Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven Security Advisories

Loading...
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdyYzMtOHE4bS00ajdj
Improper privilege handling in Apache Accumulo
Ecosystems: maven
Packages: org.apache.accumulo:accumulo-master
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNtcXYtOGd4Zy1wZm00
TwitterServer Cross-site Scripting via /histograms endpoint
Ecosystems: maven
Packages: com.twitter:twitter-server_2.12
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2cGMtdzU3cC1xOTVm
HTTP Response Splitting in WSO2 transport-http
Ecosystems: maven
Packages: org.wso2.transport.http:org.wso2.transport.http.netty
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5M2MtaDhxbS03MjU2
Improper escaping in XWiki Platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-web
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS0yMjd3LXd2NGotNjdoNM0p3A
Class Loading Vulnerability in Artemis
Ecosystems: maven
Packages: de.tum.in.ase:artemis-java-test-sandbox
Source: GitHub Advisory Database
Blast Radius: 6.5
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdxNWctZ3BoMi00cmM2
Upload of file to arbitrary path in Apache Flink
Ecosystems: maven
Packages: org.apache.flink:flink-runtime
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc0bWctNnhxeC0ydnJx
Deserialization exploitation in Apache Dubbo
Ecosystems: maven
Packages: org.apache.dubbo:dubbo-parent
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFoaDUtOTczOC1nOW14
Incorrect Default Permissions in Apache DolphinScheduler
Ecosystems: maven
Packages: org.apache.dolphinscheduler:dolphinscheduler
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBwYzMtZnB2aC03Mzk2
Improper synchronization in Apache Netbeans HTML/Java API
Ecosystems: maven
Packages: org.netbeans.html:pom
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjdngtcm12Zi1teGNo
Cross-site Scripting in Eclipse Hawkbit
Ecosystems: maven
Packages: org.eclipse.hawkbit:hawkbit-parent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4NHctcmN2Mi02eDh4
Arbitrary code execution in Apache ServiceComb java-chassis
Ecosystems: maven
Packages: org.apache.servicecomb:java-chassis
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzaHctZzRobS03Z3I0
SQL injection without credentials in ming-soft MCMS
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY4dmMtd2ZjOC1oeHFo
Improper Privilege Management in Apache Hadoop
Ecosystems: maven
Packages: org.apache.hadoop:hadoop-common
Source: GitHub Advisory Database
Blast Radius: 38.3
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3OHctN2d4cC1tYzYz
SQL Injection in Spring Cloud Task
Ecosystems: maven
Packages: org.springframework.cloud:spring-cloud-task-dependencies
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhncngteHB2Mi02dnA0
Improper Authentication in Apache ActiveMQ
Ecosystems: maven
Packages: org.apache.activemq:activemq-parent
Source: GitHub Advisory Database
Blast Radius: 5.6
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxZmgtOW00Zy03eDZ4
Remote code execution in Apache ActiveMQ
Ecosystems: maven
Packages: org.apache.activemq:activemq-parent
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNoMmgteHFyMi0yanA3
Cross-site Scripting (XSS) in Apache ActiveMQ Artemis
Ecosystems: maven
Packages: org.apache.activemq:apache-artemis
Source: GitHub Advisory Database
Blast Radius: 12.0
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFoMmctN2g1cC1teGY0
Credentials bypass in Apache Druid
Ecosystems: maven
Packages: org.apache.druid:druid
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5OGotN2NyYy13dnJq
Authentication bypass in Apache Shiro
Ecosystems: maven
Packages: org.apache.shiro:shiro-spring-boot-starter, org.apache.shiro:shiro-spring, org.apache.shiro:shiro-web
Source: GitHub Advisory Database
Blast Radius: 42.9
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY2Z3ctY2g1di03NHY4
Cross-site scripting (XSS) in Apache ActiveMQ
Ecosystems: maven
Packages: org.apache.activemq:activemq-parent
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS0yamhtLXFwNDgtaHY1as0p2A
Missing authorization in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS03cGg2LTVjbXEteGdqcc0p1w
Path traversal in xwiki-platform-skin-skinx
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-skin-skinx
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS0zNWZnLWhqY3ItajY1Zs0p1g
Information exposure in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-web
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1qcDU1LXZ2bWYtNjNtds0p1Q
URL Redirection to Untrusted Site ('Open Redirect')
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1nZjd4LTJqMngtN2Y3M80p1A
Missing authorization in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1tZ2p3LTJ3cnAtcjUzNc0p0w
Remote code execution in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-administration-ui
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1mNGNqLTNxM2gtODg0cs0p0g
Partial authorization bypass on document save in xwiki-platform
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ2eG0tdnA0Yy1mamZ3
Authentication Bypass in Apache Cassandra
Ecosystems: maven
Packages: org.apache.cassandra:cassandra-all
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWoyMjktMmg2My1ydmg5
Improper Authentication for Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 2 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2ZmMtZzhqNS05Y2Nm
Generation of Error Message Containing Sensitive Information in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAyMjUtcGMyeC00anBt
Incorrect Authorization in keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4NHEtNzg0cC04bTVo
Cross-site Scripting in keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-services, org.keycloak:keycloak-server-spi-private
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNwNjctOHczdy02aDlj
Path Traversal
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcyajQtOTRyeC1jcjZ3
Incorrect Permission Assignment for Critical Resource and Permissive List of Allowed Inputs in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTUycmctaHB3cS1xcDU2
Allocation of Resources Without Limits or Throttling in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhncGctNTkzci1oaHZw
Cross-site Scripting in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM1OTctZjc0bS1qZ2My
Improper Certificate Validation and Improper Validation of Certificate with Host Mismatch in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-parent
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02bW0tcTg2Mi1qMzY2
Improper Input Validation in Keycloak
Ecosystems: maven
Packages: org.keycloak:keycloak-common, org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 26.9
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJoY3ctd2pjbS05aDZn
Denial of service in Undertow
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU0ZzQtNWNmNi1oanAz
Apache Hive Information Exposure and Observable Timing Discrepancy
Ecosystems: maven
Packages: org.apache.hive:hive
Source: GitHub Advisory Database
Blast Radius: 5.0
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNteDQtcDR2NS1obXI1
Server-side request forgery (SSRF) in Apache Batik
Ecosystems: maven
Packages: org.apache.xmlgraphics:batik
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtajItN3d4OC1xajR2
Server-side request forgery (SSRF) in Apache XmlGraphics Commons
Ecosystems: maven
Packages: org.apache.xmlgraphics:xmlgraphics-commons
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJoanItZmc2Yy12Mmg2
Unauthorized access to Class instance in Jinjava
Ecosystems: maven
Packages: com.hubspot.jinjava:jinjava
Source: GitHub Advisory Database
Blast Radius: 15.3
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjd2otMmhqMi12bWpq
Insufficient Session Expiration in Apache NiFi Registry
Ecosystems: maven
Packages: org.apache.nifi.registry:nifi-registry-web-api
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03anYtaHE3aC1tcTdj
Infinite Loop in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmNzctOGg3Zy1nZ2hw
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS12ODRnLWNmNWoteGpxeM0poQ
Path Traversal in Apache James Server
Ecosystems: maven
Packages: org.apache.james:james-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1xNXJ4LThjMmgtNXE3as0pZA
Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service
Ecosystems: maven
Packages: org.apache.gobblin:gobblin-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1wNDM1LXc0eG0tamo4eM0pYA
Hadoop token in temp file visible to all users in Apache Gobblin
Ecosystems: maven
Packages: org.apache.gobblin:gobblin-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1wcjM4LXFweG0tZzg4eM0pNg
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
Ecosystems: maven
Packages: org.apache.activemq:artemis-core-client
Source: GitHub Advisory Database
Blast Radius: 22.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS12N3dnLWNwd2MtMjRtNM0oEA
pgjdbc Does Not Check Class Instantiation when providing Plugin Classes
Ecosystems: maven
Packages: org.postgresql:postgresql
Source: GitHub Advisory Database
Blast Radius: 36.7
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS0zd2h4LXFyajUtaGgyaM0oMQ
Improper Input Validation in Apache Pulsar
Ecosystems: maven
Packages: org.apache.pulsar:pulsar
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1oaGg2LWNtMm0tM2ZoY80oEg
Allocation of Resources Without Limits or Throttling in iText
Ecosystems: maven
Packages: com.itextpdf:itext7-core
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS04YzloLTRxN2ctZnA3aM0oEw
Out-of-bounds Read in iText
Ecosystems: maven
Packages: com.itextpdf:itext7-core
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1jMzJnLTJtZ3ItY2ZxN80oEQ
Out-of-bounds Write in iText
Ecosystems: maven
Packages: com.itextpdf:itext7-core
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS00bXBqLTQ4OHItdmg2bc0oDw
Neo4j Graph Database vulnerable to Path Traversal
Ecosystems: maven
Packages: org.neo4j.procedure:apoc
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1ybXI1LWNwdjItdmdqZs0n7Q
Denial of Service by injecting highly recursive collections or maps in XStream
Ecosystems: maven
Packages: com.thoughtworks.xstream:xstream
Source: GitHub Advisory Database
Blast Radius: 33.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1tNmNqLTkzdjYtY3ZyNc0n8A
Junrar vulnerable to infinite loop via extracting carefully crafted RAR archive
Ecosystems: maven
Packages: com.github.junrar:junrar
Source: GitHub Advisory Database
Blast Radius: 19.8
Published: over 2 years ago
High
GSA_kwCzR0hTQS05ZjNqLXBtNmYtOWZtNc0nLg
Race condition in Apache Tomcat
Ecosystems: maven
Packages: org.apache.tomcat:tomcat
Source: GitHub Advisory Database
Blast Radius: 18.5
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS01NDR4LTJqeDktNHBmZ80mzw
Path traversal in Apache Karaf
Ecosystems: maven
Packages: org.apache.karaf:apache-karaf
Source: GitHub Advisory Database
Blast Radius: 16.4
Published: over 2 years ago
High
GSA_kwCzR0hTQS1qaDVnLTltNHYtOXZ2Oc0m0Q
Insecure Java Deserialization in Apache Karaf
Ecosystems: maven
Packages: org.apache.karaf.management:org.apache.karaf.management.server
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS03cmpwLWZnd2otNDdyd80mjQ
Missing authentication in ShenYu
Ecosystems: maven
Packages: org.apache.shenyu:shenyu-common
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS03d3E0LTg5eHgtZzYyas0mjw
Password exposure in ShenYu
Ecosystems: maven
Packages: org.apache.shenyu:shenyu-common
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS02djM5LXAyeHEtZzVjM80mjg
Missing authentication in ShenYu
Ecosystems: maven
Packages: org.apache.shenyu:shenyu-common
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1naDM4LXgyd20teG1jOM0mlg
Code injection in ShenYu
Ecosystems: maven
Packages: org.apache.shenyu:shenyu-common
Source: GitHub Advisory Database
Blast Radius: 16.1
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1oNjVmLWp2cXctbTlmas0mHg
Infinite Loop in Apache Xerces Java
Ecosystems: maven
Packages: xerces:xercesImpl
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: over 2 years ago
High
GSA_kwCzR0hTQS03N3JtLTl4OWgteGozZ80mxQ
NULL Pointer Dereference in Protocol Buffers
Ecosystems: maven, pypi, go, packagist, nuget
Packages: com.google.protobuf:protobuf-java, protobuf, github.com/protocolbuffers/protobuf, google/protobuf, Google.Protobuf
Source: GitHub Advisory Database
Blast Radius: 111.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS1xcWMyLXB2NjgtcTcyaM0mug
Mingsoft MCMS SQL injection vulnerability
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1jd3g5LXJwNHctNDU0Nc0muQ
Mingsoft MCMS vulnerable to Remote Code Execution via file upload.
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1waHdxLTlnYzQtcTVjOM0msg
Mingsoft MCMS SQL injection vulnerability
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS0yNmhtLXI2bWctOTYzY80mhg
SQL Injection in JeecgBoot
Ecosystems: maven
Packages: org.jeecgframework.boot:jeecg-boot-base-core, org.jeecgframework.boot:jeecg-boot-base
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS03N2hoLXA3cjYtNjZwds0l6g
Arbitrary File Upload in Mingsoft MCMS
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS04d3E3LWhoamotZnBxds0l6Q
RCE in Mingsoft MCMS
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1mcjV3LTk4bWMtamp2Z80l5Q
Arbitrary file upload in Mingsoft MCMS
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS12djM4LTR4Y2otcTRyd80kAQ
Cross-site Scripting in Apache Knox SSO
Ecosystems: maven
Packages: org.apache.knox:gateway-service-knoxsso
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS03NXZ3LTNtNXYtZnByaM0kIQ
corenlp is vulnerable to Improper Restriction of XML External Entity Reference
Ecosystems: maven
Packages: edu.stanford.nlp:stanford-corenlp
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: over 2 years ago
High
GSA_kwCzR0hTQS04ODN4LTZmY2gtNndqeM0kJg
Trust Boundary Violation due to Incomplete Blacklist in Test Failure Processing in Ares
Ecosystems: maven
Packages: de.tum.in.ase:artemis-java-test-sandbox
Source: GitHub Advisory Database
Blast Radius: 6.5
Published: over 2 years ago
Low
GSA_kwCzR0hTQS1mcGo3LTl4bTYtOGhncs0ijQ
Observable Discrepancy and Observable Timing Discrepancy in Jenkins Configuration as Code Plugin
Ecosystems: maven
Packages: io.jenkins:configuration-as-code
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1ydmg0LWcycmotaHI5Y80ikw
Path Traversal in Jenkins Warnings Next Generation Plugin
Ecosystems: maven
Packages: io.jenkins.plugins:warnings-ng
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1wOTJxLTdmaGgtbXEzNc0img
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1jMzhtLTdoNTMtZzl2NM0gwQ
Path traversal in Apache James
Ecosystems: maven
Packages: org.apache.james:james-server
Source: GitHub Advisory Database
Blast Radius: 10.7
Published: over 2 years ago
High
GSA_kwCzR0hTQS13OXAzLTVjcjgtbTNqas0kWg
Deserialization of Untrusted Data in Log4j 1.x
Ecosystems: maven
Packages: org.zenframework.z8.dependencies.commons:log4j-1.2.17, log4j:log4j
Source: GitHub Advisory Database
Blast Radius: 47.3
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS02NWZnLTg0ZjYtM2pxM80kaQ
SQL Injection in Log4j 1.2.x
Ecosystems: maven
Packages: org.zenframework.z8.dependencies.commons:log4j-1.2.17, log4j:log4j
Source: GitHub Advisory Database
Blast Radius: 52.7
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS12NTd4LWd4ZmotNDg0cc0kcQ
Security Advisory for "Log4Shell"
Ecosystems: maven
Packages: com.hazelcast:hazelcast, com.hazelcast.jet:hazelcast-jet
Source: GitHub Advisory Database
Blast Radius: 40.2
Published: over 2 years ago
High
GSA_kwCzR0hTQS1majJ3LXdmZ3YtbXdxNs0kcw
Denial of service in CBOR library
Ecosystems: maven
Packages: com.upokecenter:cbor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS0yNDU3LTIyNjMtbW05Zs0kfQ
Memory leak in micronaut-core
Ecosystems: maven
Packages: io.micronaut:micronaut-http
Source: GitHub Advisory Database
Blast Radius: 10.7
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS00NWh4LXdmaGotNDczeM0kjA
Arbitrary code execution in H2 Console
Ecosystems: maven
Packages: com.h2database:h2
Source: GitHub Advisory Database
Blast Radius: 53.2
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1yOGo0LTk2bXgtcmpjY80liA
Improper Restriction of XML External Entity Reference in skylot/jadx
Ecosystems: maven
Packages: io.github.skylot:jadx-core
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1nNzZqLTRjeHgtMjNoOc0kvw
Improper Handling of Insufficient Permissions or Privileges in MySQL Connectors Java
Ecosystems: maven
Packages: mysql:mysql-connector-java
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1mN3ZoLXF3cDMteDM3bc0kWQ
Deserialization of Untrusted Data in Apache Log4j
Ecosystems: maven
Packages: org.zenframework.z8.dependencies.commons:log4j-1.2.17, log4j:log4j
Source: GitHub Advisory Database
Blast Radius: 52.7
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1taDgzLWpjdzUtcmpoOM0jUA
XML External Entity Reference in edu.stanford.nlp:stanford-corenlp
Ecosystems: maven
Packages: edu.stanford.nlp:stanford-corenlp
Source: GitHub Advisory Database
Blast Radius: 20.5
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS04NXJxLWhwOHgtZ2hqcc0imA
Cross-Site Request Forgery in Jenkins Mailer Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:mailer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS12cXdnLTR2NmYtaDZ4Nc0ilw
Stored XSS vulnerability in Matrix Project Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:matrix-project
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS01NTh4LWg3cmctOTk3ds0imQ
Incorrect Permission Assignment for Critical Resource in Jenkins Mailer Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:mailer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1ncW0yLTJnY3gtcDg4d80ilg
Incorrect Permission Assignment for Critical Resource in Jenkins Credentials Binding Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:credentials
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS1qcHhqLXZncTUtcHJqY80ilQ
OS command execution vulnerability in Jenkins Docker Commons Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:docker-commons
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS13Mm1oLTZ4ajUtZjc3Zs0ilA
Incorrect Permission Assignment for Critical Resource in Jenkins Bitbucket Branch Source Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:cloudbees-bitbucket-branch-source
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
High
GSA_kwCzR0hTQS13NGp2LTZyZzQtcHI0bc0ikQ
Cross-Site Request Forgery in Jenkins Bitbucket Branch Source Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:cloudbees-bitbucket-branch-source
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS05d3hoLWpqajUtNjdjds0ikA
Missing permission checks in SSH Agent Plugin allow enumerating credentials IDs
Ecosystems: maven
Packages: org.jenkins-ci.plugins:ssh-agent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1nZzltLXgzY2ctNjl2aM0ijw
Access key stored in plain text by Jenkins Metrics Plugin
Ecosystems: maven
Packages: org.jenkins-ci.plugins:metrics
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Statistics
Advisories: 18,752
Packages: 8,375
Repositories: 973
Ecosystems: 12
Filter by Severity
Moderate 8,149 High 6,447 Critical 2,848 Low 1,014
Filter by Ecosystem
maven 5,573 packagist 3,982 pypi 3,848 npm 3,558 go 1,934 nuget 1,421 rubygems 815 cargo 780 swift 31 hex 30 actions 16 pub 8
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 134 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 org.keycloak:keycloak-core 47 com.liferay.portal:release.portal.bom 45 com.thoughtworks.xstream:xstream 36 com.jfinal:jfinal 36 org.apache.tomcat.embed:tomcat-embed-core 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 34 org.elasticsearch:elasticsearch 32 org.jenkins-ci.plugins:script-security 32 org.keycloak:keycloak-services 27 io.undertow:undertow-core 27 org.apache.solr:solr-core 25 org.keycloak:keycloak-parent 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.bouncycastle:bcprov-jdk14 22 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 com.vaadin:vaadin-bom 18 com.liferay.portal:release.dxp.bom 18 org.apache.geode:geode-core 17 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 org.bouncycastle:bcprov-jdk15 16 org.apache.jspwiki:jspwiki-main 15 org.apache.struts.xwork:xwork-core 15 org.apache.inlong:manager-pojo 14 org.xwiki.platform:xwiki-platform-web 14 org.apache.cxf:cxf 13 org.apache.hadoop:hadoop-main 13 com.vaadin:flow-server 12 org.jenkins-ci.plugins:git 12 org.bouncycastle:bcprov-jdk15on 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.apache.dolphinscheduler:dolphinscheduler 12 org.apache.hadoop:hadoop-common 11 org.apache.ranger:ranger 11 org.apache.cxf:cxf-core 11 org.apache.jspwiki:jspwiki-war 11 org.igniterealtime.openfire:parent 11 org.jeecgframework.boot:jeecg-boot-common 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.apache.james:james-server 11 org.apache.commons:commons-compress 11 org.mortbay.jetty:jetty 11 org.apache.camel:camel-core 11 com.xuxueli:xxl-job 11 org.apache.tomcat:tomcat-coyote 11 org.jenkins-ci.plugins:email-ext 11 org.apache.tika:tika-core 11 org.apache.inlong:manager-service 10 io.netty:netty 10 org.jboss.netty:netty 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.jenkins-ci.plugins:active-directory 9 org.apache.archiva:archiva 9 org.springframework:spring-web 9 org.jenkins-ci.plugins:config-file-provider 9 org.opennms:opennms 9 org.apache.xmlgraphics:batik 9 cn.hutool:hutool-core 9 org.jenkins-ci.plugins:electricflow 9 org.opencrx:opencrx-core-models 9 org.apache.hive:hive 9 io.jenkins:configuration-as-code 9 org.apache.tomcat:tomcat-catalina 9 org.apache.tapestry:tapestry-core 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 org.bouncycastle:bcprov-jdk15to18 9 org.springframework:spring-webmvc 9 org.apache.shiro:shiro-core 9 org.craftercms:crafter-studio 9 org.apache.kylin:kylin 8 io.jenkins.blueocean:blueocean 8 org.postgresql:postgresql 8 org.opencms:opencms-core 8 org.apache.ozone:ozone-main 8 org.apache.hive:hive-exec 8 org.graylog2:graylog2-server 8 org.apache.ambari:ambari 8 org.apache.pdfbox:pdfbox 8 org.webjars.npm:jquery 8 org.apache.santuario:xmlsec 8 org.yaml:snakeyaml 8 jquery-rails 8 jquery 8 org.jenkins-ci.plugins:ec2 8 org.apache.zeppelin:zeppelin 8 mysql:mysql-connector-java 8 com.hazelcast:hazelcast 8 org.jeecgframework.boot:jeecg-boot-base 7 org.jruby:jruby-stdlib 7 org.jenkins-ci.plugins:subversion 7 org.apache.hive:hive-service 7 io.jenkins.plugins:miniorange-saml-sp 7 org.apache.karaf:apache-karaf 7 org.apache.linkis:linkis 7 io.jenkins.plugins:warnings-ng 7 org.owasp.antisamy:antisamy 7 jQuery.UI.Combined 7 org.webjars.npm:jquery-ui 7 jquery-ui-rails 7 jquery-ui 7 org.apache.atlas:atlas-common 7 rubygems-update 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.jenkins-ci.plugins:mercurial 7 org.jenkins-ci.plugins:rundeck 7 org.apache.cxf:apache-cxf 7 net.opentsdb:opentsdb 7 org.jenkins-ci.plugins:openshift-deployer 7 org.apache.poi:poi 7 org.apache.tika:tika 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 jQuery 7 org.apache.inlong:manager-web 7 org.silverpeas.core:silverpeas-core-web 7 org.apache.activemq:activemq-parent 7 io.atomix:atomix 7 org.owasp.esapi:esapi 7 org.apache.logging.log4j:log4j-core 7 org.apache.spark:spark-core_2.11 7 org.apache.derby:derby 7 org.jenkins-ci.plugins:artifactory 7 org.jboss.resteasy:resteasy-client 7 io.dataease:dataease-plugin-common 7 org.jenkins-ci.plugins:gitlab-oauth 6 org.apache.storm:storm-core 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.apache.struts:struts2-rest-plugin 6 commons-fileupload:commons-fileupload 6 org.apache.shenyu:shenyu-common 6 org.xwiki.commons:xwiki-commons-xml 6 io.netty:netty-handler 6 com.jflyfox:jflyfox_jfinal 6 org.jenkins-ci.plugins:pipeline-maven 6 org.opencastproject:opencast-kernel 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.apache.syncope:syncope-core 6 org.apache.pulsar:pulsar-broker 6 org.apache.solr:solr-parent 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 org.apache.spark:spark-core_2.10 6 com.xebialabs.deployit.ci:deployit-plugin 6 org.apache.httpcomponents:httpclient 6 org.jenkins-ci.plugins:repository-connector 6 io.netty:netty-codec-http 6 cn.hutool:hutool-json 6 org.apache.axis:axis 6 axis:axis 6 org.csanchez.jenkins.plugins:kubernetes 6 org.bouncycastle:bcprov-jdk18on 6 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.apache.mesos:mesos 6 org.opensearch.plugin:opensearch-security 6 tech.powerjob:powerjob 6 hudson.plugins:project-inheritance 6 com.vaadin:vaadin-server 5 org.jenkins-ci.plugins:ghprb 5 org.dspace:dspace-jspui 5 org.jeecgframework.boot:jeecg-boot-base-core 5 org.jboss.resteasy:resteasy-bom 5 org.apache.hadoop:hadoop-client 5 org.neo4j.procedure:apoc 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins.m2release:m2release 5 org.jenkins-ci.plugins:junit 5 org.codehaus.jettison:jettison 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.jenkins-ci.plugins:publish-over-ssh 5 info.magnolia:magnolia-core 5 com.alibaba:dubbo 5 org.springframework.amqp:spring-amqp 5 xerces:xercesImpl 5 org.biouno:uno-choice 5 log4j:log4j 5 org.zenframework.z8.dependencies.commons:log4j-1.2.17 5 io.projectreactor.netty:reactor-netty-http 5 org.jenkins-ci.plugins:openid 5 com.coravy.hudson.plugins.github:github 5 struts:struts 5 org.jenkins-ci.plugins:google-login 5 org.apache.druid:druid 5 io.vertx:vertx-core 5 org.jenkins-ci.plugins:credentials 5 org.opennms:opennms-webapp 5 org.bouncycastle:bcprov-ext-jdk15on 5 com.synopsys.jenkinsci:ownership 5 io.vertx:vertx-web 5 org.jenkins-ci.plugins:sinatra-chef-builder 5 org.wildfly:wildfly-parent 5
Filter by Repository
https://github.com/xwiki/xwiki-platform 172 https://github.com/jenkinsci/jenkins 148 https://github.com/apache/tomcat 96 https://github.com/FasterXML/jackson-databind 70 https://github.com/keycloak/keycloak 58 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 41 https://github.com/x-stream/xstream 36 https://github.com/apache/activemq 33 https://github.com/CVEProject/cvelist 28 https://github.com/apache/inlong 26 https://github.com/eclipse/jetty.project 23 https://github.com/apache/nifi 21 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/OpenNMS/opennms 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/netty/netty 20 https://github.com/apache/cxf 19 https://github.com/cloudfoundry/uaa 19 https://github.com/bcgit/bc-java 19 https://github.com/vaadin/platform 17 https://github.com/opencast/opencast 16 https://github.com/geoserver/geoserver 15 https://github.com/apache/camel 15 https://github.com/undertow-io/undertow 13 https://github.com/xuxueli/xxl-job 13 https://github.com/dromara/hutool 13 https://github.com/quarkusio/quarkus 13 https://github.com/ming-soft/MCMS 13 https://github.com/apache/dolphinscheduler 12 https://github.com/apache/kylin 12 https://github.com/igniterealtime/Openfire 11 https://github.com/vaadin/flow 11 https://github.com/jenkinsci/git-plugin 10 https://github.com/apache/lucene-solr 9 https://github.com/spring-projects/spring-security 9 https://github.com/DSpace/DSpace 9 https://github.com/Graylog2/graylog2-server 9 https://github.com/jquery/jquery 9 https://github.com/cui2shark/cms 9 https://github.com/xwiki/xwiki-commons 8 https://github.com/jenkinsci/config-file-provider-plugin 8 https://github.com/hazelcast/hazelcast 8 https://github.com/nahsra/antisamy 8 https://github.com/apache/zeppelin 8 https://github.com/opensearch-project/security 8 https://github.com/pgjdbc/pgjdbc 7 https://github.com/jflyfox/jfinal_cms 7 https://github.com/apache/xmlgraphics-batik 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/vaadin/framework 7 https://github.com/dataease/dataease 7 https://github.com/ratpack/ratpack 7 https://github.com/OpenTSDB/opentsdb 7 https://github.com/RhinoSecurityLabs/CVEs 7 https://github.com/rubygems/rubygems 7 https://github.com/rundeck/rundeck 7 https://github.com/vert-x3/vertx-web 6 https://github.com/apache/tika 6 https://github.com/jenkinsci/electricflow-plugin 6 https://github.com/OpenRefine/OpenRefine 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/apache/hadoop 6 https://github.com/jenkinsci/gerrit-trigger-plugin 6 https://github.com/http4s/http4s 6 https://github.com/line/armeria 6 https://github.com/playframework/playframework 6 https://github.com/ls1intum/Ares 6 https://github.com/resteasy/resteasy 6 https://github.com/apache/pulsar 6 https://github.com/ESAPI/esapi-java-legacy 6 https://github.com/DrunkenShells/Disclosures 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/jenkinsci/ec2-plugin 6 https://github.com/cui2shark/security 6 https://github.com/jenkinsci/build-failure-analyzer-plugin 6 https://github.com/jquery/jquery-ui 6 https://bitbucket.org/snakeyaml/snakeyaml 6 https://github.com/protocolbuffers/protobuf 5 https://github.com/apache/openmeetings 5 https://github.com/jenkinsci/support-core-plugin 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/JLLeitschuh/security-research 5 https://github.com/jenkinsci/junit-plugin 5 https://github.com/apiman/apiman 5 https://github.com/jenkinsci/github-plugin 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/neo4j-contrib/neo4j-apoc-procedures 5 https://github.com/jenkinsci/gitlab-plugin 5 https://github.com/PowerJob/PowerJob 5 https://github.com/h2database/h2database 5 https://github.com/apache/karaf 5 https://github.com/jenkinsci/workflow-cps-global-lib-plugin 5 https://github.com/jenkinsci/email-ext-plugin 5 https://github.com/jettison-json/jettison 5 https://github.com/jenkinsci/publish-over-ssh-plugin 5 https://github.com/apache/geode 5 https://github.com/OpenAPITools/openapi-generator 5 https://github.com/jensdietrich/xshady-release 5 https://github.com/restlet/restlet-framework-java 5 https://github.com/jenkinsci/active-directory-plugin 5 https://github.com/grails/grails-core 5 https://github.com/alibaba/nacos 5 https://bitbucket.org/connect2id/nimbus-jose-jwt 5 https://github.com/jenkinsci/m2release-plugin 5 https://github.com/apache/shiro 5 https://github.com/apache/shenyu 5 https://github.com/reportportal/reportportal 4 https://github.com/jenkinsci/warnings-ng-plugin 4 https://github.com/jenkinsci/matrix-project-plugin 4 https://github.com/jenkinsci/htmlpublisher-plugin 4 https://github.com/jenkinsci/p4-plugin 4 https://github.com/jenkinsci/hpe-application-automation-tools-plugin 4 https://github.com/resteasy/Resteasy 4 https://github.com/jenkinsci/job-config-history-plugin 4 https://github.com/micronaut-projects/micronaut-core 4 https://github.com/skylot/jadx 4 https://github.com/jenkinsci/active-choices-plugin 4 https://github.com/yamcs/yamcs 4 https://github.com/shopizer-ecommerce/shopizer 4 https://github.com/jenkinsci/nexus-platform-plugin 4 https://github.com/alkacon/opencms-core 4 https://github.com/jenkinsci/libvirt-slave-plugin 4 https://github.com/apache/httpcomponents-client 4 https://github.com/jenkinsci/ansible-plugin 4 https://github.com/jenkinsci/xldeploy-plugin 4 https://github.com/nightcloudos/new_cms 4 https://github.com/jenkinsci/fortify-plugin 4 https://github.com/itext/itext7 4 https://github.com/stanfordnlp/corenlp 4 https://github.com/ktorio/ktor 4 https://github.com/HtmlUnit/htmlunit 4 https://github.com/jenkinsci/gitlab-oauth-plugin 4 https://github.com/aws/aws-iot-device-sdk-java-v2 4 https://github.com/xerial/snappy-java 4 https://github.com/apache/syncope 4 https://github.com/jfinal/jfinal 4 https://github.com/infinispan/infinispan 4 https://github.com/jenkinsci/rundeck-plugin 4 https://github.com/apache/activemq-artemis 4 https://github.com/jenkinsci/workflow-cps-plugin 4 https://github.com/jenkinsci/credentials-binding-plugin 4 https://github.com/pippo-java/pippo 4 https://github.com/apache/solr 4 https://github.com/bcgit/bc-csharp 4 https://github.com/qos-ch/logback 3 https://github.com/google/guava 3 https://github.com/open-metadata/OpenMetadata 3 https://github.com/joniles/mpxj 3 https://github.com/orientechnologies/orientdb 3 https://github.com/jenkinsci/azure-credentials-plugin 3 https://svn.apache.org/viewvc/lucene/dev 3 https://github.com/jenkinsci/scriptler-plugin 3 https://github.com/Rabb1ter/cms 3 https://bitbucket.org/b_c/jose4j 3 https://github.com/apache/santuario-java 3 https://github.com/jenkinsci/ci-with-toad-edge-plugin 3 https://github.com/jenkinsci/mercurial-plugin 3 https://github.com/OWASP/json-sanitizer 3 https://github.com/opengoofy/hippo4j 3 https://github.com/jenkinsci/azure-vm-agents-plugin 3 https://github.com/jenkinsci/audit-trail-plugin 3 https://github.com/eclipse/lemminx 3 https://github.com/eclipse-ee4j/mojarra 3 https://github.com/jenkinsci/nomad-plugin 3 https://github.com/peteroupc/CBOR-Java 3 https://github.com/pf4j/pf4j 3 https://github.com/jenkinsci/bitbucket-oauth-plugin 3 https://github.com/jenkinsci/cas-plugin 3 https://github.com/apache/storm 3 https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server 3 https://github.com/jooby-project/jooby 3 https://github.com/li-yu320/cms 3 https://github.com/jenkinsci/crx-content-package-deployer-plugin 3 https://github.com/apache/jackrabbit 3 https://github.com/jenkinsci/git-parameter-plugin 3 https://github.com/Jarvis-616/cms 3 https://github.com/jenkinsci/gitlab-branch-source-plugin 3 https://github.com/wso2/carbon-registry 3 https://github.com/jenkinsci/git-client-plugin 3 https://github.com/jenkinsci/cvs-plugin 3 https://github.com/codehaus-plexus/plexus-utils 3 https://github.com/jenkinsci/database-plugin 3 https://github.com/AsyncHttpClient/async-http-client 3 https://github.com/jhy/jsoup 3 https://github.com/apache/geronimo 3 https://github.com/apache/flume 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/aws/amazon-redshift-jdbc-driver 3 https://github.com/apache/dubbo 3 https://github.com/jenkinsci/embeddable-build-status-plugin 3 https://github.com/wildfly/wildfly-core 3 https://github.com/intranda/goobi-viewer-core 3 https://github.com/jeremylong/DependencyCheck 3 https://github.com/apache/derby 3 https://github.com/apache/commons-configuration 3 https://github.com/apache/cxf-fediz 3 https://github.com/Adobe-Consulting-Services/acs-aem-commons 3 https://github.com/jenkinsci/cloudbees-jenkins-advisor-plugin 3