Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Critical Security Advisories
Loading...
Critical
Ecosystems: npm
Packages: bufver-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyNHgtdzJ2Ny00bW1m
Malicious Package in bufver-xorEcosystems: npm
Packages: bufver-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffmr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2MzktY2dtbS1jcTI5
Malicious Package in buffmr-xorEcosystems: npm
Packages: buffmr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: cargo
Packages: ark-r1cs-std
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFqM3YtcTJ2ai00Yzho
Calculation error in ark-r1cs-stdEcosystems: cargo
Packages: ark-r1cs-std
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 2 years ago
Critical
Ecosystems: packagist
Packages: ibexa/admin-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS1nNmpjLXhyYzMtNHd3cc4AAv0d
Ibexa DXP users with the Company admin role can assign any role to any userEcosystems: packagist
Packages: ibexa/admin-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: buffer-xos
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyajMtZ2c4dy00ODU4
Malicious Package in buffer-xosEcosystems: npm
Packages: buffer-xos
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffer-xo2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3Mmgtd2Y1Ny03eHdo
Malicious Package in buffer-xo2Ecosystems: npm
Packages: buffer-xo2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: cargo
Packages: grep-cli, ripgrep
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0eGctZnhtZy12Y2c1
OS command injection in ripgrepEcosystems: cargo
Packages: grep-cli, ripgrep
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: over 2 years ago
Critical
Ecosystems: packagist
Packages: kimai/kimai
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: about 1 year ago
GSA_kwCzR0hTQS1yNThtLXY1cHItamhocc4AAxqX
Cross-site Scripting in kimai/kimaiEcosystems: packagist
Packages: kimai/kimai
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: about 1 year ago
Critical
Ecosystems: cargo
Packages: xcb
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMyODgtY3dndy1jaDg2
Unchecked Return Value in xcbEcosystems: cargo
Packages: xcb
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: over 2 years ago
Critical
Ecosystems: cargo
Packages: xcb
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1wNnItZmd3Mi1yeGZ4
Arbitrary return types in xcbEcosystems: cargo
Packages: xcb
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: buffer-xkr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3NTMtcTh4Ny1jY3g4
Malicious Package in buffer-xkrEcosystems: npm
Packages: buffer-xkr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffdr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg1NDktcDY4aC1tOW1j
Malicious Package in buffdr-xorEcosystems: npm
Packages: buffdr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffar-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY2NGctd2h4Zi13OGYy
Malicious Package in buffar-xorEcosystems: npm
Packages: buffar-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bubfer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZtNjctbWg5Ni05NW1x
Malicious Package in bubfer-xorEcosystems: npm
Packages: bubfer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: maven
Packages: org.richfaces:richfaces-core
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00ajM4LXdqaGYtODg0cs384Q
Arbitrary code execution in RichfacesEcosystems: maven
Packages: org.richfaces:richfaces-core
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 2 years ago
Critical
Ecosystems: maven
Packages: org.richfaces:richfaces-core
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0zaHg2LWZxcGoteGZqcs386w
RichFaces vulnerable to Expression Language InjectionEcosystems: maven
Packages: org.richfaces:richfaces-core
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3NnItaGo0NS1mdzdn
Sandbox Breakout / Arbitrary Code Execution in safer-evalEcosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.solr:solr-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmN3Atajh4Ni14dndw
Incorrect Authorization in Apache SolrEcosystems: maven
Packages: org.apache.solr:solr-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.craftercms:crafter-studio
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjNnEtanF3Yy00NDIz
Path Traversal in Crafter CMS Crafter StudioEcosystems: maven
Packages: org.craftercms:crafter-studio
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: clevertap-cordova
Source: GitHub Advisory Database
Blast Radius: 5.6
Published: 10 months ago
GSA_kwCzR0hTQS14MnBoLXFxd20tOWNjNs4AA0uL
CleverTap Cordova plugin vulnerable to Cross-site ScriptingEcosystems: npm
Packages: clevertap-cordova
Source: GitHub Advisory Database
Blast Radius: 5.6
Published: 10 months ago
Critical
Ecosystems: go
Packages: github.com/pingcap/tidb
Source: GitHub Advisory Database
Blast Radius: 26.5
Published: over 1 year ago
GSA_kwCzR0hTQS03ZnhqLWZyM3Ytcjlnas4AAvtj
TiDB vulnerable to Use of Externally-Controlled Format StringEcosystems: go
Packages: github.com/pingcap/tidb
Source: GitHub Advisory Database
Blast Radius: 26.5
Published: over 1 year ago
Critical
Ecosystems: maven
Packages: io.hawt:project
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: almost 2 years ago
GSA_kwCzR0hTQS1tNGo1LWhncXEtNWpmMs4AARcl
Insecure cookie sharing in HawtioEcosystems: maven
Packages: io.hawt:project
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: jmespath
Source: GitHub Advisory Database
Blast Radius: 44.7
Published: almost 2 years ago
GSA_kwCzR0hTQS01YzVmLTd2ZnEtMzczMs4AArZl
JMESPath for Ruby uses unsafe JSON.load when safe JSON.parse is preferableEcosystems: rubygems
Packages: jmespath
Source: GitHub Advisory Database
Blast Radius: 44.7
Published: almost 2 years ago
Critical
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
GSA_kwCzR0hTQS01MjZ4LXJtN2otdjM4Oc4AArXl
Privilege escalation in Hashicorp NomadEcosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
Critical
Ecosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 1 year ago
GSA_kwCzR0hTQS03d3FmLWgzNnctNDdtY84AAwAE
OS Command Injection in Apache AirflowEcosystems: pypi
Packages: apache-airflow
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: over 1 year ago
Critical
Ecosystems: rubygems
Packages: dragonfly
Source: GitHub Advisory Database
Blast Radius: 30.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1majM0LWpoangteG12ds4AArUb
Arbitrary file write in dragonflyEcosystems: rubygems
Packages: dragonfly
Source: GitHub Advisory Database
Blast Radius: 30.5
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: multi-ini
Source: GitHub Advisory Database
Blast Radius: 21.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3OGYtNTQ5dy1jMzU0
Prototype Pollution in multi-iniEcosystems: npm
Packages: multi-ini
Source: GitHub Advisory Database
Blast Radius: 21.0
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qbXc3LXBoNnAtMzNjY84AAXvi
Exposure of Sensitive Information in Jenkins CoreEcosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
Ecosystems: packagist
Packages: shopware/platform, shopware/storefront
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 months ago
GSA_kwCzR0hTQS1jMmY5LTRqbW0tdjQ1bc4AA5zD
Shopware's session is persistent in Cache for 404 pagesEcosystems: packagist
Packages: shopware/platform, shopware/storefront
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 months ago
Critical
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-catalina
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: almost 2 years ago
GSA_kwCzR0hTQS0zdngzLXhmNnEtcjV4cM4AAQYR
Exposure of Resource to Wrong Sphere in Apache TomcatEcosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-catalina
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: almost 2 years ago
Critical
Ecosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0yOXBoLWZqZjMtYzVjbc4AAXbk
Apache NiFi XSS issue in context path handlingEcosystems: maven
Packages: org.apache.nifi:nifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: npm-git-publish
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5bWctOTRmYy0yZng2
Command Injection in npm-git-publishEcosystems: npm
Packages: npm-git-publish
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: passport-cognito
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2YzUtaHdxZy0zeDVx
Improper Authorization in passport-cognitoEcosystems: npm
Packages: passport-cognito
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: wbe3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnN3ctMnBmNy1teG0y
Malicious Package in wbe3Ecosystems: npm
Packages: wbe3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: go
Packages: github.com/flipped-aurora/gin-vue-admin/server
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 1 year ago
GSA_kwCzR0hTQS03Z2M0LXI1anItOWh4ds4AAvim
Gin-vue-admin subject to Remote Code Execution via file upload vulnerabilityEcosystems: go
Packages: github.com/flipped-aurora/gin-vue-admin/server
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: rceat
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3N2MtODY3bS00bXFj
Malicious Package in rceatEcosystems: npm
Packages: rceat
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: about 2 years ago
GSA_kwCzR0hTQS1nYzc5LWdoNGYtOWc2d80tdQ
Server Side Template Injection in MCMSEcosystems: maven
Packages: net.mingsoft:ms-mcms
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: ecuvre
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNndm0tcnZmdi1jOTJy
Malicious Package in ecuvreEcosystems: npm
Packages: ecuvre
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: crpyto-js
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTczYzYtdndqaC1nM3Fo
Malicious Package in crpyto-jsEcosystems: npm
Packages: crpyto-js
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: over 3 years ago
Critical
Ecosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1qdzM2LW1ydmctajVmeM4AAvjj
Rdiffweb subject to Business Logic ErrorsEcosystems: pypi
Packages: rdiffweb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: coinstrig
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtM2otaDhmMi00eGg0
Malicious Package in coinstrigEcosystems: npm
Packages: coinstrig
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bp66
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThnYzYtNjVtbS14cjZy
Malicious Package in bp66Ecosystems: npm
Packages: bp66
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bitcroe-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtM3AteDJocC0ycGd4
Malicious Package in bitcroe-libEcosystems: npm
Packages: bitcroe-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bitconi-ops
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc5aHctdjk3dy1nNWY1
Malicious Package in bitconi-opsEcosystems: npm
Packages: bitconi-ops
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bitcoimjs-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2NnEtcDN4Ny00M2Z4
Malicious Package in bitcoimjs-libEcosystems: npm
Packages: bitcoimjs-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bitcionjslib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA0bWYtNHF2aC13OGc1
Malicious Package in bitcionjslibEcosystems: npm
Packages: bitcionjslib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bitcionjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFtZ2YtZnA4NS01NWdy
Malicious Package in bitcionjsEcosystems: npm
Packages: bitcionjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bictoinjs-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3aDMtZmhmNi03M3g5
Malicious Package in bictoinjs-libEcosystems: npm
Packages: bictoinjs-lib
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: @tomphttp/bare-server-node
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: about 2 months ago
GSA_kwCzR0hTQS04NmZjLWY5Z3ItdjUzM84AA5xc
HTTP Handling Vulnerability in the Bare serverEcosystems: npm
Packages: @tomphttp/bare-server-node
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: about 2 months ago
Critical
Ecosystems: npm
Packages: require-port
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJydm0tZ3FxOC1xMnd4
Malicious Package in require-portEcosystems: npm
Packages: require-port
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: jr-sha3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY3bXAtcGN2OS12dnE2
Malicious Package in jr-sha3Ecosystems: npm
Packages: jr-sha3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: cuffer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4bTQtcDZyMi1td3Jj
Malicious Package in cuffer-xorEcosystems: npm
Packages: cuffer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffur-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA3cXAtM2ZoNy1wdjRw
Malicious Package in buffur-xorEcosystems: npm
Packages: buffur-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: iie-viz
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmNTUtcmdweC1wNnJ4
Malicious Package in iie-vizEcosystems: npm
Packages: iie-viz
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: packagist
Packages: showdoc/showdoc
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
GSA_kwCzR0hTQS00Mjg2LWg0N2gtbTV2Ns0WtA
Showdoc File Upload VulnerabilityEcosystems: packagist
Packages: showdoc/showdoc
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: buffermxor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTUzNmYtMjY4Zi02Z3hj
Malicious Package in buffermxorEcosystems: npm
Packages: buffermxor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffer-yor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWcyYzQtNG02NC12eG0z
Malicious Package in buffer-yorEcosystems: npm
Packages: buffer-yor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: uploader-plugin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ4NmYtZnBmdi01aG1j
Malicious Package in uploader-pluginEcosystems: npm
Packages: uploader-plugin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffer-xmr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTUzMjctZ2ZxNS04ZjRt
Malicious Package in buffer-xmrEcosystems: npm
Packages: buffer-xmr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffer-8or
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRobTctNzNjaC12bTU5
Malicious Package in buffer-8orEcosystems: npm
Packages: buffer-8or
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffeb-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVnZ3gtZzI5NC1xajNx
Malicious Package in buffeb-xorEcosystems: npm
Packages: buffeb-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bqffer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4cXAtbXY2Ny1nNTI4
Malicious Package in bqffer-xorEcosystems: npm
Packages: bqffer-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: ember_cli_babe
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZtN2otNHJqNi1tdzJw
Malicious Package in ember_cli_babeEcosystems: npm
Packages: ember_cli_babe
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: yeoman-genrator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3ZzQtZm00Yy01NG05
Malicious Package in yeoman-genratorEcosystems: npm
Packages: yeoman-genrator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: log-symboles
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyMzItZnBxeC1tcWdy
Malicious Package in log-symbolesEcosystems: npm
Packages: log-symboles
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: pypi
Packages: pycrypto
Source: GitHub Advisory Database
Blast Radius: 43.9
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxMjctdjd4cC1jMzU2
Buffer Overflow in pycryptoEcosystems: pypi
Packages: pycrypto
Source: GitHub Advisory Database
Blast Radius: 43.9
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: json-serializer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNoaDItcnZoZy13cXdy
Malicious Package in json-serializerEcosystems: npm
Packages: json-serializer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.karaf:apache-karaf
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: over 1 year ago
GSA_kwCzR0hTQS1jMnA0LThtdnYtcndtds4AAwel
Apache Karaf vulnerable to potential code injectionEcosystems: maven
Packages: org.apache.karaf:apache-karaf
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: @wturyn/swagger-injector
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4N3ctZnJjcS12NG0z
Path Traversal in @wturyn/swagger-injectorEcosystems: npm
Packages: @wturyn/swagger-injector
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: serializes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4OTktMzQ4eC1oM3Jx
Malicious Package in serializesEcosystems: npm
Packages: serializes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: koa-body-parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxZ3EtbWZ2ai02cXhw
Malicious Package in koa-body-parseEcosystems: npm
Packages: koa-body-parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: mogobd
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjaGctZzk0ci02NHFn
Malicious Package in mogobdEcosystems: npm
Packages: mogobd
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bb-builder
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZtNnYtdzZxMi1tcnJx
Malicious Package in bb-builderEcosystems: npm
Packages: bb-builder
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: pensi-scheduler
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo0Y2gtbXc2Ni14bXF2
Malicious Package in pensi-schedulerEcosystems: npm
Packages: pensi-scheduler
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: @stoqey/gnuplot
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
GSA_kwCzR0hTQS03OTV3LTc0MjYtbTk0as4AAyCB
stoqey/gnuplot is vulnerable to command injectionEcosystems: npm
Packages: @stoqey/gnuplot
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: tiar
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRoamctdzN3dy0zOGM2
Malicious Package in tiarEcosystems: npm
Packages: tiar
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: cicada-render
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZtNm0tajJobS1weHJn
Malicious Package in cicada-renderEcosystems: npm
Packages: cicada-render
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: nuget
Packages: Autoupdater.NET.Official
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03NXAyLWhndzQtZzdmN84AAj_X
AutoUpdater.NET allows XXEEcosystems: nuget
Packages: Autoupdater.NET.Official
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: node-buc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzbTYtcnBydy04NjJ3
Malicious Package in node-bucEcosystems: npm
Packages: node-buc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: leetlog
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmbTgtZzN2bS01M2po
Malicious Package in leetlogEcosystems: npm
Packages: leetlog
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: go
Packages: github.com/caddyserver/caddy
Source: GitHub Advisory Database
Blast Radius: 32.7
Published: over 1 year ago
GSA_kwCzR0hTQS1ncjd3LXgyanAtM3hnd84AAvLr
Caddy vulnerable to Authentication Bypass due to mishandling of TLS client authenticationEcosystems: go
Packages: github.com/caddyserver/caddy
Source: GitHub Advisory Database
Blast Radius: 32.7
Published: over 1 year ago
Critical
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmeDYtdnA5Zy1yaDd2
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist bypassEcosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: over 5 years ago
Critical
Ecosystems: maven
Packages: org.apache.jena:jena-sdb
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 1 year ago
GSA_kwCzR0hTQS1nMnF3LTZ2cnItdjZwcc4AAv2u
Apache Jena vulnerable to Deserialization of Untrusted DataEcosystems: maven
Packages: org.apache.jena:jena-sdb
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: @openzeppelin/contracts-upgradeable
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZydzQtdzczci02bW04
TimelockController vulnerability in OpenZeppelin ContractsEcosystems: npm
Packages: @openzeppelin/contracts-upgradeable
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: over 2 years ago
Critical
Ecosystems: nuget
Packages: QuantConnect.Common
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13dzdyLTI3OGgtNDhtaM4AAm33
QuantConnect Lean vulnerable to insecure deserializationEcosystems: nuget
Packages: QuantConnect.Common
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
Ecosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: over 2 years ago
GSA_kwCzR0hTQS1wZm13LXZqNzQtcGg4Z80YjQ
HashiCorp Vault Incorrect Permission Assignment for Critical ResourceEcosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: require-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThqNmotNGgyYy1jNjVw
Arbitrary Code Execution in require-nodeEcosystems: npm
Packages: require-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: cargo
Packages: nanorand
Source: GitHub Advisory Database
Blast Radius: 34.3
Published: over 2 years ago
GSA_kwCzR0hTQS1yNTdyLWo5OGctNTg3Zs0fig
Pointer dereference in nanorandEcosystems: cargo
Packages: nanorand
Source: GitHub Advisory Database
Blast Radius: 34.3
Published: over 2 years ago
Critical
Ecosystems: packagist
Packages: knplabs/knp-snappy
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: about 1 year ago
GSA_kwCzR0hTQS1ncTZ3LXE2d2gtamdnY84AAyLG
PHAR deserialization allowing remote code executionEcosystems: packagist
Packages: knplabs/knp-snappy
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: ngx-pica
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2d2YtMnhjZi02d214
Malicious Package in ngx-picaEcosystems: npm
Packages: ngx-pica
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: set-in
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFyNHAtYzl3ci1waHI2
Prototype pollution in set-inEcosystems: npm
Packages: set-in
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: object-collider
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg1ZzItMjltOC1xZjJw
Prototype Pollution Vulnerability in object-colliderEcosystems: npm
Packages: object-collider
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: tensorplow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW0yZnAtYzc5aC1ycjc5
Malicious Package in tensorplowEcosystems: npm
Packages: tensorplow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: bowee
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdndmotNnY1Ny13amgz
Malicious Package in boweeEcosystems: npm
Packages: bowee
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 38.9
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJycG0tcGo3cC03ajlx
Spring Security OAuth vulnerable to remote code execution (RCE)Ecosystems: maven
Packages: org.springframework.security.oauth:spring-security-oauth2
Source: GitHub Advisory Database
Blast Radius: 38.9
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: reqest
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnNXEtcmo2Mi1jNDNn
Malicious Package in reqestEcosystems: npm
Packages: reqest
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: over 3 years ago
Critical
Ecosystems: cargo
Packages: slice-deque
Source: GitHub Advisory Database
Blast Radius: 29.5
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhyM2MtNm1tcC02bTM5
Memory corruption slice-dequeEcosystems: cargo
Packages: slice-deque
Source: GitHub Advisory Database
Blast Radius: 29.5
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: erquest
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRwbWctamdtNS0zamc2
Malicious Package in erquestEcosystems: npm
Packages: erquest
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: requesst
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjMzctMnJ3NS05ajd4
Malicious Package in requesstEcosystems: npm
Packages: requesst
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 3 years ago
Critical
Ecosystems: cargo
Packages: arr
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZodmotN2Y5cC13Nzg4
Multiple security issues including data race, buffer overflow, and uninitialized memory drop in arrEcosystems: cargo
Packages: arr
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 2 years ago
Statistics
Advisories: 18,341
Packages: 8,286
Repositories: 1,289
Ecosystems: 12
Packages: 8,286
Repositories: 1,289
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
magento/community-edition
27
com.fasterxml.jackson.core:jackson-databind
24
dolibarr/dolibarr
23
net.mingsoft:ms-mcms
18
org.jenkins-ci.main:jenkins-core
18
salt
16
moodle/moodle
15
com.liferay.portal:release.portal.bom
13
langchain
12
drupal/core
12
com.liferay.portal:release.dxp.bom
12
org.apache.dubbo:dubbo
12
topthink/framework
12
mlflow
12
magento/core
11
org.apache.struts:struts2-core
11
apache-airflow
10
vm2
10
tensorflow
9
org.xwiki.platform:xwiki-platform-oldcore
9
phpmyadmin/phpmyadmin
9
funadmin/funadmin
9
tensorflow-gpu
8
tensorflow-cpu
8
drupal/drupal
8
org.jeecgframework.boot:jeecg-boot-common
8
shopware/platform
8
rdiffweb
8
paddlepaddle
8
org.xwiki.platform:xwiki-platform-web-templates
8
froxlor/froxlor
7
rusqlite
7
org.xwiki.platform:xwiki-platform-administration-ui
7
ansible
7
sequelize
7
symfony/symfony
7
gogs.io/gogs
7
studio-42/elfinder
7
github.com/argoproj/argo-cd
6
thorsten/phpmyfaq
6
github.com/answerdev/answer
6
ezsystems/ezpublish-kernel
6
aaptjs
6
parse-server
6
centreon/centreon
5
org.apache.shiro:shiro-core
5
org.xwiki.platform:xwiki-platform-web
5
org.apache.tomcat.embed:tomcat-embed-core
5
nodebb
5
ckb
5
org.jeecgframework.boot:jeecg-boot-parent
5
steal
5
org.jenkins-ci.plugins:script-security
5
org.apache.activemq:activemq-client
5
org.xwiki.commons:xwiki-commons-xml
5
zendframework/zendframework
5
Microsoft.ChakraCore
5
shopware/core
5
org.apache.inlong:manager-pojo
5
mercurial
5
django
5
Pillow
5
safe-eval
5
org.cloudfoundry.identity:cloudfoundry-identity-server
4
smallvec
4
pyload-ng
4
contao/contao
4
spree_auth_devise
4
org.xwiki.platform:xwiki-platform-flamingo-skin-resources
4
librenms/librenms
4
contao/core-bundle
4
org.apache.inlong:manager-service
4
hermes-engine
4
org.apache.tapestry:tapestry-core
4
org.eclipse.jetty:jetty-server
4
org.apache.openmeetings:openmeetings-parent
4
PaddlePaddle
4
org.apache.kylin:kylin-server-base
4
code.gitea.io/gitea
4
safer-eval
4
mautic/core
4
swagger-ui
4
calibreweb
4
realms-shim
4
nukeviet/nukeviet
4
Django
4
github.com/hashicorp/vault
4
org.xwiki.platform:xwiki-platform-appwithinminutes-ui
4
prestashop/prestashop
4
github.com/usememos/memos
4
net.opentsdb:opentsdb
4
messagepack-rs
4
openssl-src
4
github.com/argoproj/argo-cd/v2
4
apache-airflow-providers-apache-hive
4
feehi/cms
4
baserproject/basercms
4
nilsteampassnet/teampass
4
org.jeecgframework.boot:jeecg-boot-base-core
4
rubygems-update
3
org.apache.any23:apache-any23
3
org.apache.linkis:linkis
3
github.com/hashicorp/nomad
3
nokogiri
3
@openzeppelin/contracts-upgradeable
3
github.com/dexidp/dex
3
feathers-sequelize
3
org.springframework.security:spring-security-core
3
jsrsasign
3
pimcore/pimcore
3
codeigniter4/framework
3
nvflare
3
zendframework/zendframework1
3
io.dataease:dataease-plugin-common
3
smarty/smarty
3
org.apache.ignite:ignite-core
3
cobbler
3
mongoose
3
github.com/rancher/rancher
3
com.hazelcast:hazelcast
3
edu.stanford.nlp:stanford-corenlp
3
org.jenkins-ci.plugins:active-directory
3
org.apache.logging.log4j:log4j-core
3
org.apache.hadoop:hadoop-common
3
org.apache.inlong:manager-web
3
org.apache.jmeter:ApacheJMeter
3
org.keycloak:keycloak-core
3
craftcms/cms
3
org.xwiki.platform:xwiki-platform-icon-ui
3
io.undertow:undertow-core
3
modoboa
3
ro.pippo:pippo-core
3
com.jflyfox:jflyfox_jfinal
3
showdoc/showdoc
3
symfony/security
3
symfony/security-core
3
com.alibaba:dubbo
3
github.com/pterodactyl/wings
3
publify_core
3
id-map
3
actix-web
3
log4j:log4j
3
slpjs
3
elefant/cms
3
org.apache.ozone:ozone-main
3
codiad/codiad
3
org.xwiki.platform:xwiki-platform-panels-ui
3
phpmailer/phpmailer
3
tribalsystems/zenario
3
org.apache.dolphinscheduler:dolphinscheduler
3
slp-validate
3
francoisjacquet/rosariosis
3
typo3/cms
3
org.xwiki.platform:xwiki-platform-flamingo-theme-ui
3
ray
3
strapi
3
facade/ignition
3
ezsystems/ezplatform-kernel
3
org.jenkins-ci.plugins.workflow:workflow-cps
3
org.xwiki.platform:xwiki-platform-search-ui
3
github.com/go-gitea/gitea
3
handlebars
3
org.apache.storm:storm
3
org.apache.solr:solr-parent
3
browserify-shim
3
impresscms/impresscms
3
org.richfaces:richfaces-core
3
dompdf/dompdf
3
ibexa/core
3
lmdb
3
org.apache.solr:solr-core
3
org.zenframework.z8.dependencies.commons:log4j-1.2.17
3
xcb
3
org.jeecgframework.boot:jeecg-boot-base
3
github.com/sap/cloud-security-client-go
2
org.apache.shiro:shiro-web
2
apache-superset
2
nadesiko3
2
tenvoy
2
org.apache.inlong:manager-dao
2
ghost
2
github.com/crewjam/saml
2
org.springframework.amqp:spring-amqp
2
alextselegidis/easyappointments
2
mathjs
2
org.apache.flume.flume-ng-sources:flume-jms-source
2
llama-index
2
eslint-config-eslint
2
github.com/russellhaering/gosaml2
2
locutus
2
org.apache.derby:derby
2
org.apache.commons:commons-configuration2
2
@sequelize/core
2
graphite-web
2
torchserve
2
traceroute
2
com.hazelcast.jet:hazelcast-jet
2
org.xwiki.platform:xwiki-platform-attachment-ui
2
pidusage
2
llhttp
2
Filter by Repository
https://github.com/xwiki/xwiki-platform
81
https://github.com/FasterXML/jackson-databind
24
https://github.com/jenkinsci/jenkins
17
https://github.com/Dolibarr/dolibarr
15
https://github.com/saltstack/salt
14
https://github.com/apache/airflow
14
https://github.com/mlflow/mlflow
11
https://github.com/PaddlePaddle/Paddle
11
https://github.com/ming-soft/MCMS
10
https://github.com/patriksimek/vm2
10
https://github.com/jeecgboot/jeecg-boot
9
https://github.com/funadmin/funadmin
9
https://github.com/tensorflow/tensorflow
9
https://github.com/apache/inlong
8
https://github.com/top-think/framework
8
https://github.com/django/django
8
https://github.com/magento/magento2
8
https://github.com/ikus060/rdiffweb
8
https://github.com/langchain-ai/langchain
8
https://github.com/ansible/ansible
7
https://github.com/gogs/gogs
7
https://github.com/apache/struts
7
https://github.com/Studio-42/elFinder
7
https://github.com/argoproj/argo-cd
7
https://github.com/rusqlite/rusqlite
7
https://github.com/python-pillow/Pillow
7
https://github.com/sequelize/sequelize
7
https://github.com/go-gitea/gitea
7
https://github.com/parse-community/parse-server
6
https://github.com/answerdev/answer
6
https://github.com/thorsten/phpmyfaq
6
https://github.com/xwiki/xwiki-commons
6
https://github.com/shenzhim/aaptjs
6
https://github.com/shopware/platform
6
https://github.com/symfony/symfony
6
https://github.com/apache/tomcat
5
https://github.com/stealjs/steal
5
https://github.com/apache/activemq
5
https://github.com/nervosnetwork/ckb
5
https://github.com/NodeBB/NodeBB
5
https://github.com/moodle/moodle
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/froxlor/froxlor
5
https://github.com/solidusio/solidus_auth_devise
5
https://github.com/keycloak/keycloak
5
https://github.com/dromara/hutool
4
https://github.com/dompdf/dompdf
4
https://github.com/ezsystems/ezpublish-kernel
4
https://github.com/pippo-java/pippo
4
https://github.com/janeczku/calibre-web
4
https://github.com/otake84/messagepack-rs
4
https://github.com/swagger-api/swagger-ui
4
https://github.com/contao/contao
4
https://github.com/OpenTSDB/opentsdb
4
https://github.com/PrestaShop/PrestaShop
4
https://github.com/CVEProject/cvelist
4
https://github.com/usememos/memos
4
https://github.com/liufee/cms
4
https://github.com/pyload/pyload
4
https://github.com/spring-projects/spring-framework
4
https://github.com/hwchase17/langchain
4
https://github.com/servo/rust-smallvec
4
https://github.com/cloudfoundry/uaa
4
https://github.com/neorazorx/facturascripts
3
https://github.com/github/securitylab
3
https://github.com/dexidp/dex
3
https://github.com/apache/shiro
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/baserproject/basercms
3
https://github.com/pterodactyl/wings
3
https://github.com/simpleledger/slpjs
3
https://github.com/phpmyadmin/phpmyadmin
3
https://github.com/smarty-php/smarty
3
https://github.com/cobbler/cobbler
3
https://github.com/opencast/opencast
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/facade/ignition
3
https://github.com/TeamSeri0us/pocs
3
https://github.com/rubygems/rubygems.org
3
https://github.com/facebook/hermes
3
https://github.com/mbechler/marshalsec
3
https://github.com/hazelcast/hazelcast
3
https://github.com/jflyfox/jfinal_cms
3
https://github.com/pimcore/pimcore
3
https://github.com/star7th/showdoc
3
https://github.com/rancher/rancher
3
https://github.com/ImpressCMS/impresscms
3
https://github.com/publify/publify
3
https://github.com/dwisiswant0/advisory
3
https://github.com/centreon/centreon-archived
3
https://github.com/shopware/shopware
3
https://github.com/LetianYuan/My-CVE-Public-References
3
https://github.com/kjur/jsrsasign
3
https://github.com/chakra-core/ChakraCore
3
https://github.com/dataease/dataease
3
https://github.com/run-llama/llama_index
3
https://github.com/jbroadway/elefant
3
https://github.com/strapi/strapi
3
https://github.com/apache/camel
3
https://github.com/octobercms/october
3
https://github.com/ibexa/core
3
https://github.com/denoland/deno
3
https://github.com/NVIDIA/NVFlare
3
https://github.com/crewjam/saml
3
https://github.com/modoboa/modoboa
3
https://github.com/actix/actix-web
3
https://github.com/PHPMailer/PHPMailer
3
https://github.com/ezsystems/ezplatform-kernel
3
https://github.com/rubygems/rubygems
3
https://github.com/nukeviet/nukeviet
3
https://github.com/twisted/twisted
3
https://github.com/craftcms/cms
3
https://github.com/andrewhickman/id-map
3
https://github.com/pytorch/serve
2
https://github.com/sidorares/node-mysql2
2
https://github.com/javamelody/javamelody
2
https://github.com/Netflix/security-bulletins
2
https://github.com/neo4j-contrib/neo4j-apoc-procedures
2
https://github.com/kubernetes/kubernetes
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/nodejs/llhttp
2
https://github.com/sjep/array
2
https://github.com/apache/submarine
2
https://github.com/OpenAPITools/openapi-generator
2
https://github.com/drupal/core
2
https://github.com/folio-org/mod-data-export-spring
2
https://github.com/apache/jmeter
2
https://github.com/google/flatbuffers
2
https://github.com/scalyr/scalyr-agent-2
2
https://github.com/IceWhaleTech/CasaOS
2
https://github.com/SAP/cloud-security-client-go
2
https://github.com/intelliants/subrion
2
https://github.com/benbusby/whoogle-search
2
https://github.com/laurent22/joplin
2
https://github.com/js-data/js-data
2
https://github.com/graphite-project/graphite-web
2
https://github.com/quarkusio/quarkus
2
https://github.com/gventuri/pandas-ai
2
https://github.com/dominictarr/event-stream
2
https://github.com/rochacbruno/quokka
2
https://github.com/Microsoft/ChakraCore
2
https://github.com/KnpLabs/snappy
2
https://github.com/gnzlbg/slice_deque
2
https://github.com/ADOdb/ADOdb
2
https://github.com/keystonejs/keystone
2
https://github.com/jfinal/jfinal
2
https://github.com/TribalSystems/Zenario
2
https://github.com/cockpit-hq/cockpit
2
https://github.com/stanfordnlp/corenlp
2
https://github.com/codeigniter4/CodeIgniter4
2
https://github.com/Automattic/mongoose
2
https://github.com/rest-client/rest-client
2
https://github.com/netvl/acc_reader
2
https://github.com/michaelschwarz/Ajax.NET-Professional
2
https://github.com/h2database/h2database
2
https://github.com/handlebars-lang/handlebars.js
2
https://github.com/jenkinsci/semantic-versioning-plugin
2
https://github.com/HtmlUnit/htmlunit
2
https://github.com/hashicorp/vault
2
https://github.com/totaljs/framework
2
https://github.com/noear/solon
2
https://github.com/top-think/thinkphp
2
https://github.com/getgrav/grav
2
https://github.com/web2py/web2py
2
https://github.com/SAP/cloud-pysec
2
https://github.com/nats-io/jwt
2
https://github.com/zoujingli/ThinkAdmin
2
https://github.com/jenkinsci/script-security-plugin
2
https://github.com/qcubed/qcubed
2
https://github.com/nystudio107/craft-seomatic
2
https://github.com/mautic/mautic
2
https://github.com/russellhaering/gosaml2
2
https://github.com/jmrozanec/cron-utils
2
https://github.com/hashicorp/go-getter
2
https://github.com/rubyzip/rubyzip
2
https://github.com/apache/kylin
2
https://github.com/ahdinosaur/set-in
2
https://github.com/waycrate/swhkd
2
https://github.com/ionicabizau/parse-url
2
https://github.com/reem/rust-traitobject
2
https://github.com/actix/actix-net
2
https://github.com/Agoric/realms-shim
2
https://github.com/gofiber/fiber
2
https://github.com/apache/incubator-streampark
2
https://github.com/git-lfs/git-lfs
2
https://github.com/puma/puma
2
https://github.com/skoranga/node-dns-sync
2
https://github.com/nilsteampassnet/teampass
2
https://github.com/evmos/evmos
2
https://github.com/rust-random/rand
2
https://github.com/MrSwitch/hello.js
2
https://github.com/OpenMage/magento-lts
2
https://github.com/ezsystems/ezplatform-admin-ui
2
https://github.com/xwiki/xwiki-rendering
2
https://github.com/grafana/grafana
2
https://github.com/Gerapy/Gerapy
2
https://github.com/Codiad/Codiad
2
https://github.com/moby/buildkit
2
https://github.com/soketi/soketi
2