Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Low Security Advisories
Loading...
Low
Ecosystems: go
Packages: gogs.io/gogs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wajk2LTRqaHYtdjc5Ms4AArT9
Cross site scripting via cookies in gogsEcosystems: go
Packages: gogs.io/gogs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: solidus_backend
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: almost 2 years ago
GSA_kwCzR0hTQS04NjM5LXF4NTYtcjQyOM4AArTb
CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backendEcosystems: rubygems
Packages: solidus_backend
Source: GitHub Advisory Database
Blast Radius: 6.2
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05cXJwLWg3ZnctNDJoZ84AArTY
Path Traversal in XWiki PlatformEcosystems: maven
Packages: org.xwiki.platform:xwiki-platform-oldcore
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13OTQyLWZ3OTItbXFtMs4AApza
Magento Information Disclosure vulnerabilityEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:support-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05MnBnLThnNTctaHFweM4AAnqH
Support bundles can include user session IDs in Jenkins Support Core PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:support-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: opencart/opencart
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: almost 2 years ago
GSA_kwCzR0hTQS0zajZtLW01djUtOTc4Nc4AAm2e
OpenCart Cross-Site Request Forgery (CSRF)Ecosystems: packagist
Packages: opencart/opencart
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.google.gerrit:gerrit-plugin-api
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1nNXEyLWN4Z3EtaDJyd84AAm1i
Information leak in GerritEcosystems: maven
Packages: com.google.gerrit:gerrit-plugin-api
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: gitaly
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1tbW1tLWNoamYtam12d84AAmp5
Gitaly Insufficient Session Expiration vulnerabilityEcosystems: rubygems
Packages: gitaly
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tcjhxLTdmNWotd2M3Oc4AAmnC
Magento information disclosure vulnerabilityEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
GSA_kwCzR0hTQS0zOXJ3LTRtNjYtODJnZs4AAmmH
Magento incorrect user permissions vulnerability within the Inventory componentEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
GSA_kwCzR0hTQS1yd2Y3LTY1MmYtNzZtds4AAml3
Magento 2 Community Edition vulnerable to Improper AuthorizationEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:labmanager
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1jZzRoLWNmanAtaDN4Ms4AAmgS
Password stored in plain text by Jenkins VMware Lab Manager Slaves PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:labmanager
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.rapid7:jenkinsci-appspider-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ybTdyLXh2NTMteHdjM84AAmgP
Password stored in plain text by Jenkins AppSpider PluginEcosystems: maven
Packages: com.rapid7:jenkinsci-appspider-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.hoiio.jenkins:sms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS12d2Z2LXFwdzgtODNjN84AAmK3
Access token stored in plain text by Jenkins SMS Notification PluginEcosystems: maven
Packages: com.hoiio.jenkins:sms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:couchdb-statistics
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qcmpyLTdyZjQtM3dxaM4AAmKu
Password stored in plain text by Jenkins couchdb-statistics PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:couchdb-statistics
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:Parameterized-Remote-Trigger
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13cGhxLWo3OHAtZmhncM4AAlxz
Secret stored in plain text by Jenkins Parameterized Remote Trigger PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:Parameterized-Remote-Trigger
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:tfs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13NmMyLWpyaGgtanJ4Z84AAlx_
Credentials stored in plain text by Jenkins tfs PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:tfs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:email-ext
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01YzR2LXZoOTUtYzY3Y84AAllH
Jenkins Email Extension Plugin SMTP password transmitted and displayed in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:email-ext
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:hp-quality-center
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mYzNqLWNmcXYtcGZybc4AAlOp
Password stored in plain text by Jenkins HP ALM Quality Center PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:hp-quality-center
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:StashBranchParameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0zZjgyLXYzcXctNTNxN84AAlOU
Passwords transmitted in plain text by Jenkins Stash Branch Parameter PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:StashBranchParameter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:ec2
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13Nmh3LTU3anEtaDdmNc4AAknq
CSRF vulnerability in Amazon EC2 PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:ec2
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:credentials-binding
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03ZmY4LXFmd3gtOGd4Nc4AAknO
Improper masking of some secrets in Jenkins Credentials Binding PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:credentials-binding
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:artifactory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00cTQ3LXBoODctZnE0Zs4AAkDS
Passwords stored in plain text by Jenkins Artifactory PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:artifactory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:artifactory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14cWY2LTVncmgtNjIyM84AAkDL
Passwords transmitted in plain text by Jenkins Artifactory PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:artifactory
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:skytap
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xMnd2LW0zcHEteHB2Oc4AAjx7
Credentials transmitted in plain text by Skytap Cloud CI PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:skytap
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:openshift-deployer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0ycnJ4LXE2NWYtODk0Nc4AAjxp
Credentials transmitted in plain text by OpenShift Deployer PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:openshift-deployer
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.openmake:deployhub
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1obTU3LTRxcHgtZjczNM4AAjx2
Credentials transmitted in plain text by Jenkins DeployHub PluginEcosystems: maven
Packages: com.openmake:deployhub
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tMzY1LTk4ajgtdzk2d84AAjx3
Jenkins Zephyr for JIRA Test Management Plugin stores credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:backlog
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wNjhjLXhnODktMmc1cs4AAjx4
Credentials transmitted in plain text by Backlog PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:backlog
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:sonar-quality-gates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS02ZmgzLXhod2ctN2hmaM4AAjx1
Jenkins Sonar Quality Gates Plugin transmits credentials in plain text during configurationEcosystems: maven
Packages: org.jenkins-ci.plugins:sonar-quality-gates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:logstash
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01cGc4LWY4OXgtd2pjeM4AAjxy
Credentials transmitted in plain text by Jenkins Logstash PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:logstash
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-enterprise-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14djU4LWdwNDMtNm03Ns4AAjxo
Credentials stored in plain text by Zephyr Enterprise Test Management PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:zephyr-enterprise-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:repository-connector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00ZmpjLWZ3ajItN3hmZ84AAjxi
Credentials transmitted in plain text by Repository Connector PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:repository-connector
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:quality-gates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ndmNqLTcyaDQtOHhtOc4AAjx0
Jenkins Quality Gates Plugin transmits credentials in plain text during configurationEcosystems: maven
Packages: org.jenkins-ci.plugins:quality-gates
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: Nova
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: almost 2 years ago
GSA_kwCzR0hTQS0yMmptLTRoeHctMzVqZs4AAjo7
OpenStack Nova can leak consoleauth token into log filesEcosystems: pypi
Packages: Nova
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.dubture.jenkins:digitalocean-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04ZzZ2LWc4cWMtNXc3as4AAjkp
Token stored in plain text by DigitalOcean PluginEcosystems: maven
Packages: com.dubture.jenkins:digitalocean-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: ru.yandex.jenkins.plugins.debuilder:debian-package-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS02NGpyLWdndzgtaDlqY84AAjks
Credentials stored in plain text by debian-package-builder PluginEcosystems: maven
Packages: ru.yandex.jenkins.plugins.debuilder:debian-package-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: RPD:bmc-rpd
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0yajNyLXg2eGMtcXFxas4AAjkO
Credential stored in plain text by BMC Release Package and Deployment PluginEcosystems: maven
Packages: RPD:bmc-rpd
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:s3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mZnI2LThjdjUtajYzN84AAjkV
Jenkins S3 Publisher Plugin transmits credentials in plain text during configurationEcosystems: maven
Packages: org.jenkins-ci.plugins:s3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:azure-ad
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS12dmcyLWhnM2MtbXFqM84AAjkh
Client secret transmitted in plain text by Azure AD PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:azure-ad
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03eHA4LTd3cXgtNWhxeM4AAjcV
Jenkins REST APIs vulnerable to clickjackingEcosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:ec2
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05aHZmLXBmcTMtN3BwNs4AAjR5
CSRF vulnerability in Jenkins Amazon EC2 PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:ec2
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:weibo
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01Yzk3LWd4cjMtcjM2OM4AAi-l
Jenkins Weibo Plugin stores credentials unencrypted in its global configuration fileEcosystems: maven
Packages: org.jenkins-ci.plugins:weibo
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: almost 2 years ago
GSA_kwCzR0hTQS1tNHdoLTg0OGotOXcycs4AAixg
Katello cleartext password storage issueEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: almost 2 years ago
Low
Ecosystems: hex
Packages: rabbit_common
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
GSA_kwCzR0hTQS05cGY3LWY0N3EtbXdwcc4AAiwc
Cross-site Scripting in RabbitMQEcosystems: hex
Packages: rabbit_common
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:qmetry-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03OTN3LXEyaDUtOGg1as4AAivX
Jenkins QMetry for JIRA Plugin shows plain text password in configuration formEcosystems: maven
Packages: org.jenkins-ci.plugins:qmetry-for-jira-test-management
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.inflectra.spiratest.plugins:inflectra-spira-integration
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wd2c3LTRoeHYtdjRjd84AAivO
Plaintext Storage in Jenkins Spira Importer PluginEcosystems: maven
Packages: com.inflectra.spiratest.plugins:inflectra-spira-integration
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.elasticbox.jenkins-ci.plugins:elasticbox
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yOXhjLTU0Y3EtOTlyN84AAiY4
Cleartext Storage of Sensitive Information in Jenkins ElasticBox CI PluginEcosystems: maven
Packages: com.elasticbox.jenkins-ci.plugins:elasticbox
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.mtvi.plateng.hudson:ldapemail
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01M2p3LTRnd2gtbThjbc4AAiOF
Jenkins LDAP Email Plugin shows plain text password in configuration formEcosystems: maven
Packages: com.mtvi.plateng.hudson:ldapemail
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: io.jenkins.plugins:dingding-notifications
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14ZzhwLWNwN2YtY3BoeM4AAiOC
DingTalk Plugin stores credentials in plain textEcosystems: maven
Packages: io.jenkins.plugins:dingding-notifications
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.technicolor:elOyente
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qdjYyLTZ4dmMtY2N3aM4AAiIf
Jenkins elOyente Plugin has Insufficiently Protected CredentialsEcosystems: maven
Packages: com.technicolor:elOyente
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:application-director-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oeDgyLTJnZ3YtdndtNc4AAiIY
Jenkins vFabric Application Director Plugin Insufficiently Protected CredentialsEcosystems: maven
Packages: org.jenkins-ci.plugins:application-director-plugin
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:assembla
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1taHE2LWg5bTctd3E4Y84AAiIk
Jenkins Assembla Plugin has Insufficiently Protected CredentialsEcosystems: maven
Packages: org.jenkins-ci.plugins:assembla
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.villagechief.codescan.jenkins:codescan
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qcDhyLWpoNWotY2d3Zs4AAiId
Jenkins CodeScan Plugin has Insufficiently Protected CredentialsEcosystems: maven
Packages: com.villagechief.codescan.jenkins:codescan
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.inedo.proget:inedo-proget
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mNmc4LXB4dnAtOTMyOM4AAiIK
Jenkins Inedo ProGet Plugin Plugin has Cleartext Transmission of Sensitive InformationEcosystems: maven
Packages: com.inedo.proget:inedo-proget
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.inedo.proget:inedo-proget
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1weHYyLW1mcTctdmhwNs4AAiIj
Jenkins Inedo BuildMaster Plugin showed plain text password in configuration formEcosystems: maven
Packages: com.inedo.proget:inedo-proget
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.gradle:gradle-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oaHIyLWY2NjgtZmYyd84AAiEl
Use of a weak cryptographic algorithm in GradleEcosystems: maven
Packages: org.gradle:gradle-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:beaker-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05Njc4LTVmNmYtd3AzZs4AAiCL
Jenkins Beaker Builder Plugin has Insufficiently Protected CredentialsEcosystems: maven
Packages: org.jenkins-ci.plugins:beaker-builder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:aqua-serverless
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01NmdqLTkyN3AtbWZwaM4AAiB_
Jenkins Aqua Security Serverless Scanner Plugin showed plain text password in job configuration form fieldsEcosystems: maven
Packages: org.jenkins-ci.plugins:aqua-serverless
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:testlink
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xY2ZyLTY1aGYtZjk4eM4AAhn4
Jenkins TestLink Plugin stores credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:testlink
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins.m2release:m2release
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS12d3g4LXFwcWgtcXdtOc4AAhfm
Jenkins Maven Release Plug-in Plugin stored credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins.m2release:m2release
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:azure-ad
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qY3dqLWo1NzQtOGoyY84AAgmI
Jenkins Azure AD Plugin stored the client secret unencryptedEcosystems: maven
Packages: org.jenkins-ci.plugins:azure-ad
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:aqua-microscanner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1nZzhyLTI0cW0tcWZjaM4AAgmS
Jenkins Aqua MicroScanner Plugin stored credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:aqua-microscanner
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:twitter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14MmN4LWg3dzQtcTZ4N84AAgmC
Jenkins Twitter Plugin stores credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:twitter
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:azure-publishersettings-credentials
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yZmM4LXdycmYtd3Azd84AAgeE
Jenkins Azure PublisherSettings Credentials Plugin stored credentials in plain textEcosystems: maven
Packages: org.jenkins-ci.plugins:azure-publishersettings-credentials
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:git, org.jenkins-ci.plugins:mercurial, org.jenkins-ci.plugins:repo
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04dmZjLWZjcjItNDdwas4AAgZA
Path traversal in Jenkins REPO PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:git, org.jenkins-ci.plugins:mercurial, org.jenkins-ci.plugins:repo
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.plugins:mercurial
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01Nzg2LTNxamctbXI4OM4AAgY-
Path traversal in Jenkins Mercurial PluginEcosystems: maven
Packages: org.jenkins-ci.plugins:mercurial
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: drupal/drupal
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wam14LTRnYzYtaHd2OM4AAgJb
Drupal cross-site scripting vulnerability via actions feature and trigger moduleEcosystems: packagist
Packages: drupal/drupal
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wY205LWZwNTUtNTYzds4AAf23
OWASP HTML Sanitizer allows redirecting to an arbitrary URL when JavaScript is disabledEcosystems: maven
Packages: com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01NmY4LWc2OHItajY5Oc4AAf1H
Cross-site Scripting in Apache StrutsEcosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: virtualenv
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0zamhjLXdqcWYtNWYyY84AAf0J
Virtualenv Allows Symlink Attack on /tmp/Ecosystems: pypi
Packages: virtualenv
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xN3YyLXczOHItcHY3ds4AAfkT
phpMyAdmin Multiple XSS VulnerabilitiesEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: Nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14eGdtLXFwajUtNDg4Ns4AAfko
OpenStack Nova Scheduler denial of service through scheduler_hintsEcosystems: pypi
Packages: Nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: typo3/cms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03d3dyLXA4NHEtcXIzcc4AAfiu
Typo3 Backend XSS VulnerabilitiesEcosystems: packagist
Packages: typo3/cms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: keyring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wM2g3LTNjNDUtcWo0ds4AAfZ-
Python Keyring does not securely initialize encryption cipherEcosystems: pypi
Packages: keyring
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yZnBnLTJmcDgtMmZwaM4AAfWz
phpMyAdmin multiple cross-site scripting vulnerabilitiesEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yM3BxLW1wOHYtY3AzM84AAfQa
phpMyAdmin Multiple Cross-site Scripting Vulnerabilities in the Database Structure pageEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00M2NtLTczcHgtNXY0bc4AAfDv
OpenStack Compute (Nova) Resource limit circumvention in Nova private flavorsEcosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: cinder
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xM3J3LXdjajYtOGNqZs4AAe62
OpenStack Cinder LVMVolumeDriver does not zero deleted snapshotsEcosystems: pypi
Packages: cinder
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mODg5LXdmd20tNnA3bc4AAeuL
OpenStack Identity Keystone Privilege Escalation vulnerabilityEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: glance
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00eHc2LWhqNXAtNGo3Oc4AAetK
OpenStack Glance sensitive information disclosure via logsEcosystems: pypi
Packages: glance
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: almost 2 years ago
GSA_kwCzR0hTQS14ZmpxLTlyeHEtcGg2bc4AAesN
Plone Denial of Service vulnerability via decompressing large zip archivesEcosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: almost 2 years ago
GSA_kwCzR0hTQS1tbTMyLWp3NzMtOTIyN84AAesM
Plone is vulnerable to File System Path ExposureEcosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qdjM0LXh2anEtcHBjaM4AAeqY
OpenStack Nova VMWare driver leaks rescued imagesEcosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: ajenti
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05Y3J4LXAzNTctNXZ3OM4AAeli
Ajenti Cross-site scripting (XSS) vulnerabilityEcosystems: pypi
Packages: ajenti
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yeHJtLXh2cDQtanF2aM4AAeks
OpenStack Keystone Sensitive information disclosure via log filesEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: kafo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oeHZwLTY1NXgteHhxds4AAekI
Kafo allows local users to obtain passwords and other sensitive information by reading default_values.yamlEcosystems: rubygems
Packages: kafo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01NjQ0LTJ2M2gtNXc0eM4AAefz
OpenStack Nova denial of service through compressed disk imagesEcosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13NDI5LXhjNTUtaGM0OM4AAefd
OpenStack Nova host data leak to vm instance in rescue modeEcosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0ydzg3LTVxY2otajZneM4AAefe
OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 imageEcosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ocjU5LTM1Y3ItcWY0M84AAeQ8
Plone Cross-site scripting VulnerabilityEcosystems: pypi
Packages: plone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01cDY5LXJteDgtN2d3N84AAd7q
phpMyAdmin Multiple XSS VulnerabilitiesEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0zcDg3LXczYzUtMjdnZs4AAd7r
phpMyAdmin Multiple XSS Vulnerabilities After Inline Editing and SaveEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: ceph-deploy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03OWpmLWNjbTgtNDN3N84AAdxo
ceph-deploy uses world-readable permissions on client.admin keyEcosystems: pypi
Packages: ceph-deploy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13djhnLWZ4OWotcTJqZ84AAdaE
phpMyAdmin cross-site scripting Vulnerability via ENUM valueEcosystems: packagist
Packages: phpmyadmin/phpmyadmin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.owasp.esapi:esapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qY3A5LTc5NmctcHY5cM4AAdXJ
Missing Cryptographic Step in OWASP Enterprise Security API for JavaEcosystems: maven
Packages: org.owasp.esapi:esapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wdjg4LWo2cmctcjU2cM4AAdTd
Jenkins allows attackers to obtain sensitive informationEcosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: neutron
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oaHBqLTZwajctd3B4Nc4AAdRw
OpenStack Neutron Race condition vulnerabilityEcosystems: pypi
Packages: neutron
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: oauth2
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1ydjhoLXA0M3ItNHg1cs4AAdHu
SimpleGeo python-oauth2 vulnerable to the use of Insufficiently Random Values to generate noncesEcosystems: pypi
Packages: oauth2
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: ceph-deploy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05dzRmLTN2MzctNmY3Nc4AAcy3
ceph-deploy allows local users to obtain sensitive information by reading the fileEcosystems: pypi
Packages: ceph-deploy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Statistics
Advisories: 18,695
Packages: 8,369
Repositories: 447
Ecosystems: 12
Packages: 8,369
Repositories: 447
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
109
tensorflow-gpu
93
tensorflow-cpu
93
moodle/moodle
17
concrete5/concrete5
13
shopware/platform
12
typo3/cms
11
github.com/mattermost/mattermost/server/v8
10
shopware/core
10
phpmyadmin/phpmyadmin
10
nova
9
org.apache.tomcat:tomcat
9
org.jenkins-ci.main:jenkins-core
9
matrix-synapse
7
vyper
7
Umbraco.CMS
6
puppet
6
undici
5
typo3/cms-core
5
k8s.io/kubernetes
5
wasmtime
5
sweetalert2
5
helm.sh/helm/v3
5
rack
5
october/backend
5
ansible
5
baserproject/basercms
5
electron
4
shopware/shopware
4
github.com/cilium/cilium
4
helm.sh/helm
4
org.keycloak:keycloak-services
4
magento/community-edition
4
github.com/mattermost/mattermost-server/v6
4
com.vaadin:flow-server
4
simplesamlphp/simplesamlphp
4
actionpack
4
github.com/cosmos/cosmos-sdk
3
bin-links
3
nautobot
3
go.etcd.io/etcd
3
org.graylog2:graylog2-server
3
ethyca-fides
3
plone
3
glance
3
@openzeppelin/contracts-upgradeable
3
wagtail
3
com.vaadin:vaadin-bom
3
org.apache.hive:hive-exec
3
org.apache.hive:hive-service
3
org.apache.hive:hive
3
ckb
3
node-forge
3
cryptography
3
passenger
3
httplib2
3
sylius/sylius
3
symfony/symfony
3
github.com/mattermost/mattermost-server
3
org.apache.activemq:activemq-parent
2
@openzeppelin/contracts
2
Flask-Security-Too
2
django
2
winter/wn-backend-module
2
silverstripe/framework
2
github.com/opencontainers/runc
2
braces
2
org.jenkins-ci.plugins:azure-ad
2
github.com/authzed/spicedb
2
next-auth
2
org.jenkins-ci.plugins:bigpanda-jenkins
2
github.com/cometbft/cometbft
2
org.jenkins-ci.plugins:wso2id-oauth
2
org.jenkins-ci.plugins:artifactory
2
activesupport
2
github.com/mattermost/mattermost-plugin-jira
2
horizon
2
s2n-quic
2
cargo
2
vantage6
2
org.jenkins-ci.plugins:repository-connector
2
org.jenkins-ci.plugins:mercurial
2
go.etcd.io/etcd/client/v3
2
github.com/mutagen-io/mutagen
2
typo3/cms-install
2
aiohttp
2
grumpydictator/firefly-iii
2
Zope
2
moin
2
com.inedo.proget:inedo-proget
2
github.com/sigstore/cosign
2
org.jenkins-ci.plugins:ec2
2
github.com/containerd/containerd
2
Pillow
2
github.com/answerdev/answer
2
node-ipc
2
Django
2
salt
2
ceph-deploy
2
@apollo/server
2
tools.devnull:build-notifications
2
craftcms/cms
2
nokogiri
2
github.com/hashicorp/nomad
2
github.com/ntbosscher/gobase
2
com.ruoyi:ruoyi
2
OctoPrint
2
flarum/core
2
gilacms/gila
2
ezsystems/ezplatform-kernel
2
ezsystems/ezpublish-kernel
2
langchain
2
Flask-AppBuilder
2
microweber/microweber
2
keystone
2
october/cms
2
typo3/cms-frontend
2
org.eclipse.jetty:jetty-server
2
pip
2
org.xwiki.platform:xwiki-platform-oldcore
2
symfony/security-http
2
parse-server
2
tuf
2
org.bouncycastle:bcprov-jdk14
2
Nova
2
automad/automad
1
wiremock
1
github.com/nats-io/nats-server/v2
1
qutebrowser
1
github.com/oauth2-proxy/oauth2-proxy/v7
1
django-basic-auth-ip-whitelist
1
com.github.tomakehurst:wiremock-jre8-standalone
1
com.github.tomakehurst:wiremock-jre8
1
org.wiremock:wiremock
1
org.wiremock:wiremock-standalone
1
mindspore
1
go.elastic.co/apm
1
rabbit_common
1
@liquity/contracts
1
kafo
1
net.sf.mpxj:mpxj
1
org.jenkins-ci.plugins:snsnotify
1
org.bouncycastle:bcprov-jdk13
1
org.scala-sbt:io_3
1
org.scala-sbt:io_2.13
1
org.bouncycastle:bcprov-jdk12
1
io.jenkins.plugins:gitlab-branch-source
1
org.scala-sbt:io_2.12
1
org.springframework.batch:spring-batch-core
1
org.jenkins-ci.plugins:ghprb
1
com.xuxueli:xxl-job-core
1
org.scala-sbt:sbt
1
virtualenv
1
com.typesafe.play:play
1
org.keycloak:keycloak-core
1
org.jenkins-ci.plugins:openshift-deployer
1
@diez/generation
1
ember-source
1
@aedart/support
1
streamlit
1
org.jenkins-ci.plugins:reverse-proxy-auth-plugin
1
github.com/oauth2-proxy/oauth2-proxy
1
thelounge
1
flarum/framework
1
Werkzeug
1
github.com/aws/aws-sdk-go
1
github.com/tendermint/tendermint
1
github.com/consensys/gnark-crypto
1
firebase-tools
1
org.xmlunit:xmlunit-core
1
apostrophe
1
org.keycloak:keycloak-parent
1
debug
1
solidus_backend
1
phpmyfaq/phpmyfaq
1
org.eclipse.jetty:jetty-openid
1
admidio/admidio
1
type-graphql
1
tqdm
1
spina
1
org.keycloak:keycloak-server-spi-private
1
datasette-graphql
1
plone.restapi
1
github.com/slsa-framework/slsa-verifier/v2
1
github.com/flyteorg/flyteadmin
1
markdown-link-extractor
1
github.com/slsa-framework/slsa-verifier
1
vodozemac
1
github.com/containers/podman/v4
1
org.jenkins-ci.plugins:telegrambot
1
xmpp-http-upload
1
net.sf.mpxj
1
net.sf.mpxj-for-csharp
1
net.sf.mpxj-for-vb
1
mpxj
1
github.com/Masterminds/goutils
1
hyper
1
keylime
1
org.xwiki.platform:xwiki-platform-security-authentication-script
1
kimai/kimai
1
Filter by Repository
https://github.com/tensorflow/tensorflow
109
https://github.com/moodle/moodle
17
https://github.com/concretecms/concretecms
13
https://github.com/shopware/platform
12
https://github.com/openstack/nova
11
https://github.com/etcd-io/etcd
8
https://github.com/umbraco/Umbraco-CMS
7
https://github.com/matrix-org/synapse
7
https://github.com/phpmyadmin/phpmyadmin
7
https://github.com/eclipse/jetty.project
7
https://github.com/vyperlang/vyper
7
https://github.com/octobercms/october
7
https://github.com/rails/rails
6
https://github.com/sweetalert2/sweetalert2
5
https://github.com/rack/rack
5
https://github.com/nodejs/undici
5
https://github.com/ansible/ansible
5
https://github.com/helm/helm
5
https://github.com/kubernetes/kubernetes
5
https://github.com/keycloak/keycloak
5
https://github.com/bytecodealliance/wasmtime
5
https://github.com/baserproject/basercms
5
https://github.com/TYPO3/typo3
5
https://github.com/xwiki/xwiki-platform
5
https://github.com/puppetlabs/puppet
5
https://github.com/jenkinsci/jenkins
5
https://github.com/simplesamlphp/simplesamlphp
4
https://github.com/apache/tomcat
4
https://github.com/cilium/cilium
4
https://github.com/wintercms/winter
4
https://github.com/shopware/shopware
4
https://github.com/electron/electron
4
https://github.com/mattermost/mattermost
4
https://github.com/vaadin/platform
4
https://github.com/ethyca/fides
3
https://github.com/vantage6/vantage6
3
https://github.com/django/django
3
https://github.com/cosmos/cosmos-sdk
3
https://github.com/symfony/symfony
3
https://github.com/vaadin/flow
3
https://github.com/httplib2/httplib2
3
https://github.com/digitalbazaar/forge
3
https://github.com/CVEProject/cvelist
3
https://github.com/pyca/cryptography
3
https://github.com/Sylius/Sylius
3
https://github.com/openstack/keystone
3
https://github.com/Graylog2/graylog2-server
3
https://github.com/nautobot/nautobot
3
https://github.com/nervosnetwork/ckb
3
https://github.com/phusion/passenger
3
https://github.com/wagtail/wagtail
3
https://github.com/GilaCMS/gila
2
https://github.com/jenkinsci/ec2-plugin
2
https://gitlab.com/sequoia-pgp/sequoia
2
https://github.com/mutagen-io/mutagen
2
https://github.com/answerdev/answer
2
https://github.com/saltstack/salt
2
https://github.com/quarkusio/quarkus
2
https://github.com/ezsystems/ezplatform-kernel
2
https://github.com/openstack/glance
2
https://github.com/craftcms/cms
2
https://github.com/opencontainers/runc
2
https://github.com/nats-io/nats-server
2
https://github.com/apollographql/apollo-server
2
https://github.com/zopefoundation/Zope
2
https://github.com/microweber/microweber
2
https://github.com/apache/activemq
2
https://github.com/aws/s2n-quic
2
https://github.com/ceph/ceph-deploy
2
https://github.com/aio-libs/aiohttp
2
https://github.com/ntbosscher/gobase
2
https://github.com/sparklemotion/nokogiri
2
https://github.com/nextauthjs/next-auth
2
https://github.com/openstack/horizon
2
https://github.com/sigstore/cosign
2
https://github.com/theupdateframework/python-tuf
2
https://github.com/parse-community/parse-server
2
https://github.com/firefly-iii/firefly-iii
2
https://github.com/Flask-Middleware/flask-security
2
https://github.com/TYPO3/TYPO3.CMS
2
https://github.com/hashicorp/nomad
2
https://github.com/dpgaspar/Flask-AppBuilder
2
https://github.com/containerd/containerd
2
https://github.com/mattermost/mattermost-plugin-jira
2
https://github.com/RIAEvangelist/node-ipc
2
https://github.com/bcgit/bc-java
2
https://github.com/cometbft/cometbft
2
https://github.com/micromatch/braces
2
https://github.com/pypa/pip
2
https://github.com/octoprint/octoprint
2
https://github.com/rust-lang/cargo
2
https://github.com/OpenZeppelin/openzeppelin-contracts
2
https://github.com/authzed/spicedb
2
https://github.com/flarum/framework
2
https://github.com/opencontainers/distribution-spec
2
https://github.com/brefphp/bref
1
https://github.com/fastify/fastify-http-proxy
1
https://github.com/waysact/webpack-subresource-integrity
1
https://github.com/httpie/httpie
1
https://github.com/dojo/dijit
1
https://github.com/fluent/fluentd
1
https://github.com/joeferner/redis-commander
1
https://github.com/PHPMailer/PHPMailer
1
https://github.com/personnummer/csharp
1
https://github.com/Consensys/gnark-crypto
1
https://github.com/knative-extensions/eventing-github
1
https://github.com/swagger-api/swagger-codegen
1
https://github.com/keystonejs/keystone
1
https://github.com/Azure/setup-kubectl
1
https://github.com/jquery-validation/jquery-validation
1
https://github.com/vapor/postgres-nio
1
https://github.com/NVIDIA/NeMo
1
https://github.com/plone/Products.CMFPlone
1
https://github.com/jenkinsci/mercurial-plugin
1
https://github.com/tinymce/tinymce
1
https://github.com/canonical/lxd
1
https://github.com/thelounge/thelounge
1
https://github.com/ezsystems/ezpublish-kernel
1
https://github.com/theupdateframework/go-tuf
1
https://github.com/croogo/croogo
1
https://github.com/derbyjs/derby
1
https://github.com/puma/puma
1
https://github.com/endojs/endo
1
https://github.com/moq/moq
1
https://github.com/rails/globalid
1
https://github.com/medikoo/es5-ext
1
https://github.com/jenkinsci/email-ext-plugin
1
https://github.com/python-imaging/Pillow
1
https://github.com/jenkinsci/qmetry-for-jira-test-management-plugin
1
https://github.com/Cyber-Domain-Ontology/CDO-Utility-Local-UUID
1
https://github.com/simplegeo/python-oauth2
1
https://github.com/decidim/decidim
1
https://github.com/spinacms/spina
1
https://github.com/keylime/keylime
1
https://github.com/vega/vega
1
https://github.com/Masterminds/goutils
1
https://github.com/skylot/jadx
1
https://github.com/cloudfoundry/uaa
1
https://github.com/directus/directus
1
https://github.com/Twipped/ircdkit
1
https://github.com/google/zerocopy
1
https://github.com/electron-userland/electron-packager
1
https://github.com/ktorio/ktor
1
https://github.com/PrestaShop/productcomments
1
https://github.com/mlflow/mlflow
1
https://github.com/kopia/kopia
1
https://github.com/jcubic/jquery.terminal
1
https://github.com/floriangaerber/Magnesium-PHP
1
https://github.com/lexik/LexikJWTAuthenticationBundle
1
https://github.com/kitabisa/teler
1
https://github.com/firebase/firebase-tools
1
https://github.com/jeremylong/DependencyCheck
1
https://github.com/tauri-apps/tauri
1
https://github.com/node-red/node-red
1
https://github.com/ubernostrum/django-registration
1
https://github.com/personnummer/php
1
https://github.com/openjdk/jfx
1
https://github.com/livehelperchat/livehelperchat
1
https://github.com/CosmWasm/cosmwasm
1
https://github.com/cjvnjde/google-translate-api-browser
1
https://github.com/zowe/imperative
1
https://github.com/jenkinsci/digitalocean-plugin
1
https://github.com/spring-projects/spring-data-rest
1
https://github.com/jenkinsci/inedo-buildmaster-plugin
1
https://github.com/onionshare/onionshare
1
https://github.com/sparklemotion/sqlite3-ruby
1
https://github.com/memorysafety/sudo-rs
1
https://github.com/ericcornelissen/shescape
1
https://github.com/alphagov/tech-docs-gem
1
https://github.com/tailscale/tailscale
1
https://github.com/Nebulosus/shamir
1
https://github.com/ajenti/ajenti
1
https://github.com/xuxueli/xxl-job
1
https://github.com/yourls/yourls
1
https://github.com/bbatsov/rubocop
1
https://github.com/dan1hc/fgr
1
https://github.com/jenkinsci/github-plugin
1
https://github.com/kiwitcms/Kiwi
1
https://github.com/gradle/gradle
1
https://gitlab.com/edneville/please
1
https://github.com/xmlunit/xmlunit
1
https://github.com/octokit/octopoller.rb
1
https://github.com/disintegration/imaging
1
https://github.com/node-js-libs/cli
1
https://github.com/Brondahl/EnumStringValues
1
https://github.com/foxcpp/maddy
1
https://github.com/jenkinsci/git-client-plugin
1
https://github.com/personnummer/go
1
https://github.com/amundsen-io/amundsenfrontendlibrary
1
https://github.com/elastic/apm-agent-go
1
https://github.com/rust-vmm/linux-loader
1
https://github.com/jenkinsci/resource-disposer-plugin
1
https://github.com/zopefoundation/Products.GenericSetup
1
https://github.com/npm/npm
1
https://github.com/triaxtec/openapi-python-client
1
https://github.com/arguiot/EyeJS
1
https://github.com/dub-flow/vulnerability-research
1
https://github.com/jenkinsci/gitlab-plugin
1
https://github.com/impredicative/bitlyshortener
1