Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Critical Security Advisories
Loading...
Critical
Ecosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdyOTYtOGczeC1nMzZt
Improper Verification of Cryptographic SignatureEcosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/crewjam/saml
Source: GitHub Advisory Database
Blast Radius: 28.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRocTgtZ214eC1oNnc5
XML Processing error in github.com/crewjam/samlEcosystems: go
Packages: github.com/crewjam/saml
Source: GitHub Advisory Database
Blast Radius: 28.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/netlify/gotrue
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzM3ctbW02aC1ydjlw
Auth bypass in SAML providerEcosystems: go
Packages: github.com/netlify/gotrue
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/tyktechnologies/tyk-identity-broker
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU5OWgtOHdwai03NXhq
Authentication Bypass in tyk-identity-brokerEcosystems: go
Packages: github.com/tyktechnologies/tyk-identity-broker
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/square/go-jose, gopkg.in/square/go-jose.v1
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2cjktMzlqOS05OXdw
Elliptic Curve Key Disclosure in go-joseEcosystems: go
Packages: github.com/square/go-jose, gopkg.in/square/go-jose.v1
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: nukeviet/nukeviet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMyd3ItOHd4bS04NTJj
Deserialization of Untrusted Data in NukeVietEcosystems: packagist
Packages: nukeviet/nukeviet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: nukeviet/nukeviet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0cXYtZm13Yy1xeHB4
SQL Injection in NukeVietEcosystems: packagist
Packages: nukeviet/nukeviet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: safe-flat
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzcnYtbTJncC1tbTJy
Prototype pollution in safe-flatEcosystems: npm
Packages: safe-flat
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: safe-obj
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwZ2gtaG12NC1yM3Y1
Prototype pollution in safe-objEcosystems: npm
Packages: safe-obj
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: set-getter
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp2MzUteHFnNy1mOTJy
set-getter Prototype Pollution VulnerabilityEcosystems: npm
Packages: set-getter
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: expand-hash
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzd3ItdjR3eC01cXBj
Prototype PollutionEcosystems: npm
Packages: expand-hash
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV3MjUtaHhwNS1oOGM5
Improper Verification of Cryptographic SignatureEcosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: impacket
Source: GitHub Advisory Database
Blast Radius: 29.5
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1qNjMtNjR4Ny01N3hm
Path traversal in impacketEcosystems: pypi
Packages: impacket
Source: GitHub Advisory Database
Blast Radius: 29.5
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: localstack
Source: GitHub Advisory Database
Blast Radius: 18.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhwcjYtZjR2cS1teGNo
Command injection in LocalStackEcosystems: pypi
Packages: localstack
Source: GitHub Advisory Database
Blast Radius: 18.9
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.xmlbeans:xmlbeans
Source: GitHub Advisory Database
Blast Radius: 35.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13M3ItcGZtZy14cDky
Improper Restriction of Recursive Entity References in Apache XMLBeansEcosystems: maven
Packages: org.apache.xmlbeans:xmlbeans
Source: GitHub Advisory Database
Blast Radius: 35.6
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: com.mikesamuel:json-sanitizer
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tOGotOXg4NC1tOWN2
Arbitrary code injection in json-sanitizerEcosystems: maven
Packages: com.mikesamuel:json-sanitizer
Source: GitHub Advisory Database
Blast Radius: 19.5
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.tapestry:tapestry-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1qOHgtY3ByOC14Mzlo
Remote code execution in Apache TapestryEcosystems: maven
Packages: org.apache.tapestry:tapestry-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.maven:maven-core, org.apache.maven:maven-compat
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJmODgtNWhnOC05eDJ4
Origin Validation Error in Apache MavenEcosystems: maven
Packages: org.apache.maven:maven-core, org.apache.maven:maven-compat
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqcXctcjN3dy13ajJ3
Expression Language Injection in Apache SyncopeEcosystems: maven
Packages: org.apache.syncope:syncope-core
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: studio-42/elfinder
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwaDMtNDRyai05MnBy
elFinder before 2.1.59 contains multiple vulnerabilities leading to RCEEcosystems: packagist
Packages: studio-42/elfinder
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtMnAtZmh3eC05Mjg1
Incorrect Permission Assignment for Critical Resource in PloneEcosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: thefuck
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3d2YtMjY0NC1mOHg0
The Fuck Arbitrary File Deletion via Path TraversalEcosystems: pypi
Packages: thefuck
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: js-extend
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1oODItNTVjbS02Z2Zo
Prototype pollution vulnerability in js-extendEcosystems: npm
Packages: js-extend
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: @ronomon/opened
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZnNXctdzk5Zi1yajZ3
Command Injection in @ronomon/openedEcosystems: npm
Packages: @ronomon/opened
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 29.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2dzItODlocS1ocTI3
keycloak Self Stored Cross-site Scripting vulnerabilityEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 29.7
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: feehi/cms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdjNDUtajNtNS04cWZx
Server-Side Request Forgery in Feehi CMSEcosystems: packagist
Packages: feehi/cms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: laminas/laminas-http, zendframework/zendframework
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4OGYtcWY5Zi01Zmd3
Remote code execution in zendframework and laminas-httpEcosystems: packagist
Packages: laminas/laminas-http, zendframework/zendframework
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3djctM3Y0NS1oZzI5
Out-of-bounds ReadEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3Z2MtdjJ4di1ydnZo
Out-of-bounds Read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: nconf-toml
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4N2otNDN3Mi03cmo3
Prototype pollution in nconf-tomlEcosystems: npm
Packages: nconf-toml
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: merge-deep
Source: GitHub Advisory Database
Blast Radius: 58.5
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI2cmotOWNoNi1nMjY0
Prototype pollution in Merge-deepEcosystems: npm
Packages: merge-deep
Source: GitHub Advisory Database
Blast Radius: 58.5
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: nestie
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03cmctOHd2cS04NDZ2
Prototype pollution in nestieEcosystems: npm
Packages: nestie
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: flarum/core
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVxanEtNjl3Ni1mZzU3
XSS vulnerability with translatorEcosystems: packagist
Packages: flarum/core
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: ch.qos.logback:logback-core, ch.qos.logback:logback-classic
Source: GitHub Advisory Database
Blast Radius: 50.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZtZmctcmpqbS1yanJq
QOS.ch Logback vulnerable to Deserialization of Untrusted DataEcosystems: maven
Packages: ch.qos.logback:logback-core, ch.qos.logback:logback-classic
Source: GitHub Advisory Database
Blast Radius: 50.6
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.primefaces:primefaces
Source: GitHub Advisory Database
Blast Radius: 39.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWoyMzktNGdxZy01ajU0
Inadequate Encryption StrengthEcosystems: maven
Packages: org.primefaces:primefaces
Source: GitHub Advisory Database
Blast Radius: 39.9
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: jw.util
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3MmMtdzNxMy01NXFx
OS Command Injection in jw.utilEcosystems: pypi
Packages: jw.util
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
Ecosystems: rubygems
Packages: dragonfly
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4NTgteHA1di1mOHh4
Dragonfly contains remote code execution vulnerabilityEcosystems: rubygems
Packages: dragonfly
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.pulsar:pulsar
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNjdjQteHh2Ny05MzRx
Improper Verification of Cryptographic Signature in Apache Pulsar in TensorFlowEcosystems: maven
Packages: org.apache.pulsar:pulsar
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/MichaelMure/git-bug
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04OTgtaDRwbS1wcWZy
Arbitrary code execution due to an uncontrolled search path for the git binaryEcosystems: go
Packages: github.com/MichaelMure/git-bug
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: apiconnect-cli-plugins
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5bTktNDhwdy02bXB2
apiconnect-cli-plugins vulnerable to OS Command InjectionEcosystems: npm
Packages: apiconnect-cli-plugins
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: xmlhttprequest-ssl
Source: GitHub Advisory Database
Blast Radius: 56.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcybWgtMjY5eC03bWg1
Improper Certificate Validation in xmlhttprequest-sslEcosystems: npm
Packages: xmlhttprequest-ssl
Source: GitHub Advisory Database
Blast Radius: 56.7
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/russellhaering/gosaml2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2ODQtZzQ4My0yMjQ5
Signature Validation BypassEcosystems: go
Packages: github.com/russellhaering/gosaml2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/russellhaering/goxmldsig
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJyZnctaGc5bS1qNDdo
Signature Validation BypassEcosystems: go
Packages: github.com/russellhaering/goxmldsig
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: packagist
Packages: wp-cli/wp-cli
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3Z20tZjgzci12M3Fq
Improper Certificate Validation in WP-CLI frameworkEcosystems: packagist
Packages: wp-cli/wp-cli
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 3 years ago
Critical
Ecosystems: nuget
Packages: Wire
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhwdzctM3ZxMy1tbXY2
Insecure deserialization in WireEcosystems: nuget
Packages: Wire
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/influxdata/influxdb
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJybXAtZnc1ci1qNXF2
Improper Authentication in InfluxDBEcosystems: go
Packages: github.com/influxdata/influxdb
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/hashicorp/vault-plugin-secrets-gcp
Source: GitHub Advisory Database
Blast Radius: 28.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1cGMtcXZ3Yy1qZjNn
Improper Input Validation in HashiCorp VaultEcosystems: go
Packages: github.com/hashicorp/vault-plugin-secrets-gcp
Source: GitHub Advisory Database
Blast Radius: 28.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: gogs.io/gogs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVyMnYtNmdtNi12cHZo
Insecure Permissions in GogsEcosystems: go
Packages: gogs.io/gogs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmOHItNHF3bS1yN2pm
Improper Authentication in Apache Traffic ControlEcosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: rollup-plugin-serve
Source: GitHub Advisory Database
Blast Radius: 36.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRqNDYtbXA4NS1tdjhj
Path traversal in rollup-plugin-serveEcosystems: npm
Packages: rollup-plugin-serve
Source: GitHub Advisory Database
Blast Radius: 36.6
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: wifiscanner
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02cnctbTJ2OS03aHg0
OS Command Injection in wifiscannerEcosystems: npm
Packages: wifiscanner
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: node-extend
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnNDItNHdyYy1ncDQ3
Code Injection in node-extendEcosystems: npm
Packages: node-extend
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: access-policy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3MmYtN2Y4Ny01cjZj
Improper Input Validation in access-policyEcosystems: npm
Packages: access-policy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: cd-messenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3NTYtNHdodi00OHZj
Code Injection in cd-messengerEcosystems: npm
Packages: cd-messenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: 101
Source: GitHub Advisory Database
Blast Radius: 36.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN3Y3gtcnhnYy1jbXcz
Prototype pollution in 101Ecosystems: npm
Packages: 101
Source: GitHub Advisory Database
Blast Radius: 36.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: deep-override
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2NTktNTRjeC1nNHFy
Prototype Pollution in deep-overrideEcosystems: npm
Packages: deep-override
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: almost 3 years ago
Critical
Ecosystems: maven
Packages: org.mitre:openid-connect-parent
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThwMzYtcTYzZy02OHFo
Autobinding vulnerability in MITREid ConnectEcosystems: maven
Packages: org.mitre:openid-connect-parent
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 3 years ago
Critical
Ecosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 42.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqeDItNzZyYy0ydjd2
Kubernetes Privilege EscalationEcosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 42.2
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.openapitools:openapi-generator-online
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzeDQtbTg0Mi1mbXdm
Creation of Temporary File in Directory with Insecure Permissions in the OpenAPI-Generator online generatorEcosystems: maven
Packages: org.openapitools:openapi-generator-online
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: doc-path
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdtOGcteGhoOC1ybXdy
Prototype Pollution in doc-pathEcosystems: npm
Packages: doc-path
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: json8
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdoNDMtZ3gyNC1wNTI5
Prototype pollution in json8Ecosystems: npm
Packages: json8
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: nodemailer
Source: GitHub Advisory Database
Blast Radius: 52.3
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4d3ctajRmYy00MzVw
Command injection in nodemailerEcosystems: npm
Packages: nodemailer
Source: GitHub Advisory Database
Blast Radius: 52.3
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 35.5
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmcnYtOXBody12cnZy
Authorization bypass in StrapiEcosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 35.5
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: pomelo-monitor
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRqNTQtbXhmNi13eHgy
OS Command Injection in pomelo-monitorEcosystems: npm
Packages: pomelo-monitor
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: geojson2kml
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc4M3gtZnA3Mi1wOXFj
Command Injection in geojson2kmlEcosystems: npm
Packages: geojson2kml
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: tiny-conf
Source: GitHub Advisory Database
Blast Radius: 10.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRxOTctZmgzZi1qMjk0
Prototype Pollution in tiny-confEcosystems: npm
Packages: tiny-conf
Source: GitHub Advisory Database
Blast Radius: 10.2
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: get-git-data
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdqNmgtN2Nody14NGgy
Command injection in get-git-dataEcosystems: npm
Packages: get-git-data
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: swiper
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAzaGMtZnYyai1ycDY4
Prototype Pollution in swiperEcosystems: npm
Packages: swiper
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.solr:solr-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmN3Atajh4Ni14dndw
Incorrect Authorization in Apache SolrEcosystems: maven
Packages: org.apache.solr:solr-parent
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBmMmotOXFtcC1qcXIy
TypeORM vulnerable to MAID and Prototype PollutionEcosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: pulverizr
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtZjUtajVqOS05OXBw
OS Command Injection in pulverizrEcosystems: npm
Packages: pulverizr
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: node-prompt-here
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY4ZmgtOHJnbS0yMjdo
OS Command Injection in node-prompt-hereEcosystems: npm
Packages: node-prompt-here
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: closure-compiler-stream
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02NDctNXdmOS0zanAz
OS Command Injection in closure-compiler-streamEcosystems: npm
Packages: closure-compiler-stream
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: gulp-scss-lint
Source: GitHub Advisory Database
Blast Radius: 33.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0aGotcjdyMy05cnd2
OS Command Injection in gulp-scss-lintEcosystems: npm
Packages: gulp-scss-lint
Source: GitHub Advisory Database
Blast Radius: 33.6
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: gulp-tape
Source: GitHub Advisory Database
Blast Radius: 21.5
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg2N3gtOTh4Ny13djI2
OS Command Injection in gulp-tapeEcosystems: npm
Packages: gulp-tape
Source: GitHub Advisory Database
Blast Radius: 21.5
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: gulp-styledocco
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzM3AtNWo5Ni13OHFo
OS Command Injection in gulkp-styledoccoEcosystems: npm
Packages: gulp-styledocco
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: docker-compose-remote-api
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2cGotamg5NC01ZnBy
OS Command Injection in docker-compose-remote-apiEcosystems: npm
Packages: docker-compose-remote-api
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: ps-visitor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYyanYtMzNnaC14eDI5
Command Injection in ps-visitorEcosystems: npm
Packages: ps-visitor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: onion-oled-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJod3AtOXZtOS01NDdx
Command Injection in onion-oled-jsEcosystems: npm
Packages: onion-oled-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: picotts
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxN3EtNXY2ai14ZnY2
Command Injection in picottsEcosystems: npm
Packages: picotts
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: bson
Source: GitHub Advisory Database
Blast Radius: 57.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY4dzktMjc4OS02aGhy
Deserialization of Untrusted Data in bsonEcosystems: npm
Packages: bson
Source: GitHub Advisory Database
Blast Radius: 57.7
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: net.sf.mpxj:mpxj
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdjcDUtbTUyZi1taGg1
Improper Restriction of XML External Entity Reference in MPXJEcosystems: maven
Packages: net.sf.mpxj:mpxj
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.skywalking:oap-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdycGYtZ2c3di01ZzVo
SQL Injection in Apache SkyWalkingEcosystems: maven
Packages: org.apache.skywalking:oap-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.shiro:shiro-core
Source: GitHub Advisory Database
Blast Radius: 41.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2Z3ItY3ZxMy1xeGdm
Improper Authentication in Apache ShiroEcosystems: maven
Packages: org.apache.shiro:shiro-core
Source: GitHub Advisory Database
Blast Radius: 41.9
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.apache.shiro:shiro-core
Source: GitHub Advisory Database
Blast Radius: 41.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcydzktZmNqNS0zZmNn
Improper Authentication in Apache ShiroEcosystems: maven
Packages: org.apache.shiro:shiro-core
Source: GitHub Advisory Database
Blast Radius: 41.9
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.odata4j:odata4j-parent, org.odata4j:odata4j-dist, org.odata4j:odata4j-core
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzODItcXg1aC1ydnFo
SQL Injection in odata4jEcosystems: maven
Packages: org.odata4j:odata4j-parent, org.odata4j:odata4j-dist, org.odata4j:odata4j-core
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 3 years ago
Critical
Ecosystems: maven
Packages: org.odata4j:odata4j-parent, org.odata4j:odata4j-dist, org.odata4j:odata4j-core
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5NmctMjRjZy1mMjR3
SQL Injection in odata4jEcosystems: maven
Packages: org.odata4j:odata4j-parent, org.odata4j:odata4j-dist, org.odata4j:odata4j-core
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 3 years ago
Critical
Ecosystems: packagist
Packages: dweeves/magmi
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0NzUtcGNoNS02d3Z2
Authentication bypass in MAGMIEcosystems: packagist
Packages: dweeves/magmi
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: about 3 years ago
Critical
Ecosystems: pypi
Packages: gerapy
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc1N2otcTQ4cC05dm0y
Command injection in GerapyEcosystems: pypi
Packages: gerapy
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: about 3 years ago
Critical
Ecosystems: pypi
Packages: svglib
Source: GitHub Advisory Database
Blast Radius: 31.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN2Y2ctOHA3OS1qcGN2
SVGlib Vulnerable to XXE AttacksEcosystems: pypi
Packages: svglib
Source: GitHub Advisory Database
Blast Radius: 31.7
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: bestzip
Source: GitHub Advisory Database
Blast Radius: 34.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4djYtanB2dy1jeDZx
Command injection in bestzipEcosystems: npm
Packages: bestzip
Source: GitHub Advisory Database
Blast Radius: 34.6
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: safe-object2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwcTMteGYyNy01amYy
Prototype Pollution in safe-object2Ecosystems: npm
Packages: safe-object2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: worksmith
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4Mjktamo1cC1qNmhm
Prototype Pollution in worksmithEcosystems: npm
Packages: worksmith
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: nodee-utils
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2amgtcDdxOC1wY3Jn
Prototype Pollution in nodee-utilsEcosystems: npm
Packages: nodee-utils
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: gammautils
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBnbWctZ2Y1cC01NGo4
Prototype Pollution in gammautilsEcosystems: npm
Packages: gammautils
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: promisehelpers
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJqNWYtN2M4eC1namc0
Prototype Pollution in promisehelpersEcosystems: npm
Packages: promisehelpers
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: mock2easy
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0eGotd2NxNi1xd3g1
Code injection in mock2easyEcosystems: npm
Packages: mock2easy
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: gedi
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpoMm0tajhwcC01NXJj
Prototype Pollution in gediEcosystems: npm
Packages: gedi
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: node-oojs
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo0cncteDN2Zy1jOHI3
Prototype Pollution in node-oojsEcosystems: npm
Packages: node-oojs
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: locutus
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5OG0tcTNoci1wNXdx
Prototype Pollution in locutusEcosystems: npm
Packages: locutus
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: about 3 years ago
Statistics
Advisories: 18,752
Packages: 8,375
Repositories: 1,301
Ecosystems: 12
Packages: 8,375
Repositories: 1,301
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
magento/community-edition
34
com.fasterxml.jackson.core:jackson-databind
24
dolibarr/dolibarr
23
org.jenkins-ci.main:jenkins-core
18
net.mingsoft:ms-mcms
18
salt
17
moodle/moodle
15
drupal/core
14
topthink/framework
13
com.liferay.portal:release.portal.bom
13
langchain
12
com.liferay.portal:release.dxp.bom
12
mlflow
12
org.apache.dubbo:dubbo
12
magento/core
11
org.apache.struts:struts2-core
11
apache-airflow
10
drupal/drupal
10
vm2
10
funadmin/funadmin
9
phpmyadmin/phpmyadmin
9
tensorflow
9
org.xwiki.platform:xwiki-platform-oldcore
9
froxlor/froxlor
8
paddlepaddle
8
org.jeecgframework.boot:jeecg-boot-common
8
rdiffweb
8
tensorflow-cpu
8
tensorflow-gpu
8
org.xwiki.platform:xwiki-platform-web-templates
8
shopware/platform
8
studio-42/elfinder
7
rusqlite
7
sequelize
7
ansible
7
gogs.io/gogs
7
symfony/symfony
7
org.xwiki.platform:xwiki-platform-administration-ui
7
github.com/argoproj/argo-cd
6
parse-server
6
thorsten/phpmyfaq
6
ezsystems/ezpublish-kernel
6
aaptjs
6
github.com/answerdev/answer
6
mercurial
5
centreon/centreon
5
shopware/core
5
org.jeecgframework.boot:jeecg-boot-parent
5
org.apache.shiro:shiro-core
5
org.jenkins-ci.plugins:script-security
5
org.apache.activemq:activemq-client
5
steal
5
Microsoft.ChakraCore
5
mautic/core
5
org.xwiki.commons:xwiki-commons-xml
5
nodebb
5
org.xwiki.platform:xwiki-platform-web
5
prestashop/prestashop
5
safe-eval
5
ckb
5
zendframework/zendframework
5
Pillow
5
django
5
org.apache.inlong:manager-pojo
5
realms-shim
4
calibreweb
4
github.com/grafana/grafana
4
hermes-engine
4
contao/core-bundle
4
org.apache.tomcat.embed:tomcat-embed-core
4
spree_auth_devise
4
pyload-ng
4
feehi/cms
4
librenms/librenms
4
PaddlePaddle
4
org.apache.openmeetings:openmeetings-parent
4
contao/contao
4
smallvec
4
code.gitea.io/gitea
4
org.cloudfoundry.identity:cloudfoundry-identity-server
4
Django
4
github.com/hashicorp/vault
4
nilsteampassnet/teampass
4
net.opentsdb:opentsdb
4
apache-airflow-providers-apache-hive
4
org.xwiki.platform:xwiki-platform-flamingo-skin-resources
4
org.apache.inlong:manager-service
4
org.eclipse.jetty:jetty-server
4
org.jeecgframework.boot:jeecg-boot-base-core
4
swagger-ui
4
org.apache.kylin:kylin-server-base
4
org.xwiki.platform:xwiki-platform-appwithinminutes-ui
4
github.com/usememos/memos
4
baserproject/basercms
4
openssl-src
4
safer-eval
4
nukeviet/nukeviet
4
org.apache.tapestry:tapestry-core
4
github.com/argoproj/argo-cd/v2
4
messagepack-rs
4
org.apache.solr:solr-parent
3
pimcore/pimcore
3
lmdb
3
org.richfaces:richfaces-core
3
org.xwiki.platform:xwiki-platform-flamingo-theme-ui
3
org.xwiki.platform:xwiki-platform-panels-ui
3
github.com/hashicorp/nomad
3
publify_core
3
nvflare
3
org.jenkins-ci.plugins:active-directory
3
org.apache.logging.log4j:log4j-core
3
zendframework/zendframework1
3
showdoc/showdoc
3
org.zenframework.z8.dependencies.commons:log4j-1.2.17
3
ezsystems/ezplatform-kernel
3
org.apache.hadoop:hadoop-common
3
@openzeppelin/contracts-upgradeable
3
com.alibaba:dubbo
3
symfony/security-core
3
modoboa
3
log4j:log4j
3
org.apache.storm:storm
3
symfony/security
3
edu.stanford.nlp:stanford-corenlp
3
org.xwiki.platform:xwiki-platform-icon-ui
3
ro.pippo:pippo-core
3
com.hazelcast:hazelcast
3
org.keycloak:keycloak-core
3
org.apache.ozone:ozone-main
3
adodb/adodb-php
3
smarty/smarty
3
slpjs
3
strapi
3
dompdf/dompdf
3
browserify-shim
3
actix-web
3
mongoose
3
facade/ignition
3
org.apache.linkis:linkis
3
com.jflyfox:jflyfox_jfinal
3
codiad/codiad
3
jsrsasign
3
io.undertow:undertow-core
3
ibexa/core
3
org.apache.jmeter:ApacheJMeter
3
cobbler
3
org.springframework.security:spring-security-core
3
github.com/dexidp/dex
3
github.com/pterodactyl/wings
3
simplesamlphp/simplesamlphp
3
org.jenkins-ci.plugins.workflow:workflow-cps
3
io.dataease:dataease-plugin-common
3
rubygems-update
3
org.apache.any23:apache-any23
3
org.apache.solr:solr-core
3
org.xwiki.platform:xwiki-platform-search-ui
3
xcb
3
phpmailer/phpmailer
3
github.com/rancher/rancher
3
craftcms/cms
3
francoisjacquet/rosariosis
3
ray
3
codeigniter4/framework
3
org.apache.dolphinscheduler:dolphinscheduler
3
nokogiri
3
typo3/cms
3
elefant/cms
3
impresscms/impresscms
3
org.apache.ignite:ignite-core
3
id-map
3
handlebars
3
tribalsystems/zenario
3
codeigniter/framework
3
feathers-sequelize
3
github.com/go-gitea/gitea
3
org.apache.inlong:manager-web
3
org.jeecgframework.boot:jeecg-boot-base
3
slp-validate
3
async-git
2
python-keystoneclient
2
org.apache.flume.flume-ng-sources:flume-jms-source
2
llama-index
2
eslint-config-eslint
2
org.apache.inlong:manager-dao
2
org.jenkins-ci.plugins:semantic-versioning-plugin
2
github.com/sap/cloud-security-client-go
2
org.apache.shiro:shiro-web
2
apache-superset
2
mathjs
2
github.com/crewjam/saml
2
alextselegidis/easyappointments
2
github.com/russellhaering/gosaml2
2
total4
2
org.apache.derby:derby
2
laravel/framework
2
org.apache.commons:commons-configuration2
2
org.xwiki.platform:xwiki-platform-attachment-ui
2
Radicale
2
com.hazelcast.jet:hazelcast-jet
2
vyper
2
Filter by Repository
https://github.com/xwiki/xwiki-platform
81
https://github.com/FasterXML/jackson-databind
24
https://github.com/jenkinsci/jenkins
17
https://github.com/Dolibarr/dolibarr
15
https://github.com/saltstack/salt
14
https://github.com/apache/airflow
14
https://github.com/mlflow/mlflow
11
https://github.com/PaddlePaddle/Paddle
11
https://github.com/ming-soft/MCMS
10
https://github.com/patriksimek/vm2
10
https://github.com/jeecgboot/jeecg-boot
9
https://github.com/tensorflow/tensorflow
9
https://github.com/top-think/framework
9
https://github.com/funadmin/funadmin
9
https://github.com/django/django
9
https://github.com/langchain-ai/langchain
8
https://github.com/magento/magento2
8
https://github.com/apache/inlong
8
https://github.com/ikus060/rdiffweb
8
https://github.com/argoproj/argo-cd
7
https://github.com/gogs/gogs
7
https://github.com/go-gitea/gitea
7
https://github.com/python-pillow/Pillow
7
https://github.com/Studio-42/elFinder
7
https://github.com/apache/struts
7
https://github.com/sequelize/sequelize
7
https://github.com/rusqlite/rusqlite
7
https://github.com/ansible/ansible
7
https://github.com/answerdev/answer
6
https://github.com/symfony/symfony
6
https://github.com/shenzhim/aaptjs
6
https://github.com/xwiki/xwiki-commons
6
https://github.com/thorsten/phpmyfaq
6
https://github.com/parse-community/parse-server
6
https://github.com/shopware/platform
6
https://github.com/solidusio/solidus_auth_devise
5
https://github.com/froxlor/froxlor
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/moodle/moodle
5
https://github.com/NodeBB/NodeBB
5
https://github.com/apache/activemq
5
https://github.com/stealjs/steal
5
https://github.com/PrestaShop/PrestaShop
5
https://github.com/dromara/hutool
5
https://github.com/nervosnetwork/ckb
5
https://github.com/keycloak/keycloak
5
https://github.com/apache/tomcat
5
https://github.com/otake84/messagepack-rs
4
https://github.com/cloudfoundry/uaa
4
https://github.com/hwchase17/langchain
4
https://github.com/janeczku/calibre-web
4
https://github.com/swagger-api/swagger-ui
4
https://github.com/liufee/cms
4
https://github.com/OpenTSDB/opentsdb
4
https://github.com/grafana/grafana
4
https://github.com/servo/rust-smallvec
4
https://github.com/ezsystems/ezpublish-kernel
4
https://github.com/usememos/memos
4
https://github.com/dompdf/dompdf
4
https://github.com/pippo-java/pippo
4
https://github.com/pyload/pyload
4
https://github.com/contao/contao
4
https://github.com/CVEProject/cvelist
4
https://github.com/spring-projects/spring-framework
4
https://github.com/centreon/centreon-archived
3
https://github.com/cobbler/cobbler
3
https://github.com/opencast/opencast
3
https://github.com/pimcore/pimcore
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/shopware/shopware
3
https://github.com/rancher/rancher
3
https://github.com/facebook/hermes
3
https://github.com/star7th/showdoc
3
https://github.com/pterodactyl/wings
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/ImpressCMS/impresscms
3
https://github.com/facade/ignition
3
https://github.com/PHPMailer/PHPMailer
3
https://github.com/publify/publify
3
https://github.com/smarty-php/smarty
3
https://github.com/craftcms/cms
3
https://github.com/nukeviet/nukeviet
3
https://github.com/ezsystems/ezplatform-kernel
3
https://github.com/jflyfox/jfinal_cms
3
https://github.com/simpleledger/slpjs
3
https://github.com/phpmyadmin/phpmyadmin
3
https://github.com/crewjam/saml
3
https://github.com/chakra-core/ChakraCore
3
https://github.com/dataease/dataease
3
https://github.com/NVIDIA/NVFlare
3
https://github.com/ADOdb/ADOdb
3
https://github.com/ibexa/core
3
https://github.com/rubygems/rubygems.org
3
https://github.com/andrewhickman/id-map
3
https://github.com/apache/camel
3
https://github.com/rubygems/rubygems
3
https://github.com/twisted/twisted
3
https://github.com/hazelcast/hazelcast
3
https://github.com/actix/actix-web
3
https://github.com/modoboa/modoboa
3
https://github.com/dwisiswant0/advisory
3
https://github.com/run-llama/llama_index
3
https://github.com/jbroadway/elefant
3
https://github.com/strapi/strapi
3
https://github.com/octobercms/october
3
https://github.com/denoland/deno
3
https://github.com/mautic/mautic
3
https://github.com/TeamSeri0us/pocs
3
https://github.com/baserproject/basercms
3
https://github.com/LetianYuan/My-CVE-Public-References
3
https://github.com/dexidp/dex
3
https://github.com/github/securitylab
3
https://github.com/apache/shiro
3
https://github.com/neorazorx/facturascripts
3
https://github.com/kjur/jsrsasign
3
https://github.com/mbechler/marshalsec
3
https://github.com/jmrozanec/cron-utils
2
https://github.com/pytorch/serve
2
https://github.com/sjep/array
2
https://github.com/jfinal/jfinal
2
https://github.com/OpenAPITools/openapi-generator
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/top-think/thinkphp
2
https://github.com/SAP/cloud-pysec
2
https://github.com/apache/kylin
2
https://github.com/TribalSystems/Zenario
2
https://github.com/totaljs/framework
2
https://github.com/stanfordnlp/corenlp
2
https://github.com/HtmlUnit/htmlunit
2
https://github.com/ahdinosaur/set-in
2
https://github.com/kubernetes/kubernetes
2
https://github.com/Microsoft/ChakraCore
2
https://github.com/MrSwitch/hello.js
2
https://github.com/ibexa/admin-ui
2
https://github.com/evmos/evmos
2
https://github.com/beego/beego
2
https://github.com/dominictarr/libnested
2
https://github.com/fluxcd/flux2
2
https://github.com/moby/buildkit
2
https://github.com/unshiftio/url-parse
2
https://github.com/sidorares/node-mysql2
2
https://github.com/noear/solon
2
https://github.com/h2database/h2database
2
https://github.com/firebase/php-jwt
2
https://github.com/netvl/acc_reader
2
https://github.com/rubyzip/rubyzip
2
https://github.com/russellhaering/gosaml2
2
https://github.com/jenkinsci/semantic-versioning-plugin
2
https://github.com/rest-client/rest-client
2
https://github.com/hashicorp/go-getter
2
https://github.com/qcubed/qcubed
2
https://github.com/nats-io/jwt
2
https://github.com/getgrav/grav
2
https://github.com/rochacbruno/quokka
2
https://github.com/graphite-project/graphite-web
2
https://github.com/rails/rails
2
https://github.com/uasoft-indonesia/badaso
2
https://github.com/apache/flume
2
https://github.com/Froxlor/Froxlor
2
https://github.com/TogaTech/tEnvoy
2
https://github.com/PowerJob/PowerJob
2
https://github.com/Gerapy/Gerapy
2
https://github.com/rust-random/rand
2
https://github.com/hashicorp/nomad
2
https://github.com/vert-x3/vertx-web
2
https://github.com/apache/karaf
2
https://github.com/simplesamlphp/simplesamlphp
2
https://github.com/nilsteampassnet/teampass
2
https://github.com/sparklemotion/nokogiri
2
https://gitlab.com/francoisjacquet/rosariosis
2
https://github.com/laurent22/joplin
2
https://github.com/dominictarr/event-stream
2
https://github.com/KnpLabs/snappy
2
https://github.com/apache/incubator-streampark
2
https://github.com/SAP/cloud-security-services-integration-library
2
https://github.com/skoranga/node-dns-sync
2
https://github.com/commenthol/safer-eval
2
https://github.com/SAP/cloud-security-client-go
2
https://github.com/dfinity/agent-js
2
https://github.com/jaw187/node-traceroute
2
https://github.com/WWBN/AVideo
2
https://github.com/markevans/dragonfly
2
https://github.com/nilsteampassnet/TeamPass
2
https://github.com/soketi/soketi
2
https://github.com/line/armeria
2
https://github.com/gofiber/fiber
2
https://github.com/joomla/joomla-cms
2
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
2
https://github.com/google/flatbuffers
2
https://github.com/benbusby/whoogle-search
2
https://github.com/gventuri/pandas-ai
2
https://github.com/nodejs/llhttp
2
https://github.com/zoujingli/ThinkAdmin
2
https://github.com/Automattic/mongoose
2
https://github.com/handlebars-lang/handlebars.js
2
https://github.com/hashicorp/vault
2
https://github.com/ionicabizau/parse-url
2
https://github.com/cockpit-hq/cockpit
2
https://github.com/keystonejs/keystone
2