4AATW9
Ignite Realtime Openfire vulnerable to cross-site scripting
Ecosystems: maven
Packages: org.igniterealtime.openfire:parent
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02bTY4LTN3NTUtNm14NM4AATVw
Apache Geode OQL method invocation vulnerability
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yaGNnLXJ3aHgtcWozas4AATUm
Improper Limitation of a Pathname to a Restricted Directory in Spring Framework
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12andjLTVoZmgtMnZ2Nc4AATTs
Use of a Broken or Risky Cryptographic Algorithm in Apache WSS4J
Ecosystems: maven
Packages: org.apache.wss4j:wss4j-ws-security-dom, org.apache.ws.security:wss4j
Source: GitHub Advisory Database
Blast Radius: 23.4
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1mNXFmLXZoNjktOXE0cs4AATTn
SimpleXML vulnerable to XML External Entity (XXE)
Ecosystems: maven
Packages: org.simpleframework:simple-xml
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jcHczLXg3Z2YtcDg3Ms4AATSW
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wcmp2LWpqMjYtd2Y4aM4AATRB
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03Mzd3LW1oNTgtY3hqcM4AATQ_
Arbitrary code execution in Apache Struts
Ecosystems: maven
Packages: org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0zYzVjLXhycTQtcWhyOM4AATQ2
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12cndjLXFqbXctNXJqbc4AATRA
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13aG1xLXY5NHEtMzRwOc4AATQ8
Improper Control of Generation of Code in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1tbWo2LWNqajQtaHByNc4AATRH
Apache Struts vulnerable to arbitrary remote code execution due to improper input validation
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04YzZqLWZmbWYtcTZ2bc4AATRI
Apache Struts RCE Vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1obWhxLTM4MnEtbXA1Ns4AATQ0
ClassLoader manipulation in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS00cHJqLXZ3OWotdjZwcs4AATRG
Arbitrary code execution in Apache Struts 2
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin, org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS00NGh2LWpqeDctcWZqZ84AATQy
Path Traversal in Apache Struts
Ecosystems: maven
Packages: org.apache.struts:struts2-convention-plugin
Source: GitHub Advisory Database
Blast Radius: 31.7
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13M3I0LXZ4OXctZjdwN84AATQb
Jenkins Job Config History Plugin reflected XSS vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:jobConfigHistory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04NzZwLTR3Z2MtNzVyeM4AATMB
Apache Struts RCE Vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 33.4
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04Z3djLXg3bWctN3A3cM4AATJg
Apache XML Security For Java vulnerable to Infinite Loop
Ecosystems: maven
Packages: org.apache.santuario:xmlsec
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oM2NoLTVwcDItdmg2d84AATI3
Improper socket reuse in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03dnBxLWc5OTgtcXB2N84AATGb
Netty denial of service vulnerability
Ecosystems: maven
Packages: io.netty:netty-all, io.netty:netty
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qMnhxLXBmZmYtbXZnZ84AATB3
Loop with Unreachable Exit Condition in Apache PDFBox
Ecosystems: maven
Packages: org.apache.pdfbox:pdfbox
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02eGhqLXAyOXYtODJqOM4AATB1
Apache Sentry may allow attacker to access/remove data from Sentry protected table
Ecosystems: maven
Packages: org.apache.sentry:sentry
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS01MmdxLTdqNmMteHc2eM4AATB0
Missing Authentication for Critical Function in Apache Cassandra
Ecosystems: maven
Packages: org.apache.cassandra:cassandra-all
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00dnJ2LWNoOTYtNmg0Ms4AAS7X
Improper Privilege Management in MySQL Connectors Java
Ecosystems: maven
Packages: mysql:mysql-connector-java
Source: GitHub Advisory Database
Blast Radius: 50.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yMmpmLXJjNXYtdm1wds4AASyI
Incorrect Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wd3JtLThtdm0tcDJmMs4AASx9
Jenkins Agiletestware Pangolin Connector for TestRail Plugin CSRF vulnerability and missing permission checks
Ecosystems: maven
Packages: org.jenkins-ci.plugins:pangolin-testrail-connector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mcWcyLWM5N3ItcnFjas4AASyM
Exposure of Sensitive Information in Jenkins Kubernetes Plugin
Ecosystems: maven
Packages: org.csanchez.jenkins.plugins:kubernetes
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yNjMyLWgzMmotNnJnOc4AASyR
Missing Release of Resource after Effective Lifetime in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04dmc3LWdoNzMtODY2ds4AASyP
Jenkins Accurev Plugin CSRF vulnerability and missing permission checks
Ecosystems: maven
Packages: org.jenkins-ci.plugins:accurev
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04cXBmLWZ2MzYtaDRyOM4AASyL
Infinite Loop in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS13d2d4LTk0djYtZmMycM4AASyU
Jenkins SSH Agent Plugin exposes SSH private key password to users with permission to read the build log
Ecosystems: maven
Packages: org.jenkins-ci.plugins:ssh-agent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mamgyLXFoZmgtcnZmY84AASx7
Jenkins Maven Artifact ChoiceListProvider (Nexus) Plugin CSRF vulnerability and missing permission checks
Ecosystems: maven
Packages: org.jenkins-ci.plugins:maven-artifact-choicelistprovider
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13cjdyLXZnM2MtNTRyNc4AASr6
Missing Encryption of Sensitive Data in Apache Guacamole
Ecosystems: maven
Packages: org.apache.guacamole:guacamole-common
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS03djg1LTZodjItcndnd84AASqv
Missing certificate validation in Apache JMeter
Ecosystems: maven
Packages: org.apache.jmeter:ApacheJMeter
Source: GitHub Advisory Database
Blast Radius: 18.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1jeDJ2LWpyamMtZzU0d84AASre
OpenTSDB vulnerable to OS Command Injection
Ecosystems: maven
Packages: net.opentsdb:opentsdb
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1qN2o3LWc0d3ctcHhnNc4AASqc
Missing certificate validation in Apache JMeter
Ecosystems: maven
Packages: org.apache.jmeter:ApacheJMeter
Source: GitHub Advisory Database
Blast Radius: 18.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jdjlqLTdxNHgtdjJnMs4AASrL
Apache OpenMeetings may allow authenticated attacker to deny service for privileged users
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yNHY4LTloZ3gtdm02bc4AASmO
Cloud Foundry UAA accepts refresh token as access token on admin endpoints
Ecosystems: maven
Packages: org.cloudfoundry.identity:cloudfoundry-identity-server
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wNHA1LTN2MmotdzVyds4AASlG
Improper Privilege Management in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS05Y2p2LTkzZzctYzZtds4AASlC
Loop with Unreachable Exit Condition in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1ncWhtLTRoOTMtcnJoZ84AASlD
Jenkins Script Security and Pipeline Groovy Plugins Sandbox Bypass
Ecosystems: maven
Packages: org.jenkins-ci.plugins:script-security, org.jenkins-ci.plugins.workflow:workflow-cps
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04NDg2LWgzOXgtY3gyZs4AASk9
Jenkins Configuration as Code Plugin has Insufficiently Protected Credentials
Ecosystems: maven
Packages: io.jenkins:configuration-as-code
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00amhtLTVmN2ctNzVmcM4AASkQ
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13NzNxLW1jOWctajU2eM4AASk0
Asset Pipeline Grails Plugin vulnerable to Path Traversal
Ecosystems: maven
Packages: org.grails.plugins:asset-pipeline
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1ncmY4LTk0cTUtNHBoeM4AASky
CSRF vulnerability and missing permission checks in Openstack Cloud Plugin allowed capturing credentials
Ecosystems: maven
Packages: org.jenkins-ci.plugins:openstack-cloud
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS01ZnE5LXg5ZjQteDJyMs4AASkM
Jenkins z/OS Connector Plugin allows local attacker to retrieve configured password
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zos-connector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02Y3ZtLXY2cWotaGpxOc4AASk2
CSRF vulnerability and missing permission checks in GitHub Plugin allowed capturing credentials
Ecosystems: maven
Packages: com.coravy.hudson.plugins.github:github
Source: GitHub Advisory Database
Blast Radius: 21.6
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1oNjZwLW03NjYtMzNmds4AASkc
AWS CodeDeploy Plugin stored AWS Secret Key in plain text
Ecosystems: maven
Packages: com.amazonaws:codedeploy
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0yM3hyLTl4eHItdmczY84AASkF
Improper authorization vulnerability in Jenkins Mesos Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:mesos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01Z3dxLTQyNzUtcTRxY84AASkZ
Jenkins AWS CodePipeline Plugin has Insufficiently Protected Credentials
Ecosystems: maven
Packages: com.amazonaws:aws-codepipeline
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00aDQ3LWgzY3ItMjN3aM4AASkE
Improper Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1td2c3LTY5aGYtdnFoM84AASkD
Insufficiently Protected Credentials in Jenkins AWS CodeBuild Plugin
Ecosystems: maven
Packages: com.amazonaws:aws-codebuild
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jcnZxLW13MnctNGNmeM4AASjf
Jenkins Black Duck Hub Plugin allowed any user with Overall/Read to read and write its configuration
Ecosystems: maven
Packages: com.blackducksoftware.integration:blackduck-hub
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jOXB4LTdqMzYtZjM1ds4AASke
CSRF vulnerability and missing permission checks in Jenkins AbsInt Astrée Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:absint-astree
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jd3h4LWd3d2otcHFqcc4AASkY
Jenkins Perforce Plugin uses ineffective credentials encryption
Ecosystems: maven
Packages: org.jvnet.hudson.plugins:perforce
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0zaHZjLXh3anAteHI4bc4AASkb
Liquibase Runner Plugin allows users to load arbitrary Java code into controller JVM
Ecosystems: maven
Packages: org.jenkins-ci.plugins:liquibase-runner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00OHBxLXgzdnctNHBxZs4AASkX
Jenkins vSphere Plugin incorrect authorization vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:vsphere-cloud
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mOWN4LTc4OWMtdzJtcs4AASj-
Incorrect Authorization in Jenkins Mercurial Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:mercurial
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS05cng1LXc1MjItNWZoN84AASkA
Jenkins Promoted Builds Plugin allowed unauthorized users to run some promotion processes
Ecosystems: maven
Packages: org.jenkins-ci.plugins:promoted-builds
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1xd3E5LThycGYtOG1wN84AASkT
Weak Password Requirements in UnboundID LDAP SDK
Ecosystems: maven
Packages: com.unboundid:unboundid-ldapsdk
Source: GitHub Advisory Database
Blast Radius: 34.3
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13OWdxLThxMzUtM2pjY84AASj9
Jenkins Subversion Plugin Incorrect Authorization vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.plugins:subversion
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13cnFjLXE4cDUtNzZtNc4AASj3
Incorrect Authorization in Jenkins Gerrit Trigger Plugin
Ecosystems: maven
Packages: com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS1jZ2hnLWpjdjYtNHY1bc4AASj5
Jenkins Coverity Plugin has Insufficiently Protected Credentials
Ecosystems: maven
Packages: org.jenkins-ci.plugins:coverity
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1ydng0LWdnOHctcXcyNM4AASj4
Jenkins Google Play Android Publisher Plugin allows attacker to obtain credential IDs
Ecosystems: maven
Packages: org.jenkins-ci.plugins:google-play-android-publisher
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03NHB2LXY5Z2gtaDI1cM4AASkU
RubyGems Infinite Loop vulnerability
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00dmYyLWNtMjMtcmY0Y84AASj_
Incorrect Authorization in Jenkins Gerrit Trigger Plugin
Ecosystems: maven
Packages: com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03MngzLWM3amMtcTM1eM4AASj2
Improper authorization in Jenkins Job and Node Ownership Plugin
Ecosystems: maven
Packages: com.synopsys.jenkinsci:ownership
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00NnAyLWZ3cWctM2g2bc4AASkB
Incorrect Authorization in Jenkins Git Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:git
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zOHhtLXhodmotcTJxZs4AASjz
Jenkins Credentials Binding Plugin has Insufficiently Protected Credentials
Ecosystems: maven
Packages: org.jenkins-ci.plugins:credentials-binding
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12aDk4LWZxZmMtNGhqM84AAShp
Apache Geode vulnerable to Exposure of Sensitive Information
Ecosystems: maven
Packages: org.apache.geode:geode-core
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12cGN2LTc4Y3Atd2hyM84AAShw
Use after free in Apache Mesos
Ecosystems: maven
Packages: org.apache.mesos:mesos
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xNHY5LXFqbXctajd2Zs4AASbg
Insecure Default Initialization of Resource in Pivotal Spring Web Flow
Ecosystems: maven
Packages: org.springframework.webflow:spring-webflow
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1nM3ZxLWYzNXYtdmhnbc4AASbY
Apache OpenMeetings vulnerable to Uncontrolled Resource Consumption
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0yYzNwLTlqNWYtMzNnM84AASbN
Apache OpenMeetings responds to insecure HTTP methods
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14aGo3LWpyNDUtNXc4cs4AASbR
Apache OpenMeetings updates user password in insecure manner
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14ODY5LTc4NG0tam1qMs4AASbZ
Denial of service in Apache Mesos
Ecosystems: maven
Packages: org.apache.mesos:mesos
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xNTJyLWc4amYtd3YzeM4AASbI
Apache OpenMeetings allows flash content to be loaded from untrusted domains
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0ycTY1LXh4ZzYtM3FoNc4AASbJ
Apache OpenMeetings vulnerable to parameter manipulation attacks
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1jcW02LWhyZ3EtNjg2Oc4AASbK
Apache OpenMeetings has Inadequate Encryption Strength
Ecosystems: maven
Packages: org.apache.openmeetings:openmeetings-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01N3E1LXg4amYtZzdoOM4AASa4
Inconsistent Interpretation of HTTP Requests in Red Hat JBoss EAP
Ecosystems: maven
Packages: org.jboss.resteas:resteasy-jaxrs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qbXZ2LTUyNGYtaGo1as4AASWl
Improper Handling of Exceptional Conditions in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qZ2o5LTZ2NzgtNmc4bc4AASV8
Improper Authentication In Apache NiFi
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS05aGcyLTM5NWotODNybc4AASV-
Expected Behavior Violation in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-coyote
Source: GitHub Advisory Database
Blast Radius: 40.7
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05Nzg1LXcyMzMteDZods4AASWD
Improper Resource Shutdown or Release in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mZzl3LWNmZm0tcG1oMs4AASVC
Insecure Default Initialization of Resource in Pivotal Spring Web Flow
Ecosystems: maven
Packages: org.springframework.webflow:spring-webflow
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: almost 2 years ago
Statistics
Advisories: 18,152
Packages: 8,242
Repositories: 968
Ecosystems: 12
Filter by Severity
Moderate 7,822 High 6,289 Critical 2,788 Low 969
Filter by Ecosystem
maven 5,518 packagist 3,782 pypi 3,552 npm 3,530 go 1,887 nuget 1,390 rubygems 813 cargo 773 swift 31 hex 29 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 org.apache.tomcat.embed:tomcat-embed-core 37 com.thoughtworks.xstream:xstream 36 com.jfinal:jfinal 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.elasticsearch:elasticsearch 32 org.jenkins-ci.plugins:script-security 30 io.undertow:undertow-core 27 org.keycloak:keycloak-services 27 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 org.bouncycastle:bcprov-jdk14 18 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.apache.dubbo:dubbo 16 org.bouncycastle:bcprov-jdk15 16 org.apache.activemq:activemq-client 16 org.apache.struts.xwork:xwork-core 15 org.apache.jspwiki:jspwiki-main 15 org.xwiki.platform:xwiki-platform-web 14 org.apache.inlong:manager-pojo 13 org.apache.hadoop:hadoop-main 13 org.apache.cxf:cxf 13 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.jenkins-ci.plugins:git 12 com.vaadin:flow-server 12 org.apache.dolphinscheduler:dolphinscheduler 12 org.igniterealtime.openfire:parent 11 org.jenkins-ci.plugins:email-ext 11 org.apache.cxf:cxf-core 11 org.apache.james:james-server 11 org.apache.commons:commons-compress 11 org.jeecgframework.boot:jeecg-boot-common 11 org.apache.camel:camel-core 11 org.apache.jspwiki:jspwiki-war 11 org.mortbay.jetty:jetty 11 org.apache.ranger:ranger 11 org.apache.hadoop:hadoop-common 11 org.apache.tomcat:tomcat-coyote 11 org.apache.tika:tika-core 11 org.jeecgframework.boot:jeecg-boot-parent 11 com.xuxueli:xxl-job 11 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 io.netty:netty 10 org.jboss.netty:netty 10 org.apache.inlong:manager-service 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.apache.hive:hive 9 org.craftercms:crafter-studio 9 org.bouncycastle:bcprov-jdk15on 9 org.jenkins-ci.plugins:active-directory 9 org.jenkins-ci.plugins:electricflow 9 org.opencrx:opencrx-core-models 9 org.apache.shiro:shiro-core 9 io.jenkins:configuration-as-code 9 cn.hutool:hutool-core 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.opennms:opennms 9 org.apache.tapestry:tapestry-core 9 org.apache.archiva:archiva 9 org.springframework:spring-web 9 org.apache.xmlgraphics:batik 9 jquery 9 jquery-rails 9 org.apache.tomcat:tomcat-catalina 9 org.jenkins-ci.plugins:config-file-provider 9 org.webjars.npm:jquery 9 org.springframework:spring-webmvc 9 jQuery 8 org.apache.ozone:ozone-main 8 org.postgresql:postgresql 8 com.hazelcast:hazelcast 8 org.apache.kylin:kylin 8 org.apache.zeppelin:zeppelin 8 org.apache.santuario:xmlsec 8 org.apache.ambari:ambari 8 org.apache.hive:hive-exec 8 io.jenkins.blueocean:blueocean 8 org.jenkins-ci.plugins:ec2 8 org.opencms:opencms-core 8 org.apache.pdfbox:pdfbox 8 mysql:mysql-connector-java 8 org.graylog2:graylog2-server 8 org.yaml:snakeyaml 8 org.jenkins-ci.plugins:artifactory 7 org.jenkins-ci.plugins:jobConfigHistory 7 io.dataease:dataease-plugin-common 7 org.jenkins-ci.plugins:rundeck 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.spark:spark-core_2.11 7 io.atomix:atomix 7 org.jboss.resteasy:resteasy-client 7 org.apache.linkis:linkis 7 org.apache.tika:tika 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.apache.inlong:manager-web 7 org.owasp.esapi:esapi 7 org.jeecgframework.boot:jeecg-boot-base 7 jQuery.UI.Combined 7 org.apache.hive:hive-service 7 org.webjars.npm:jquery-ui 7 org.owasp.antisamy:antisamy 7 jquery-ui-rails 7 io.jenkins.plugins:miniorange-saml-sp 7 org.jenkins-ci.plugins:subversion 7 org.apache.atlas:atlas-common 7 io.jenkins.plugins:warnings-ng 7 org.apache.logging.log4j:log4j-core 7 jquery-ui 7 org.apache.karaf:apache-karaf 7 org.apache.cxf:apache-cxf 7 org.jenkins-ci.plugins:openshift-deployer 7 rubygems-update 7 org.apache.activemq:activemq-parent 7 org.jenkins-ci.plugins:mercurial 7 org.jruby:jruby-stdlib 7 org.apache.derby:derby 7 net.opentsdb:opentsdb 7 org.apache.poi:poi 7 com.jflyfox:jflyfox_jfinal 6 org.apache.solr:solr-parent 6 org.opencastproject:opencast-kernel 6 org.apache.storm:storm-core 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.xwiki.commons:xwiki-commons-xml 6 org.apache.spark:spark-core_2.10 6 org.apache.mesos:mesos 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.jenkins-ci.plugins:pipeline-maven 6 org.apache.httpcomponents:httpclient 6 org.jenkins-ci.plugins:repository-connector 6 org.apache.syncope:syncope-core 6 axis:axis 6 org.opensearch.plugin:opensearch-security 6 io.netty:netty-codec-http 6 org.csanchez.jenkins.plugins:kubernetes 6 de.tum.in.ase:artemis-java-test-sandbox 6 tech.powerjob:powerjob 6 org.jenkins-ci.plugins:gitlab-oauth 6 io.netty:netty-handler 6 commons-fileupload:commons-fileupload 6 org.jenkins-ci.plugins:azure-vm-agents 6 cn.hutool:hutool-json 6 hudson.plugins:project-inheritance 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.apache.pulsar:pulsar-broker 6 org.apache.shenyu:shenyu-common 6 org.apache.axis:axis 6 org.apache.struts:struts2-rest-plugin 6 org.jenkins-ci.plugins:openid 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:junit 5 org.springframework.amqp:spring-amqp 5 org.apache.druid:druid 5 org.jenkins-ci.plugins:codedx 5 com.ruoyi:ruoyi 5 org.jenkins-ci.plugins:matrix-project 5 org.jenkinsci.plugins:octoperf 5 org.jenkins-ci.plugins:google-login 5 org.opennms:opennms-webapp 5 info.magnolia:magnolia-core 5 edu.stanford.nlp:stanford-corenlp 5 com.google.protobuf:protobuf-java 5 org.codehaus.jettison:jettison 5 org.xwiki.platform:xwiki-platform-flamingo-skin-resources 5 org.jenkins-ci.plugins:azure-ad 5 org.jenkins-ci.plugins:scriptler 5 log4j:log4j 5 org.jenkins-ci.plugins:credentials 5 org.jenkins-ci.plugins:ghprb 5 org.jenkins-ci.plugins:delphix 5 org.jenkins-ci.plugins:websphere-deployer 5 org.apache.hadoop:hadoop-client 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 org.jenkins-ci.plugins:publish-over-ssh 5 org.apache.kylin:kylin-server-base 5 org.jenkins-ci.plugins:support-core 5 org.jboss.resteasy:resteasy-bom 5 org.jenkins-ci.plugins.m2release:m2release 5 org.apache.inlong:manager-dao 5 com.coravy.hudson.plugins.github:github 5 com.mabl.integration.jenkins:mabl-integration 5 org.dspace:dspace-jspui 5 org.jenkins-ci.plugins:gitlab-plugin 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 32 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 25 https://github.com/eclipse/jetty.project 23 https://github.com/apache/nifi 21 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/netty/netty 20 https://github.com/jenkinsci/script-security-plugin 20 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/bcgit/bc-java 18 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/apache/camel 15 https://github.com/geoserver/geoserver 15 https://github.com/xuxueli/xxl-job 13 https://github.com/quarkusio/quarkus 13 https://github.com/undertow-io/undertow 13 https://github.com/ming-soft/MCMS 13 https://github.com/dromara/hutool 12 https://github.com/apache/kylin 12 https://github.com/apache/dolphinscheduler 12 https://github.com/vaadin/flow 11 https://github.com/igniterealtime/Openfire 11 https://github.com/jquery/jquery 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/Graylog2/graylog2-server 9 https://github.com/DSpace/DSpace 9 https://github.com/apache/lucene-solr 9 https://github.com/cui2shark/cms 9 https://github.com/spring-projects/spring-security 9 https://github.com/opensearch-project/security 8 https://github.com/nahsra/antisamy 8 https://github.com/xwiki/xwiki-commons 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/apache/zeppelin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/ratpack/ratpack 7 https://github.com/pgjdbc/pgjdbc 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/vaadin/framework 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/apache/xmlgraphics-batik 7 https://github.com/rundeck/rundeck 7 https://github.com/rubygems/rubygems 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/dataease/dataease 7 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/vert-x3/vertx-web 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/apache/hadoop 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/http4s/http4s 6 https://github.com/line/armeria 6 https://github.com/apache/pulsar 6 https://github.com/apache/tika 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/ls1intum/Ares 6 https://github.com/playframework/playframework 6 https://github.com/resteasy/resteasy 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/cui2shark/security 6 https://github.com/jquery/jquery-ui 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/apache/shiro 5 https://github.com/apache/openmeetings 5 https://github.com/protocolbuffers/protobuf 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/apiman/apiman 5 https://github.com/PowerJob/PowerJob 5 https://github.com/h2database/h2database 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/apache/karaf 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/alibaba/nacos 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/grails/grails-core 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/apache/geode 5 https://github.com/apache/shenyu 5 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/reportportal/reportportal 4 https://github.com/resteasy/Resteasy 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/skylot/jadx 4 https://github.com/yamcs/yamcs 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/alkacon/opencms-core 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/itext/itext7 4 https://github.com/infinispan/infinispan 4 https://github.com/apache/syncope 4 https://github.com/ktorio/ktor 4 https://github.com/xerial/snappy-java 4 https://github.com/apache/activemq-artemis 4 https://github.com/nightcloudos/new_cms 4 https://github.com/apache/solr 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/pippo-java/pippo 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jfinal/jfinal 4 https://github.com/orientechnologies/orientdb 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://github.com/qos-ch/logback 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/open-metadata/OpenMetadata 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/apache/santuario-java 3 https://github.com/Rabb1ter/cms 3 https://github.com/mbechler/marshalsec 3 https://bitbucket.org/b_c/jose4j 3 https://github.com/apache/ranger 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/google/guava 3 https://github.com/eclipse/lemminx 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/pf4j/pf4j 3 https://github.com/opengoofy/hippo4j 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/jooby-project/jooby 3 https://github.com/apache/storm 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/joniles/mpxj 3 https://github.com/li-yu320/cms 3 https://github.com/apache/jackrabbit 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/jenkinsci/cvs-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/jhy/jsoup 3 https://github.com/apache/geronimo 3 https://github.com/apache/flume 3 https://github.com/wildfly/wildfly-core 3 https://github.com/apache/dubbo 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/apache/derby 3 https://github.com/jeremylong/DependencyCheck 3 https://github.com/apache/cxf-fediz 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/eclipse-vertx/vert.x 3 https://github.com/jenkinsci/mailer-plugin 3 https://github.com/jenkinsci/mac-plugin 3